Ateş Sünbül IT Audit, Security and Consultancy Partner

Ateş Sünbül

Key Qualifications

  • Led FATCA impact assessment project of the Bank and Know Your Customer processes (KYC)
  • Led a full regulatory review in Bank to evaluate the adequacy and effectiveness of the control environment, This involved leading a team of Product Control, Front Office, Risk, Compliance and IT resource. The team were exposed to sensitive and frequent regulatory interventions during this period
  • The SAP implementation Project consists of technical design and implementation of SAP R/3 systems (including FI, SD, Retail). Project phases included defining company processes and integrating cashier systems to SAP Participated in developing an IT Audit risk assessment model, encompassing all production systems, technology infrastructures, planned enhancements, new systems development, corporate IT initiatives and IT compliance activities Extensive knowledge and auditing experience on Core banking, Credit Cards, Internet Banking, Data management, Business Intelligence, Third Party Management, Regulatory Compliance and Identity Management environments and applications
  • Led the Business Continuity Management process design and implementation project. The project included the documentation of Threat & Risk Assessment, Business Impact Analysis, IT Disaster Recovery Plans and Function Business Continuity Plans
  • Led majot Bank SOX implementation and transformation projects
  • Managed information systems audit projects within the scope of the Communiqué on Management and Control of Information Systems of Financial Leasing, Factoring and Financing Companies
  • Managed information systems audit projects within the scope of E-Document Special Integrators Information Systems Audit Guide


  • Isik University – Electronic Engineering, Licence, Istanbul, Turkey


  • English

Professional Background

  • 2019 – cont. Mazars Denge, Istanbul, Information Security Services Partner
  • 2017 - 2019 Mazars Denge, Information security services Leader, Istanbul
  • 2015 - 2017 Biznet, Head of PCI DSS and IT Consultancy, Istanbul
  • 2013 - 2015 Avivasa, Chief Information Security Officer, Istanbul
  • 2012 - 2013 EY, Manager, Istanbul
  • 2008 - 2012 Finansbank, Senior IT Auditor , Istanbul,
  • 2006 - 2008 Beymen, Foreign IT Operations and SAP Consultancy, Istanbul
  • 2004 - 2005 Havelsan, software instructor and field specialist Istanbul


  • BRSA Banking Head Auditor
  • PCI QSA (Certificate no - 203-786)
  • CISA (Certificate no - 1085202)
  • CISM (Certificate no - 1632565)
  • ISO 27001 LA (Certificate no - TR-2011-04-29-1161)
  • CDPSE (Certificate no:2006717)


  • PCI Security Standards Council

Want to know more?