Director | Risk Advisory
20 Boulevard de Kockelscheuer
Onur is a Director within our Risk Advisory department, where he focuses on Information & Technology Risk. He joined Deloitte Luxembourg’s risk management service line in July 2012. Onur has 12 years of experience in IT audit, IT governance advisory & consulting, IT regulatory compliance review (CSSF and ECB) and IT outsourcing regulatory assessment (including cloud outsourcing). He manages a portfolio of IT regulatory and audit engagements (statutory audit, regulatory compliance review, IT on-site inspection, internal audit, ISAE 3402/SSAE 18 assurance reports) and regularly contributes to engagements in the field of IT Risk Management and IT Mergers & Acquisitions (e.g. due diligence or risk aspects of integration or divestiture plans). Since the issuance of the Cloud Circular in 2017, he assisted multiple financial institutions in their material and non-material cloud outsourcing files for CSSF.
Onur holds a Bachelor of Science in Information Technology from Isik University, Turkey. He is fluent in English and French (8 years of secondary studies in a French speaking high school and ERASMUS program in Bordeaux, France). Onur is a Certified Information Systems Auditor (CISA), ISO 27001 Lead Auditor (ISO 27001 LA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and is certified ITIL v3 Foundation. He is a member of ISACA, ISC2 and ABBL Cloud Computing Workgroup.