Nurana Bashirzade - Information security specialist - AzInTelecom

Summary

Highly motivated professional with foundational knowledge in IT audit and GRC. Strong work ethic, adaptable, and able to communicate effectively. Quick learner, capable of supporting compliance, risk, and governance tasks.

Overview

3

years of professional experience

Work history

Information security specialist

AzInTelecom

Baku

2023.08 - Current

AzInTelecom

August 2023- October 2023

(Internship) Security Operation Center

Experience with Qradar, Splunk, Cortex XDR

October 2023- Present

Junior Information Security Specialist

Access control systems, Biometric control

A Access Control Specialist is responsible for maintaining security protocols and access control systems to ensure the safety of personnel, property and data. They design, install, configure, maintain and upgrade access control systems, such as electronic access control systems and biometric authentication systems.

Handled high volume calls to address customer inquiries and concerns.
Analysed data and information to identify issues and create tailored solutions.
Displayed energy and enthusiasm in fast-paced environment.
Oversaw daily operations to achieve high productivity levels.

July 2025- Present

Information Security Specialist

Experience in physical access control (access cards, turnstile systems) in line with organizational security policies
Ensured minimum necessary access (principle of least privilege) is granted based on business and security requirements
Managed biometric access systems and supported identity verification processes
Implemented and maintained Role-Based Access Control in accordance with access control policies
Identified and mitigated access control risks in alignment with ISO/IEC 27001:2022 controls

Licenses & Certifications

02/2026-present

ISO/IEC 27001:2022 Foundation Information Security Certification (verified credential available on my linkedin www.linkedin.com/in/nurana-bashirzade-155424262 )

TECHNICAL SKILLS

IIT Audit & Compliance: Basic understanding of ISO/IEC 27001:2022 principles
Risk & GRC Fundamentals: Basic knowledge of risk assessment and control implementation
Access Control: Familiar with minimum necessary access (least privilege) and Role-Based Access Control
Information Security: General understanding of threats and vulnerabilities
Data Analysis (Foundational): Basic experience with SQL, Python, and Power BI
MS Excel & Reporting: Ability to prepare reports and perform basic analysis
Splunk , Qradar, Cortex XDR - basic knowledge
Successfully obtained ISO/IEC 27001:2022 Foundation certification, covering ISMS principles, risk management, and security controls
RBAC, COBIT -basic knowledge

Education

Information Security - IT

UNEC

Baku, M.Muxtarov194

/2020 - 2024.06

Skills

Skills

Soft skills

Effective Communication: Explain technical risks and controls to non-technical stakeholders
Analytical Thinking & Problem-Solving: Identify risks, analyze controls, and propose solutions

Teamwork & Collaboration: Work with IT, security, and business teams to ensure compliance
Adaptability: Adjust to changing audit scopes, regulations, and project priorities
Attention to Detail: Spot gaps in processes, controls, and documentation
Time Management: Prioritize tasks

Languages

English

Advanced

Russian

Proficient (C2)

Turkish