OPINION

MERCAN YILDIRIM, FOUNDER AND CEO OF GERMAN CYBER-SYSTEMS

As digital risk accelerates, organisations are searching for clarity, resilience and trustworthy systems.

Mercan Yildirim, Founder and CEO of German Cyber-Systems, shares how early work in law enforcement and cyber forensics shaped her mission, why she believes culture is the true frontline of security and how the Middle East can lead a new era of resilient, sovereign cyber innovation.

It is quite unusual for a young woman to found a cybersecurity company. What motivated you to take this path?

I still remember one of the cases I worked on with the German Federal Police. It was a truck that had been stopped near the border and on the passenger seat lay a broken smartphone. The suspect had tried to destroy it, likely thinking the information on it was gone. The phone ran on GrapheneOS, which made accessing the data even more complicated. But the case was serious, potentially involving smuggling or drug trafficking, and we had to get inside that device. We collaborated with the BKA, who had the right tools to extract the data. Together, we managed to crack it.

That experience stayed with me. It showed me how vulnerable digital systems are and how important it is to handle them with care and skill. It also reminded me that we never solve anything alone. You need collaboration, and you need the humility to know when to ask others for their expertise.

Looking back, founding my own company was not something I planned from the start. I simply followed the problems that mattered to me. I was young, and yes, often the only woman in the room, especially in highly technical settings. But I believe deeply in the idea that when we surround ourselves with people who think with clarity, act with integrity and share a vision, we all grow. That is the mindset I try to carry every day. Not because I have all the answers, but because I care enough to keep asking better questions.

What do you see as the biggest cybersecurity vulnerability that companies in our region need to address right now?

The biggest vulnerability is still the human factor, not the technology. Many companies invest in expensive tools but overlook the behaviour and mindset of their teams. In regions experiencing rapid digital growth, that gap becomes even more visible. Phishing, credential theft and shadow IT remain common ways attackers gain access. What’ s needed is a shift in culture.

Cybersecurity should be seen as a shared responsibility, embedded in daily routines, not as a one-time technical solution. True resilience begins with awareness, leadership and clarity at all levels of the organisation.

WWW. INTELLIGENTCISO. COM 49