• Manage a hybrid team of analysts and engineers • Oversee the vulnerability management lifecycle • Ensure Security Engineering builds necessary preventive/detective controls • Drive the 'Automation and AI' mindset in the team • Serve as the escalation point for incidents • Partner with Engineering and Infrastructure to integrate security • Translate technical projects and operational risks into business context

• Implement and manage security solutions using Microsoft security tools and platforms • Monitor security alerts and respond to incidents in a timely manner • Conduct vulnerability assessments and coordinate remediation efforts • Design and enforce identity and access management (IAM) policies • Secure cloud environments, including Azure resources and hybrid infrastructure • Develop and maintain security documentation, policies, and procedures • Collaborate with cross-functional teams to integrate security into system design • Ensure compliance with regulatory and organizational security requirements • Perform risk assessments and recommend mitigation strategies • Stay current with emerging threats, technologies, and security best practices

Role Description We are currently hiring for our Engineering team based out of our Hyderabad Offshore Development Center (ODC). - Thorough knowledge of penetration testing on a variety of systems, such as web applications, networks, mobile apps, IoT devices, and APIs including the services layer segments with REST/SOAP/GraphQL APIs, ESB, Middleware, or other channels to identify and exploit vulnerabilities. - Strong understanding of cloud security for environments such as AWS, Azure, GCP, and others. - Capable of researching and staying updated on current security vulnerabilities in order to create proof-of-concept (PoC) or scripts for automated detection. Proficient in proactively addressing emerging threats through continuous monitoring and research. - Develop and maintain tools, scripts, and methodologies to enhance the efficiency and effectiveness of penetration testing activities. - Develop Python-based applications, tools, and scripts according to specifications. - Collaborate with the team to define project requirements and deliver high-quality solutions. - Write clean, efficient, and maintainable code following best practices. - Debug and troubleshoot issues to ensure the performance and reliability of applications. - Work with databases and data processing frameworks to store and manipulate data effectively. - Stay updated on Python libraries, frameworks, and best practices to continuously improve development processes. Qualifications - Proven experience in penetration testing, ethical hacking, and vulnerability assessment. - In-depth knowledge of common security frameworks, standards, and best practices (NIST, OWASP, etc.). - Strong understanding of network protocols, systems architecture, and web application security. - Thorough knowledge of common software vulnerabilities and standards such as OWASP Top 10, SANS Top 25, etc. - Proficiency in using penetration testing tools and frameworks (Metasploit, Burp Suite, Nmap, Wireshark, etc.). - Experience with scripting and programming languages (Python, Bash, PowerShell, JAVA, etc.). - Excellent written and verbal communication skills, including the ability to convey technical concepts to non-technical stakeholders. - Ability to work independently and collaboratively in a team environment. - Strong analytical and problem-solving skills. - Commitment to continuous learning and professional development. Requirements - Opportunity to join a promising Scale-up with accelerated career growth. - Opportunity to join and grow in a rapidly expanding Cybersecurity industry. - Competitive Compensation. - Relocation Benefits. - Healthcare Insurance Benefits. - Company Car Lease Benefits. Benefits - Opportunity to join and grow in a passionate, rapidly expanding industry. - Competitive compensation. - You will be working alongside international experts. - Strong career prospects in an early-stage startup.

Role Description Nous recherchons notre Head of Security pour piloter la fonction sécurité d’Indy. Rattaché directement au CTO, tu auras pour mission d’industrialiser la stratégie sécurité, avec un scope large : - Sécurité applicative - Infrastructure - Protection des données - Sensibilisation des équipes Ce n’est pas un rôle de gouvernance. On cherche quelqu’un qui code. Tu interviendras directement dans la codebase pour renforcer les briques critiques : - Authentification - Gestion des secrets - Chiffrement Tu feras des revues de code sécurité sur les PR sensibles. Tes missions : - Réaliser un audit complet de la posture sécurité d’Indy et en déduire la stratégie sécurité court/moyen/long terme - Contribuer dans la codebase sur les sujets critiques : auth, sessions, chiffrement, gestion des secrets - Intégrer la sécurité dans le cycle de développement (shift-left) : threat modeling, SAST/DAST, security reviews - Mettre en place les outils de détection, monitoring et réponse aux incidents - Reprendre le lead de la guilde sécurité et gérer les incidents de sécurité - Former et sensibiliser les équipes tech et non-tech - Être le référent sécurité auprès du Comex, des clients et des partenaires Voici également notre stack complète : - NodeJS (Express & Fastify) - VueJS - MongoDB - Javascript / Typescript - Python - Heroku - AWS - Github CI Nous avons également développé une librairie de composants basée sur VueJS et storybook. Company Description