Pentester Internship

Director of Technology

Role Summary:

As a Technical Director at IntraEdge, you will be at the forefront of leading our technology teams, providing expert guidance and support across multiple projects. This role is crucial for recruiting top talent, ensuring technical excellence, and staying abreast of industry trends. Your expertise will also significantly contribute to our pre-sales efforts, showcasing our technical capabilities to potential clients.

Key Responsibilities:

• Mentor and lead multiple technology teams, helping resolve complex technical challenges.
• Participate in final round interviews to assess and secure top-tier talent.
• Research and implement new technological patterns and strategies.
• Stay updated with the latest industry trends to enhance our technological offerings.
• Support pre-sales activities by articulating technical strategies and solutions to prospective clients.

Qualifications:

• Proven experience in technical leadership and team management.
• Must have at-least 7+ years of experience in Software Development
• Must have 3+ years experience of exposure working for a Startup or a Startup environment.
• Strong recruiting and talent assessment skills.
• Must have experience or at least a strong awareness of technology trends in a broad range of areas including, but not limited to: Web & API Development, Data Engineering, Mobile Development, Quality Assurance, AI Development, Cloud Native Development, Infrastructure as Code, Microservices Architecture, Serverless Application Development, Infrastructure & Application Security.
• Excellent understanding of current technology trends and patterns.
• Hands-On experience in 2 or more programming language. 
• Strong communication skills, capable of effectively articulating technical and non-technical concepts to various stakeholders.
• Effective communication and pre-sales skills.

Desired Skills:

• Strategic thinker with a knack for innovation.
• Able to motivate and drive technology teams towards achieving exceptional performance.
• Comfortable working in a dynamic, fast-paced environment.

About Intraedge: https://intraedge.com/ 

Intraedge is a Technology, Products and Learning Organization, It was founded in 2002 with offices in the US, India, Europe, Canada, and Singapore. We provide our clients with the resources and expertise to enhance business performance through technology. 

• OWASP Secure Code review,• Basic programing knowledge in any programming language and knowledge on secure development practices.
• OWASP TOP 10 vulnerabilities and their mitigations
• Hands on experience in Web Application Security Testing tools (SAST & DAST) and Penetration testing tools such as HP Fortify, Checkmarx, Acunetix, Nessus, Burp Suite, Metasploit., Qualys Guard, Kali Linux , etc.
• Understand/modify exploit code and find logical security flaws in applications
• Should have knowledge and experience on Network Security, Application Security, Internet Security, attack vectors.
• To carry out technical vulnerability assessments, identify potential vulnerabilities and provide recommended controls and support to mitigate them.

• Participate and collaborate with the users, business analyst, quality assurance/quality control analyst in the gathering of user requirements and specifications.
• Analyze technical and business requirements and translate these into basic and detailed technical design.
• Participate and conduct feasibility study, research and development, prototyping and proof of concept (PoC) in implementing new/existing systems, solutions and processes.
• Participate in the technical and project documentation such as but not limited to functional, system and technical design, requirements and specifications.
• Develop, customize, enhance, fix and maintain codes, applications and systems.
• Create test scenarios and data and conduct or participate in non-functional and functional testing (e.g., unit testing, system testing, integration testing, etc.).
• Document, analyze and report test results.
• Develop and review codes, programs and configurations to verify consistency and conformance with established programming and industry standards, guidelines, policies and practices.
• Conduct incident and problem analysis, data gathering, investigation and resolution of issues, and provide technical consultancy, assistance and support.
• Deliver the required systems/applications/solutions on time and based on agreed budget and specifications.
• Identify, assess and recommend opportunities for application and process improvement.
• Prepare reports, manuals and other documentation on the status, operation and maintenance of software.
• Provide regular and effective progress updates to the project manager/team lead/supervisor/immediate manager.
• Actively participate in and lead the peer review and status meeting to communicate progress and escalate risks and roadblocks.
• Prepare training materials and provide assistance in conducting the training to users or other members of the team.
• Responsible for the information security by protecting confidential information from unauthorized access, ensuring the integrity of the information and information system, taking appropriate measures to manage security risks and following and complying with the laws, legislations and terms of contracts.
• Perform other duties as assigned, if necessary.

• Document technical and functional specifications
• Perform unit testing of objects/ solutions created
• Perform configuration, integration, and personalizations in Oracle HCM EBS/Cloud
• Work in a functional and technical capacity and analyze business requirements, design, develop and deploy solutions
• Excellent troubleshooting, analytical and problem-solving skills
• Explore & investigate the client's pain areas, extend the scope, and keep the client satisfied

• Minimum a Bachelor’s degree.
• 3 to 10 years of experience as an Oracle HCM Techno-Functional Consultant
• 30% Functional and 70% Technical
• Strong experience in core HR, Payroll, Fast Formula, OTL and SSHR
• Should have expertise in Oracle HCM Cloud advanced tools such as HCM Extracts, HDL, PBL, BI Publisher, OTBI, Application Security, Page Composer, Page Configurator, REST APIs, SOAP, Webservices
• Able to provide strong leadership to develop best practices for effective Techno functional support for the enterprise business process area
• Good communication skills
• In-depth knowledge of the business process and capability to understand business requirements.

An enthusiastic individual with the following skills. Please do not hesitate to apply if you do not match all of it. We are open to promising candidates who are passionate about their work and are team players.

• Must have strong experience in Information Security Management system(ISMS), creation of policy, procedures and implementation.
• Operates as a key contributor to the RFP, Third-Party Risk assessment, cloud security assessment etc.
• Lead the strategic and tactical development of information security framework, risk management and new compliance initiatives
• Subject matter expertise in ISO 27001, SOC2, CCPA, CPRA, GDPR, PCI DSS and HIPAA.
• Must have a strong experience in the documentation process and reviewing MSA, SCC, SLA & DPA.
• Good knowledge of BCP/DR, Incident response, VA/PT and Audit methodologies of various compliance frameworks.
• Good knowledge of Access management, Network, Application Security, Encryption, Backup, Physical Security, ISMS Training & Awareness etc..
• Ability to deal with the customers and vendors on Security and privacy matters.
• Knowledge of Core IT processes, SDLC, network infrastructure will be useful.

• Good written, oral, and interpersonal communication skills.
• Ability to conduct research into IT security issues
• Ability to present ideas in business-friendly and user-friendly language.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Highly self-motivated and hardworking.

• Bachelor’s/master's degree in Security, Computer Science, Management Information Systems, Engineering or related field.
• Should be at least ISO 27001 lead auditor or lead implementer. 
• 3+ years of related work experience in information security governance, risk and compliance (GRC) or relevant compliance roles in the SaaS industry.

A wholesome opportunity in a fast-paced environment that will enable you to juggle between concepts, yet maintain the quality of content, interact, and share your ideas and have loads of learning while at work. Work with a team of highly talented young professionals and enjoy the benefits of being at Xoxoday.

Xoxoday is a rapidly growing fintech SaaS firm that propels business growth while focusing on human motivation. Backed by Giift and Apis Partners Growth Fund II, Xoxoday offers a suite of three products - Plum, Empuls, and Compass. Xoxoday works with more than 2000 clients across 10+ countries and over 2.5 million users. Headquartered in Bengaluru, Xoxoday is a 300+ strong team with four global offices in San Francisco, Dublin, Singapore, New Delhi.

We look forward to connecting with you. As you may take time to review this opportunity, we will wait for a reasonable time of around 3-5 days before we screen the collected applications and start lining up job discussions with the hiring manager. We however assure you that we will attempt to maintain a reasonable time window for successfully closing this requirement. The candidates will be kept informed and updated on the feedback and application status.

Qualifications & Responsibilities

Year of Experience : 3- 8 yrs

Location : Bangalore, Delhi, Mumbai, Pune

Work on ISO 27001 & NIST based Information Security Management System implementation and sustenance.

-          Responsible for SOX (IT Security Controls) and track the monthly/quarterly/annual control reports and drive effectiveness of SOX controls.

-          Work on Business Continuity Planning, IT Disaster Recovery as per ISO27001 & NIST requirements

-          Assess information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk

-          Conduct Information Systems audits covering IT infrastructure assets

-          Working knowledge in security domains such as: security governance policies and procedures, risk management, compliance, access control, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection

-          Experience in leveraging industry standards and frameworks such as ISO/IEC 27001, NIST CSF/800-171, etc.

-          Possesses certifications such as ISO27001 LA. CISSP, CISA certification- preferred

Why NCG?

WHO WE ARE DRIVES WHAT WE DO!

We Don't build the organization; we create an everlasting family. Our people express a sense of winning together when times are good and sticking together when times are tough.

Are you a Doer or Achiever?

Well, at NCG, our doors are Open for Doers and Achievers alike. We are a Cult where we create, innovate, learn and Contribute in a comfortable, transparent, and fair environment.

Joining NCG means contributing to a shared ambition for reliable work culture, tackling extraordinary technological challenges in multicultural teams, preserving your work/life balance, and more!

This profile will include following responsibilities:

- Perform Web Application Security Testing

- Scan Network for Security Vulnerabilities

- Create detailed security report

- Research on Open source security tools & new security topics