Hotfoot - Product Security Lead
1 week ago
Location : Chennai (HQ) Onsite.Function : Product Security.Experience : 7 - 12 years (incl. 2+ years in a lead/ownership role).About the role : Were looking for an Product Security Lead to embed security into our SDLC and own end-to-end VAPT remediation across our lending product suite (LOS/LMS, rules engine, analytics).Youll partner with engineering and platform teams to design, build, and operate secure-by-default products used by leading financial institutions.What youll do : - Own the Secure SDLC for microservices (Java/Spring Boot), Node/TypeScript backends, Angular UIs, and Android/Flutter apps - policy, standards, and release gates.- Build and run CI/CD security controls : SAST, SCA/SBOM, secrets & IaC checks, container/image scanning; automate DAST/IAST in pipelines; enforce block-on-fail where needed.- Drive VAPT end-to-end : Scope with internal/third-party testers, triage findings, set SLAs, track remediation to closure; verify fixes and prevent regressions.- Threat model & review designs/code for authN/Z, crypto, session management, API security, data protection/PII, and high-risk modules (payments, onboarding, documents).- Cloud & platform security (AWS) : baselines for EC2/ALB, RDS/KMS, S3 policies, network segmentation, mTLS/JWT service auth, Vault-backed secrets, and key rotation.- Observability & governance : wire security logs to SIEM, define AppSec KPIs (MTTR, SLA adherence, gate coverage), and report risk posture to engineering leadership.- Upskill teams : run secure coding workshops, build a security champions program, create playbooks/runbooks for common vulns and abuse cases.What youll bring : - 7 - 12 years in Application/Product Security, including leading Secure SDLC and VAPT remediation in a product engineering environment.- Hands-on with SAST/SCA/DAST/IAST, code reviews, and threat modeling (e.g., STRIDE); ability to read code in Java/Spring, Node/TypeScript, and Angular.- Prior experience in integrating security checks and gating critera with CI platform like SonarQube.- Strong grasp of OWASP Top 10, API Security Top 10, ASVS, CWE, secrets management, and CI/CD hardening.- AWS security experience : IAM, KMS, RDS encryption, SG/WAF, CloudTrail/GuardDuty; familiarity with Docker/Kubernetes and IaC Experience running vendor/3rd-party VAPT cycles and landing fixes to SLA with engineering teams.- Awareness of compliance contexts (ISO 27001/SOC 2, RBI guidance, DPDP Act) and secure handling of PII/financial data.- Nice to have : mobile app security (OWASP MASVS), OAuth2/OIDC, mTLS, WebAuthn/modern auth patterns; Kafka, Redis, NGINX, Consul, Vault.- Certifications (optional, a plus) : OSWE/OSCP, GWAPT/GWEB, CSSLP.What success looks like (first 6 months) : - 95% of Critical/High findings closed within SLA across services.- All repos behind security gates with SBOMs published; zero hard-coded secrets; baseline threat models for top services.- Repeatable VAPT remediation verification loop with dashboards visible to leadership.Why join us : - Build security for mission-critical fintech products at scale.- High ownership, direct impact, and the chance to set the bar for product security across our stack.- Collaborative culture with strong engineering, rapid delivery, and growth opportunities. (ref:hirist.tech)
-
Chennai, India HOTFOOT TECHNOLOGY SOLUTIONS PRIVATE LIMITED Full timeProfile Overview :Our Java Architect will play a key role in our product development by creating state of the art architecture, design and delivering exceptional code. The architect will lead the design and development of our platform and infrastructure, working on projects that will allow wearing many hats and flex both technical development and...
-
Product Security Lead
2 weeks ago
Chennai, Tamil Nadu, India Hotfoot Full time ₹ 20,00,000 - ₹ 25,00,000 per yearProduct Security Lead (Secure SDLC & VAPT)About the jobLocation: Chennai (HQ) - OnsiteFunction: Product Security Experience: 7+ (incl. 2+ years in a lead/ownership role) About the role Were looking for an Product Security Lead to embed security into our SDLC and own end-to-end VAPT remediation across our lending product suite (LOS/LMS, rules engine,...
-
Hotfoot - Senior Business Analyst
1 week ago
Chennai, India HOTFOOT TECHNOLOGY SOLUTIONS PRIVATE LIMITED Full timeRoles And Responsibilities :- Manage the team for the Delivery and also have individual contribution for complex tasks.- Should be the escalation point for the customer and manage the customer experience.- Play a key role in bringing all stakeholders to same page and bring transparency in the process and highlight Project risks- Possess knowledge and be a...
-
Chennai, India HOTFOOT TECHNOLOGY SOLUTIONS PRIVATE LIMITED Full timeOur team at Hotfoot Technology Solutions Private Limited is seeking a skilled and detail-oriented SQL Developer to design, develop, and maintain robust database solutions that support enterprise-level applications and reporting systems.The ideal candidate will be responsible for writing optimized SQL queries, developing stored procedures, creating views, and...
-
Product Security Lead
2 days ago
Chennai, Tamil Nadu, India Hotfoot Technology Solutions Full time ₹ 12,00,000 - ₹ 36,00,000 per yearLocation:Chennai (HQ) - OnsiteFunction:Product SecurityExperience:7–12 years (incl. 2+ years in a lead/ownership role)About the roleWe're looking for an Product Security Lead to embed security into our SDLC and own end-to-end VAPT remediation across our lending product suite (LOS/LMS, rules engine, analytics). You'll partner with engineering and platform...
-
Product Security Lead
2 weeks ago
Chennai, Tamil Nadu, India Hotfoot Technology Solutions Full time ₹ 12,00,000 - ₹ 36,00,000 per yearAbout the roleWe're looking for a Product Security Lead to embed security into our SDLC and own end-to-end VAPT remediation across our lending product suite (LOS/LMS, rules engine, analytics). You'll partner with engineering and platform teams to design, build, and operate secure-by-default products used by leading financial institutions.What you'll doOwn...
-
Hotfoot - PMO Lead
2 weeks ago
Chennai, India Hotfoot Technology Solutions Private Limited Full timeKey Responsibilities:- Collaborate with the Product Team to ensure alignment of program initiatives with strategic goals.- Establish an integrated program view to coordinate and execute all initiatives effectively.- Implement and enforce standardized methodologies for program governance, alignment, assurance, integration, and financial control.- Ensure...
-
Pre-sales executive
4 weeks ago
Chennai, India Hotfoot Technology Solutions Full timePre-Sales Executive | 4 - 7 Years Experience | Chennai We are looking for a Pre-Sales Executive with strong experience in B2 B pre-sales to bridge technology and business impact. Market Research ● Understand USP, analyze competitors’ products and position the software accordingly with potential customers ● Conduct discovery calls to understand...
-
Pre-Sales Executive
1 week ago
Chennai, India Hotfoot Technology Solutions Full timePre-Sales Executive | 4 - 7 Years Experience | Chennai We are looking for a Pre-Sales Executive with strong experience in B2B pre-sales to bridge technology and business impact. Market Research ● Understand USP, analyze competitors’ products and position the software accordingly with potential customers ● Conduct discovery calls to understand business...
-
Pre-sales executive
2 weeks ago
Chennai, India Hotfoot Technology Solutions Full timePre-Sales Executive | 4 - 7 Years Experience | ChennaiWe are looking for a Pre-Sales Executive with strong experience in B2 B pre-sales to bridge technology and business impact.Market Research● Understand USP, analyze competitors’ products and position the software accordingly with potential customers● Conduct discovery calls to understand business...
