Platform Security
Data in Transit (SSL/TLS)
All data exchanged between your web browser and the Pitechpedia Careers platform is fully encrypted in transit. We enforce HTTPS throughout our ecosystem utilizing advanced Transport Layer Security (TLS 1.3) configurations.
This ensures that sensitive details such as candidate passwords, addresses, email records, and interview schedules are guarded against interception, tampering, or eavesdropping from third-party networks.
Candidate Data Encryption at Rest
Candidate profiles, application records, database records, and operational logs are stored securely with strong cryptographic protections at rest.
- Credential Hashing: Candidate passwords are never stored in plain text. We utilize standard cryptographic password hashing algorithms (e.g., bcrypt with adaptive work factors) to ensure absolute account security.
- Database Segregation: Sensitive candidate demographic indicators and candidate evaluation notes are separated and encrypted with AES-256 standard protocols at the database tier.
Secure Resume & File Upload Handling
Resumes, cover letters, and portfolios submitted via our application portals are treated with stringent security protocols to eliminate malware vectors and unauthorized file leaks.
- Strict File Sandbox: Uploaded PDF, DOCX, and image files are instantly transferred to a sandboxed, non-executable storage container outside the web-root.
- Automated Scanning: Files undergo programmatic security checks and malware assessments immediately upon arrival.
- Access Token Controls: Resumes can only be fetched by authorized Pitechpedia HR coordinators and internal recruiters through signed, short-lived secure URLs. Direct public downloads are fully disabled.
Infrastructure & Application Shielding
The Pitechpedia Careers infrastructure is built on multi-tier secure networking architectures, featuring constant active defensive barriers:
- Web Application Firewall (WAF): Filters out SQL injections, Cross-Site Scripting (XSS), and brute force authentication attempts in real time.
- Rate Limiting: Applies programmatic boundaries to authentication endpoints to prevent credential stuffing and denial-of-service (DoS) attempts.
- Intrusion Detection: Monitors file integrity and logs administrative actions to create transparent operational audit trails.
Compliance, Audits & Privacy Shield
Pitechpedia Careers is fully aligned with modern international data protection standards, including GDPR and standard applicant security benchmarks.
We execute annual external security audits and internal penetration testing cycles to guarantee our codebase, database servers, and hosting providers adhere to industry best practices in secure software development lifecycle (SSDLC).
Responsible Vulnerability Disclosure
Pitechpedia values the efforts of independent security researchers who help protect our applicant ecosystem. If you discover a potential vulnerability within the Pitechpedia Careers portal, please report it to us responsibly:
- Send a detailed diagnostic summary and reproduction steps to our security team via security@pitechpedia.com.
- Provide us with a reasonable timeframe to analyze and address the issue before releasing details publicly.
- Do not attempt to access, download, or modify candidate data belonging to other users during your research.