Skip links
Linkedin
Facebook
Instagram
Twitter
iTCart

Chief Information Security Officer

Job Code: HRD/ITC/CISO/2025-2026/JD-0086 

Job Title: Chief Information Security Officer 

Location: Bengaluru, India  

Reports To: Global CTO 

About iTCart Private Limited (iTCart):  

iTCart Private Limited isn’t just a company – it’s a global movement redefining how industries think, operate, and thrive in the age of Artificial Intelligence. Headquartered in Bengaluru, India’s Silicon Valley, and spanning across innovation hubs in the USA, UK, KSA, UAE, and LATAM, iTCart stands at the forefront of AI-powered digital transformation. We don’t follow trends; we create them. With a relentless focus on AI-driven disruption, iTCart’s Patent-pending AIX Framework serves as the backbone of a new era of efficiency, innovation, and scalability. This proprietary technology isn’t just a tool – it’s a paradigm shift. From automating complex workflows to unlocking hyper-personalized insights with Generative AI, our solutions empower enterprises to leapfrog from legacy systems to future-ready ecosystems. 

Position Overview 

The Chief Information Security Officer (CISO) will define and implement a comprehensive cybersecurity strategy, focusing on AI-specific threats, cloud security, supply chain protection, and data governance. This role will ensure the security of iTCart’s AI-powered solutions, align security initiatives with business objectives, and maintain compliance with global regulations. 

Key Responsibilities 

Cybersecurity Strategy & Leadership 

  • Define and execute a global cybersecurity strategy that protects iTCart’s AI-powered SaaS platforms and cloud infrastructure. 
  • Establish and maintain a Zero Trust security architecture to safeguard internal and external networks. 
  • Lead the development of cyber risk management frameworks, focusing on AI, data protection, and enterprise IT systems. 
  • Stay ahead of emerging threats, incorporating threat intelligence and proactive defence mechanisms into the strategy. 

Cloud Security & AI-Specific Threat Management 

  • Collaborate with the CTO and engineering teams to implement AI-specific security measures, ensuring the protection of AI models, pipelines, and sensitive datasets. 
  • Oversee cloud security strategies for Azure, AWS, and hybrid cloud environments, ensuring secure deployment and management. 
  • Protect against adversarial AI attacks, data poisoning, and unauthorized access to AI models. 

Supply Chain Security & Third-Party Risk Management 

  • Develop and enforce a supply chain security framework to identify and mitigate risks from third-party vendors. 
  • Conduct regular vendor security assessments, ensuring adherence to security standards and protocols. 
  • Implement third-party risk management solutions to monitor and control vulnerabilities across the supply chain. 

Data Protection & Encryption Strategy 

  • Lead the implementation of data encryption policies and data loss prevention (DLP) solutions. 
  • Ensure the security of sensitive information, including customer data and intellectual property. 
  • Develop comprehensive data protection frameworks to comply with GDPR, HIPAA, and other global regulations. 

Incident Response, Red Team/Blue Team Exercises, and Business Continuity 

  • Lead the incident response team, ensuring rapid response and resolution of security incidents. 
  • Conduct regular Red Team/Blue Team exercises to test and improve iTCart’s security posture. 
  • Develop and maintain business continuity and disaster recovery plans, ensuring operational resilience. 

Compliance, Governance, and AI-Specific Regulations 

  • Ensure compliance with global standards such as ISO 27001, SOC 2, GDPR, HIPAA, and BFSI regulatory requirements. 
  • Establish an AI ethics and governance framework to ensure responsible use of AI technologies. 
  • Oversee algorithmic transparency, fairness, and data governance for AI models. 
  • Partner with legal and compliance teams to manage audits and regulatory requirements. 

Team Leadership & Security Culture Development 

  • Build, lead, and mentor a global information security team, fostering a culture of security awareness and accountability. 
  • Develop and execute security awareness training programs for employees, ensuring company-wide adherence to security best practices. 
  • Collaborate with cross-functional teams to embed security into product development, IT operations, and business processes. 

Key Performance Indicators (KPIs) 

Security & Risk Management 

  • Incident Response Time: Reduce response time to <30 minutes for critical incidents. 
  • Vulnerability Remediation: Ensure 100% remediation of critical vulnerabilities within SLAs. 
  • Cloud Security Posture: Achieve and maintain security benchmark scores above 95%. 
  • Third-Party Risk Management: Ensure full security compliance for all critical vendors. 

Operational Efficiency & Innovation 

  • Red Team/Blue Team Exercises: Conduct at least two successful exercises annually to improve security readiness. 
  • Security Automation: Reduce manual processes by 30% through automation. 
  • AI Model Security: Maintain a secure AI environment with zero adversarial attacks or data breaches. 

Compliance & Governance 

  • Regulatory Compliance: Ensure 100% adherence to GDPR, HIPAA, and BFSI frameworks. 
  • Business Continuity Readiness: Pass at least two business continuity tests annually. 
  • Security Training Participation: Achieve 90%+ participation in quarterly security awareness sessions. 

Mandatory Qualifications 

  • 20+ years of experience in information security, risk management, and compliance within large enterprises. 
  • Proven expertise in cybersecurity strategy, AI-specific security, and cloud-native environments (Azure, AWS). 
  • Strong knowledge of data protection, encryption standards, and Zero Trust architectures. 
  • Experience in supply chain security, third-party risk management, and vendor assessments. 
  • Exceptional leadership skills, with experience managing global security teams and driving cultural change. 
  • Deep understanding of global regulatory standards (ISO 27001, GDPR, HIPAA, NIST) and AI governance. 

Optional Skills 

  • Experience in threat intelligence and adversarial AI defence strategies. 
  • Familiarity with blockchain security and secure multi-party computation (SMPC). 
  • Published work or contributions to cybersecurity research or AI governance. 
  • Strong background in business intelligence and security automation solutions. 

Why iTCart?  

Global Impact, Local Precision: Serving 25+ industries, Technology, BFSI, Healthcare, Real Estate, and beyond – we tailor AI to solve region-specific challenges while driving universal progress.  

The AIX Ecosystem: Our suite of cutting-edge platforms (AIX HUB, AIX Desk, RCM AIX, Insure AIX, and more) acts as the central nervous system for businesses, transforming raw data into strategic mastery.  

Beyond Profit: We measure success not just in revenue, but in societal impact. Every innovation is infused with purpose – reinvesting in communities, reducing global inequities, and democratizing access to AI for businesses of all sizes.  

Vision: To be the architect of the world’s smartest enterprises, where AI isn’t an add-on but the DNA of every operation. We envision a future where iTCart’s technology erases the line between human potential and machine capability, enabling industries to scale limitlessly, act fearlessly, and lead unapologetically.  

Welcome to the future, engineered today. 

How to Apply 
Send your resume and a cover letter detailing your experience to [email protected] or apply directly on our Career Page https://itcart.io/careers/

Job Category: Information Technology & Engineering
Job Type: Full Time
Job Location: Bengaluru

Apply for this position

Allowed Type(s): .pdf, .doc, .docx
This website uses cookies to improve your web experience.