ITOrizon is a forward-thinking product company specializing in enterprise-grade solutions. Our flagship product, Karolium, is a cutting-edge Low-Code/No-Code PaaS platform designed to accelerate digital transformation across industries. As we scale, security and compliance are paramount to our mission.
Role Overview
Senior Manager / Director – Security & Compliance role at ITOrizon, focusing on their Karolium Low-Code/No-Code PaaS product. We are seeking a seasoned Security & Compliance Leader to own and drive the end-to-end security strategy for ITOrizon and its Karolium platform. This role is critical in ensuring robust security architecture, regulatory compliance, and risk management across our product and corporate infrastructure.
Security Leadership
- Define and implement the security vision, strategy, and roadmap for ITOrizon and Karolium.
- Lead application, infrastructure, and cloud security initiatives across the product lifecycle.
- Establish and enforce secure SDLC practices, including threat modeling, code reviews, and vulnerability assessments.
- Oversee incident response, disaster recovery, and business continuity planning.
Compliance & Governance
- Ensure adherence to global compliance frameworks (e.g., ISO 27001, SOC 2, GDPR, HIPAA, PCI-DSS) relevant to PaaS platforms.
- Own audit readiness, documentation, and liaison with external auditors and regulatory bodies.
- Develop and maintain policies, procedures, and controls to meet compliance obligations.
Product & Platform Security
- Collaborate with Product and Engineering teams to embed security-by-design principles into Karolium.
- Conduct regular penetration testing, security assessments, and third-party risk evaluations.
- Monitor and respond to security threats, vulnerabilities, and emerging risks in cloud-native environments.
Stakeholder Engagement
- Educate and train internal teams on security best practices and compliance awareness.
- Act as the primary point of contact for all security-related matters with customers, partners, and regulators.
- Represent ITOrizon in industry forums, security consortiums, and compliance networks.
- 10+ years of experience in Information Security, with at least 3 years in a leadership role.
- Proven expertise in cloud security, DevSecOps, and PaaS product compliance.
- Strong understanding of low-code/no-code platforms, microservices, and API security.
- Certifications such as CISSP, CISA, CCSP, or ISO Lead Auditor are highly desirable.
- Experience working with global compliance standards and managing security audits.
- Opportunity to shape the security posture of a next-gen PaaS product.
- Work with a passionate team in a high-growth tech environment.
- Competitive compensation, flexible work arrangements, and continuous learning.
If you’re ready to lead innovation in warehouse management and drive PaaS success across global markets, we would love to hear from you.
Please visit our websites: www.ITOrizon.com & www.Karolium.com
Email your Resume to engage@itorizon.com
12 to 20 years
Senior
