In an era where financial crime moves at the speed of a blockchain transaction and insider threats have quietly dissolved corporate perimeters, the work of untangling complex fraud across jurisdictions has never been more demanding — or more consequential. Sagarika Chakraborty, CEO for India and the Gulf and Global Head of Investigations at IIRIS Consulting, sits at precisely this intersection of technology, law, and geopolitical complexity. Overseeing high-stakes investigations across the India-Gulf corridor, she brings a rare combination of forensic precision and strategic foresight to a discipline being fundamentally reshaped by AI and digital assets. In this conversation, she pulls back the curtain on how modern investigators are outpacing increasingly sophisticated adversaries.
CEO, India & Gulf
IIRIS Consulting
CISO Forum: Cross-border investigations are increasingly data-driven—how is technology reshaping evidence gathering across jurisdictions?
Sagarika Chakraborty: Technology has fundamentally changed the geometry of cross-border investigations. We are no longer just following paper trails across borders; we are mapping digital footprints that span multiple jurisdictions simultaneously. Advanced data analytics and digital forensics allow us to process terabytes of unstructured data in real time, turning noise into actionable intelligence. When you are dealing with complex financial fraud or geopolitical risk, the ability to rapidly synthesize data from disparate global sources is what separates a successful recovery from a dead end. However, the real power of technology lies not just in gathering evidence, but in connecting the dots across different regulatory environments to build a cohesive, undeniable narrative. It is about precision and anticipation, much like fencing, where knowing the opponent’s next move is more critical than the strike itself.
CISO Forum: What role do AI and advanced analytics play today in detecting complex financial crime patterns?
Sagarika Chakraborty: Artificial Intelligence and advanced analytics are no longer support tools; they are the frontline defense against financial crime. Fraudsters are operating with unprecedented sophistication, often using automated systems to obscure their tracks through layers of shell companies and rapid transactions. AI allows us to level the playing field. By deploying machine learning algorithms, we can identify anomalies and behavioral patterns that human analysts might miss in the sheer volume of data. Whether it is detecting a subtle shift in transaction velocities or uncovering hidden networks in a hawala operation, advanced analytics provide the clarity needed to act decisively. It brings a level of stillness and control to the chaos of high-stakes investigations, allowing us to focus our resources exactly where the risk is highest.
CISO Forum: How are insider threats evolving with hybrid work and digital collaboration tools?
Sagarika Chakraborty: The perimeter of the modern organization has dissolved. With hybrid work and the proliferation of digital collaboration tools, the traditional boundaries of corporate security no longer exist. Insider threats have evolved from physical data theft to subtle, decentralized breaches of trust. Employees now have unprecedented access to sensitive information outside the controlled environment of a corporate office. This shift requires a fundamental change in how we approach risk. We cannot rely solely on technological guardrails; we must integrate behavioral sciences and continuous integrity due diligence. Understanding the human element, the subtle shifts in behavior or communication patterns, is just as critical as monitoring access logs. Protecting an organization today means building a culture of security that follows the employee wherever they work.
CISO Forum: What are the biggest challenges in tracing digital assets and cryptocurrencies during fraud investigations?
Sagarika Chakraborty: The fundamental challenge with blockchain and crypto wallets is their inherent opacity. There is a common misconception that blockchain means full transparency. In reality, while you may be able to identify a wallet holder or a wallet address, the assets sitting within that wallet and their movement across the chain remain remarkably difficult to trace. You can see the door, but you cannot always see what is behind it or where it leads. Fraudsters exploit this gap aggressively, using mixers, tumblers, and cross-chain swaps to fragment the trail further and sever any deterministic link between transactions. The speed at which digital assets can be moved across borders and converted into fiat or other currencies compounds the problem. And when you layer on the absence of a unified global regulatory framework, recovering these assets becomes an exercise in navigating a patchwork of international laws while cooperating with exchanges that have vastly different levels of compliance and willingness to engage. It requires a collective, coordinated effort, much like a kabaddi raid, where success depends entirely on the strength and alignment of the team backing you up.
CISO Forum: How do regulatory differences between India and the Gulf impact tech-enabled investigations?
Sagarika Chakraborty: Operating in the India-Gulf corridor requires a nuanced understanding of two very different regulatory philosophies. India is rapidly evolving its data protection and digital evidence frameworks, while the Gulf region presents a diverse landscape of stringent privacy laws and localized compliance mandates. When conducting tech-enabled investigations across these regions, the challenge is maintaining the integrity and admissibility of digital evidence while strictly adhering to local data sovereignty laws. You cannot apply a one-size-fits-all technological solution. It requires building bridges between different legal standards and ensuring that our investigative methodologies are robust enough to withstand scrutiny in both jurisdictions. Success in this corridor is about equity and adaptability, ensuring that our tools and strategies respect the local context while achieving the overarching goal of uncovering the truth.
CISO Forum: Are organizations investing enough in early-warning systems, or are they still reacting post-breach?
Sagarika Chakraborty: Despite the clear escalation in threat landscapes, many organizations remain fundamentally reactive. There is a tendency to invest heavily in incident response and crisis management only after a breach has occurred. True resilience, however, is built on anticipation. Investing in early-warning systems, continuous risk monitoring, and proactive intelligence gathering is what prevents vulnerability from becoming a headline. We need to shift the mindset from damage control to threat prevention. This means integrating strategic risk advisory into the core business strategy, rather than treating security as an afterthought. When organizations prioritize early detection, they are not just protecting their assets; they are actively building a cleaner, more secure operational environment. It is about holding the line before the threat even reaches the perimeter.
