Vymo is transforming how financial institutions manage their distribution networks and collections operations. Our AI-powered Distribution Management System (DMS) and Collection Management System (CMS) platform is trusted by 350,000+ users across 70+ global financial enterprises. We enable banks and insurers to optimize performance across their distribution channels and drive operational excellence in collections.

Why Global Leaders Choose Vymo

Vymo partners with financial institutions through a comprehensive solution that combines deep domain expertise with cutting-edge technology. Our platform's human-centric design, coupled with enterprise-grade scalability and AI-powered intelligence, delivers measurable business outcomes while ensuring high user adoption and engagement.

Recognition & Trust

Funding: Backed by $45M+ from leading investors, including Peak XV partners (formerly Sequoia), Emergence Capital, and Bertelsmann Investments.
Clients: Trusted by global financial leaders such as Berkshire Hathaway, AIA, AXA, SBI Life, HDFC Bank, Aditya Birla Capital, Tata AIA, and ABSLI.
Industry Recognition:
- Recognized by Celent in their 2024 Distribution Management Solutions report (Advanced Functionality ranking).
- Featured in Gartner's Market Guide for Sales Engagement Applications.
- Recognized as a "Strong Performer" in Forrester's Sales Engagement Wave Report.
- Recipient of the Microsoft 'AI for All' award for innovation in artificial intelligence.

Explore Vymo at vymo.com

Product Evolution

The evolution of Vymo's product can be divided into three strategic phases:

Lead and Activity Management: Providing a mobile-first tool for large enterprises with distributed field sales teams to digitize processes and gain real-time visibility into team productivity.
Sales Engagement Platform: Building advanced capabilities (nudges, goals, playbooks, performance dashboards) to improve business outcomes for financial institutions.
Distribution Management Platform (Current Phase): Consolidating the tech stack for financial institutions. Our long-term vision is to become an insurance "core system" by owning the end-to-end advisor life cycle, encompassing recruitment, onboarding, training, selling, engagement, and performance management.

About the Role:

We are seeking an Information Security Leader to operate at the intersection of technology, compliance, and customer trust. This is a highly visible, external-facing role where you will represent our security posture to enterprise clients in highly regulated sectors (banking, insurance, financial services).

Key Responsibilities

You will partner closely with an external strategic security firm and be responsible for translating complex security requirements into clear, actionable commitments, both internally and externally.What You'll DoCustomer Engagement & Trust

Primary Contact: Serve as the main security point of contact for enterprise customers during procurement, contract negotiations, and periodic security reviews.
Security Representation: Lead all customer-facing security discussions, including RFP responses, vendor risk assessments, and security questionnaires.
Build Credibility: Establish and maintain strong security credibility with CISOs, Risk, and Compliance teams at client organizations.
Audit Management: Represent Vymo's security posture in customer-initiated audits, due diligence processes, and regulatory inquiries.

Compliance & Risk Management

Framework Ownership: Own and manage critical compliance frameworks relevant to regulated industries (e.g., DPDP Act, ISO 27001, SOC 2, RBI/IRDAI guidelines).
Risk Mitigation: Conduct and oversee risk assessments, gap analyses, and remediation planning.
Contractual Security: Maintain Data Processing Agreements (DPAs), security schedules, and contractual security obligations with enterprise clients.
Regulatory Monitoring: Proactively monitor the evolving regulatory landscape across key customer segments and update internal controls accordingly.

Cloud & Technical Security

Security Architecture: Oversee the security architecture and posture of our cloud infrastructure (AWS/GCP/Azure), focusing on access controls, data encryption, network segmentation, and logging.
Security in SDLC: Partner with engineering and DevOps teams to embed security into the Software Development Life Cycle (SDLC), CI/CD pipelines, and product releases.
Proactive Security: Lead vulnerability management, penetration testing programs, and incident response planning.
Tooling: Manage and optimize security tooling, including SIEM, endpoint protection, identity management, and data loss prevention.

Strategic Partnership & Internal Leadership

Security Roadmap: Work with the external strategic security partner to design and execute the company's long-term security roadmap.
Execution: Translate strategic guidance into prioritized internal execution plans for technical teams.
Team Building: Build and mentor a small internal security function as the company scales.
Internal Liaison: Work closely with engineering teams to address reported issues, follow up on corrective actions, and report status to stakeholders, including clients and internal partners.
Vendor Management: Evaluate security software tools and vendors, conducting TCO/pros/cons analysis to make informed implementation and onboarding decisions.
Reporting: Report to senior leadership on key security performance indicators (KPIs), risk posture, and compliance status.

Requirements

Experience

Core Experience: 8–12 years in information security, with at least 3 years in a manager or leadership role.
Industry Preference: Prior experience in a B2B SaaS company or technology vendor serving regulated industries is highly preferred.
Focus: Demonstrated experience in customer-facing security roles—not solely internal security operations.
Technical: Hands-on experience with cloud security (AWS, GCP, or Azure) and familiarity with cloud-native security tools.

Knowledge & Skills

Compliance Expertise: Deep understanding of compliance frameworks relevant to BFSI, including DPDP, ISO 27001, SOC 2 Type II, RBI Master Directions, and IRDAI guidelines.
Risk Management: Strong grasp of risk management principles and the ability to assess and articulate risk in clear business terms.
Autonomy: Ability to independently own and respond to security questionnaires, audits, and vendor assessments.
Legal Acumen: Comfortable reviewing and negotiating security clauses in contracts and Data Processing Agreements (DPAs).
Architecture: Familiarity with modern security architecture concepts: zero trust, least privilege, data residency, and encryption (at rest and in transit).

Attributes

Exceptional Communicator: Able to explain complex security topics equally well to a non-technical CFO and a client's technical security team.
Commercially Aware: Understands that security is both a risk management function and a critical competitive differentiator in B2B sales.
Agile & Adaptable: Operates effectively with ambiguity, balancing thoroughness with speed in a fast-paced environment.
Highly Collaborative: Naturally able to work across Sales, Engineering, Legal, and Product teams without creating friction.

Preferred Certifications: CISSP, CISM, CCSP, ISO 27001 Lead Implementer/Auditor, or equivalent.

Why This Role Matters

For our customers—regulated financial institutions—security and compliance are non-negotiable foundations of their business. This role is central to how Vymo earns and retains customer trust, supports revenue growth, and manages enterprise risk. You will have direct exposure to senior leadership and significant influence over company-wide security decisions.

Apply now

See more open positions at Vymo

Privacy policy Cookie policy