VP, Cybersecurity

Position Summary

The role of the information security department is to safeguard enterprise information, computing assets, intellectual property and customer privacy while providing data retention and compliance oversight.  We are seeking a seasoned CISO‑caliber leader who can immediately step into any Vista portfolio company and operate as its de‑facto Chief Information Security Officer. This role serves as a critical extension of the CISO organization, providing expert‑level leadership across cyber strategy, governance, incident response, due diligence, and enterprise risk reduction.

The ideal candidate is a builder, operator, and strategic advisor — equally comfortable leading a cyber program from the ground up, running a crisis with executive poise, or briefing a board on material risk. This leader must bring the judgment, technical depth, and executive presence required to influence CEOs, CTOs, CISOs, and boards across a diverse portfolio.

This role, VP of Information Security, will be driving cyber excellence across our companies, conducting cyber due diligence on new investments, supporting material incidents and IR, and shaping long‑term value creation through top‑tier cyber risk management practices.

Responsibilities

Portfolio CISO Leadership

• Serve as an acting CISO for portfolio companies when needed, delivering immediate stability, clarity, and direction.
• Build or mature cyber programs, including strategy, roadmap, governance, and operating models.
• Run or oversee major incidents, bringing structure and calm during chaotic situations.
• Support portfolio leadership during material cyber incidents and breaches, providing executive level guidance, stabilizing decision making, and ensuring the right technical and strategic actions occur quickly.
• Assess cyber maturity, identify the highest value improvements, and develop pragmatic, board ready action plans.
• Navigate complex trade offs with CEOs, CTOs, and CISOs, driving alignment and accountability.

Cyber Program Build & Execution

• Design and execute end to end security programs across cloud, application, data, identity, and infrastructure.
• Implement common security standards and best practices across the portfolio.
• Create metrics, KPIs, reporting structures, and governance frameworks that ensure durable risk reduction.
• Cyber Due Diligence
• Perform deep dive assessments of target companies and add ons, including architecture, threat exposure, engineering/security practices, product security, and compliance.
• Produce clear diligence reports that influence investment decisions and highlight value creation opportunities.

Strategic Advisory & Governance

• Advise CEOs, executive teams, and boards on cyber strategy, material risks, budget, and organizational design.
• Guide leaders through difficult prioritization and risk trade off discussions with a balanced, pragmatic approach.
• Ensure high quality cyber governance across the portfolio — policies, controls, oversight, reporting, and audit readiness.

Internal Vista Leadership

• Partner closely with the CISO, Compliance, Legal, and Value Creation teams to drive portfolio wide cyber uplift.
• Serve as a key thought leader, shaping our approach to cyber maturity, value creation, and portfolio enablement.
• Contribute to fund raising, thought leadership, or external facing initiatives as required.

Qualifications

• Deep, expert-level cybersecurity leadership experience across technical, operational, and risk domains, including M&A and cyber due diligence, incident response and crisis management, cloud and application security, product security, governance/risk/compliance, and enterprise security program design and execution
• Demonstrated ability to partner with private equity deal teams to assess prospective investments and support value creation initiatives, particularly within cybersecurity- and privacy-focused businesses
• Broad technical mastery across core cybersecurity capabilities, including identity and access management, detection and response, vulnerability management, secure software engineering, data protection and privacy, security policies and standards, and third-party/vendor risk management
• 12–20+ years of progressive cybersecurity experience, including prior service as a CISO or senior deputy CISO in high-growth, complex, or multi-entity environments; enterprise software or technology-enabled businesses preferred
• Experience working with or advising private equity–backed companies strongly preferred
• Bachelor’s degree in a relevant field required; Master’s degree in cybersecurity, engineering, computer science, business administration, or a related discipline preferred
• Professional certifications strongly preferred (not required), including CISSP, CISM, CCSP, GIAC (e.g., GCIH, GCIA, GRID, GCSA), OSCP, CISA, or equivalent credentials demonstrating technical depth and governance discipline

The annualized base pay range for this role is expected to be between $330,000- $390,000. Actual base pay could vary based on factors including but not limited to experience, subject matter expertise, geographic location where work will be performed and the applicant’s skill set. The base pay is just one component of the total compensation package for employees. Other components may include an annual cash bonus and a comprehensive benefits package.

Company Overview

Vista is a global technology investor that specializes in enterprise software. Vista’s private market strategies seek to deliver differentiated returns through a proprietary and systematic approach to value creation developed and refined over the course of 25 years and 650+ transactions. Today, Vista manages a diversified portfolio of software companies that provide mission-critical solutions to millions of customers around the world. As of June 30, 2025, Vista had more than $100 billion in assets under management. Further information is available at vistaequitypartners.com. Follow Vista on LinkedIn, @Vista Equity Partners, and on X, @Vista_Equity.