Director of Cyber Strategy & Transformation (Volunteer)

Director of Cyber Strategy & Transformation (Volunteer)

PromiseShield | Cybersecurity Strategy, Digital Transformation & Security Innovation

Organization: Mentor A Promise (MAP)

Division: PromiseShield

Location: Remote with NYC-based collaboration as needed

Commitment: Approximately 5–10 hours per week

Type: Volunteer Leadership Role

Minimum Commitment: 6-month commitment required

Reports To: Chief Information Security Officer

About Mentor A Promise

Mentor A Promise (MAP) is a New York City–based nonprofit organization serving children and youth ages 5–18 experiencing housing instability through mentorship, literacy, social-emotional learning, educational enrichment, workforce development, creative opportunity, advocacy, housing innovation, and community-centered support.

Protecting the children, families, volunteers, staff, and partners who place their trust in MAP is one of our highest responsibilities.

Cybersecurity is not simply about technology.

It is about protecting people, safeguarding information, and ensuring organizational resilience.

About PromiseShield

PromiseShield is MAP's cybersecurity, information security, governance, risk management, privacy, and digital resilience division.

The division protects MAP's people, technology, information, and digital infrastructure through proactive security, enterprise risk management, governance, and continuous improvement.

PromiseShield works to build a secure, resilient, and trusted digital organization.

Role Overview

The Director of Cyber Strategy & Transformation serves as the leader responsible for shaping MAP's long-term cybersecurity strategy, security transformation initiatives, and organizational cyber maturity.

This role develops enterprise cybersecurity roadmaps, evaluates emerging technologies, identifies opportunities for innovation, and helps guide the evolution of MAP's cybersecurity capabilities as the organization grows.

Working closely with PromiseCloud, PromiseEngineering, PromiseProducts, PromiseOperations, and executive leadership, the Director ensures cybersecurity is embedded into organizational strategy, technology modernization, and digital transformation initiatives.

The ideal candidate is a strategic cybersecurity leader who combines strong technical knowledge with business strategy, organizational change, and long-term planning.

Key Responsibilities

Cybersecurity Strategy

• Develop and maintain MAP's long-term cybersecurity strategy
• Create multi-year cybersecurity roadmaps and transformation plans
• Align cybersecurity initiatives with organizational strategy and growth
• Identify strategic priorities and investment opportunities
• Advise leadership on cybersecurity trends and emerging risks

Cyber Transformation

• Lead enterprise cybersecurity transformation initiatives
• Support modernization of security capabilities and operating models
• Strengthen organizational cyber resilience and security maturity
• Identify opportunities to improve cybersecurity processes and governance
• Promote security as a strategic business capability

Security Architecture & Innovation

• Evaluate emerging cybersecurity technologies and best practices
• Promote secure-by-design, privacy-by-design, and resilience-by-design principles
• Support adoption of modern security architectures
• Encourage innovation that improves organizational security
• Recommend future-ready security capabilities

Cybersecurity Maturity

• Assess organizational cybersecurity maturity
• Develop improvement plans based on recognized security frameworks
• Track progress toward long-term security goals
• Support continuous capability development
• Strengthen enterprise security governance

Strategic Risk & Executive Advisory

• Advise executive leadership on strategic cyber risks
• Support enterprise risk management initiatives
• Provide recommendations on cybersecurity priorities
• Prepare strategic reports and executive briefings
• Promote informed cybersecurity decision-making

Cross-Divisional Collaboration

• Partner with PromiseCloud on secure infrastructure strategy
• Collaborate with PromiseEngineering on secure software development
• Support PromiseProducts in embedding security into digital products
• Work with PromiseOperations on enterprise transformation initiatives
• Align cybersecurity strategy with organizational priorities

Leadership Responsibilities

The Director provides leadership and oversight for:

Cyber Strategy

Responsible for:

• Cybersecurity vision
• Strategic planning
• Security roadmaps
• Enterprise alignment

Cyber Transformation

Responsible for:

• Security modernization
• Organizational transformation
• Capability development
• Continuous improvement

Security Innovation

Responsible for:

• Emerging technologies
• Security architecture
• Future-ready capabilities
• Innovation strategy

Cybersecurity Maturity

Responsible for:

• Maturity assessments
• Governance improvements
• Capability growth
• Strategic metrics

Preferred Qualifications

• Experience in cybersecurity strategy, enterprise security, digital transformation, information security, technology leadership, or related fields
• Strong understanding of cybersecurity frameworks, governance, risk management, and security architecture
• Experience developing enterprise security strategies or transformation programs
• Excellent communication and executive presentation skills
• Strong strategic planning and organizational leadership abilities
• Passion for building secure, resilient, and mission-driven organizations

Why This Role Matters

Cybersecurity must evolve as organizations evolve.

Strong security is not achieved through individual tools.

It is achieved through vision, strategy, planning, and continuous improvement.

The Director of Cyber Strategy & Transformation helps ensure that Mentor A Promise builds a cybersecurity program capable of protecting its mission today while preparing for tomorrow's challenges.

This role helps create a secure foundation that allows the organization to innovate, grow, and serve children and families with confidence.

Success Measures

• Development and execution of cybersecurity strategy
• Progress toward cybersecurity maturity goals
• Successful delivery of transformation initiatives
• Strength of enterprise security governance
• Adoption of secure-by-design principles
• Organizational cyber resilience and readiness

Leadership Participation

The Director of Cyber Strategy & Transformation is expected to:

• Attend divisional leadership meetings
• Conduct regular check-ins with direct reports
• Participate in enterprise planning and strategic initiatives
• Support cross-divisional collaboration and executive decision-making

Volunteer Expectations

• Approximately 5–10 hours per week
• Minimum 6-month commitment required
• Maintain timely and professional communication
• Collaborate through MAP systems and communication platforms
• Support MAP's safeguarding standards, mission, and organizational values
• Foster a culture of security, accountability, and continuous improvement

What You'll Gain

• Leadership experience helping shape an enterprise cybersecurity strategy
• Opportunity to build a world-class cybersecurity program within a growing nonprofit
• Collaboration with executive leaders, technology teams, and security professionals
• Professional references and letters of recommendation
• Meaningful impact protecting the information, systems, and people who support children and families experiencing housing instability

How to Apply

Interested candidates should apply directly through Idealist and include their resume and cover letter.

Please highlight experience involving cybersecurity strategy, digital transformation, enterprise security, information security, risk management, security architecture, or related disciplines.

Help build the secure, resilient, and trusted digital foundation that enables Mentor A Promise to serve children and families for generations to come.

Thank you for your interest in volunteering with our organization. At this time, volunteer opportunities are limited to individuals based in the United States due to legal, safeguarding, data-privacy, and programmatic requirements. We appreciate your interest in our mission and your understanding of these constraints.