Chief Information Security Officer (CISO), Board Member (Three-Year Term)- Remote 2026-2028

Job Vacancy Announcement

Chief Information Security Officer (CISO), Board Member

Volunteer Board Position

Term Length: Three (3) Years

Location: Remote

Position Type

Non-Paid, Volunteer Leadership Role

About Women of Color on the Move

Women of Color on the Move (WOCOTM) is a nonprofit public benefit organization committed to empowering historically marginalized communities by advancing health equity, economic empowerment, education, and social justice. Since its founding in 2014, WOCOTM has delivered community-based education, advocacy, prevention, and support programs addressing issues such as substance abuse, maternal and child health, youth development, financial literacy, and community engagement both in the U.S. and internationally. Our vision is to create a world where all individuals, regardless of race, gender, or socioeconomic background, have access to opportunities to thrive.

This mission-driven organization seeks a skilled legal professional to serve in a strategic volunteer leadership role on the Board of Directors.

Position Overview

We are seeking a mission-driven Chief Information Security Officer (CISO) to serve as a Board-appointed officer and member of the Board of Directors.

The CISO provides strategic leadership and governance oversight for the organization’s cybersecurity, information security, and data protection programs. This fiduciary role focuses on safeguarding organizational systems, data assets, and digital infrastructure against internal and external threats while supporting responsible risk management and regulatory compliance.

The CISO works collaboratively with executive leadership and fellow board members to balance security, operational effectiveness, enterprise risk management, and mission delivery within a nonprofit environment.

This is a non-paid, volunteer board leadership position.

Why This Is a Meaningful Opportunity

Serving as Chief Information Security Officer (Board Member) offers a unique opportunity to:

• • Protect sensitive community, donor, volunteer, and organizational data.
  • Provide high-level oversight of cybersecurity risk and enterprise threat management.
  • Strengthen compliance, privacy, and responsible data protection practices.
  • Apply advanced cybersecurity expertise in support of a mission-driven nonprofit.
  • Expand board-level governance experience in security and risk oversight.
  • Collaborate with executive leadership to embed security into organizational strategy.
  • Contribute to safeguarding digital infrastructure that supports community impact.

This role is ideal for a seasoned cybersecurity professional who is passionate about protecting mission-driven organizations through strong governance and proactive risk management.

Key Responsibilities

Cybersecurity Strategy & Governance

• • Develop and maintain an organization-wide information security and cybersecurity strategy aligned with mission and risk tolerance.
  • Establish and oversee information security policies, standards, and procedures.
  • Advise executive leadership and the Board on cybersecurity risks, trends, and mitigation strategies.

Risk Management & Threat Mitigation

• • Identify, assess, and manage cybersecurity risks across systems, applications, and data assets.
  • Conduct risk assessments, vulnerability reviews, and security evaluations.
  • Develop and oversee mitigation plans addressing identified threats and weaknesses.

Data Protection & Privacy

• • Ensure protection of sensitive and personally identifiable information (PII), including donor, client, volunteer, and employee data.
  • Support compliance with data privacy laws, regulations, and grant-related security requirements.
  • Establish data access controls, retention standards, and secure handling practices.

Incident Response & Security Operations

• • Develop and maintain incident response and breach response plans.
  • Lead or coordinate response efforts in the event of a cybersecurity incident.
  • Oversee post-incident analysis, reporting, and remediation efforts.

Collaboration & Organizational Support

• • Collaborate with the CIO and CTO to integrate security controls into systems and technology initiatives.
  • Provide guidance to staff, volunteers, and contractors on security awareness and best practices.
  • Support cybersecurity audits, assessments, and reporting to leadership and funders as required.

Additional duties may be assigned as organizational needs evolve.

Volunteer Role Notice

This is a non-paid, volunteer leadership role. Individuals serving in this capacity are not employees of the organization and do not receive financial compensation or employment benefits. Time commitment expectations and responsibilities will be mutually agreed upon in writing.

Qualifications

Education & Credentials

Required:

• • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a closely related field.
  • One of the following certifications:
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Or equivalent recognized cybersecurity certification

Preferred:

• • Master’s degree in Cybersecurity, Information Assurance, Information Systems, or related discipline.
  • Ongoing professional development in cybersecurity risk management and compliance frameworks.

Experience & Expertise

• • Extensive experience in cybersecurity risk management, information security governance, and threat mitigation.
  • Demonstrated experience developing and implementing security policies, controls, and incident response plans.
  • Strong understanding of data privacy laws, compliance requirements, and security frameworks.
  • Experience communicating complex security risks to executive leadership and non-technical stakeholders.
  • Experience in nonprofit, healthcare, education, or grant-funded environments preferred.
  • Commitment to ethical governance, confidentiality, and responsible digital stewardship.

How to Apply

Interested candidates should submit:

• • A current resume or CV
  • A brief statement of interest outlining relevant nonprofit or governance experience
  • Confirmation of active bar licensure

Applications will be reviewed on a rolling basis.