Cybersecurity Governance & Policy Volunteer

ABOUT US

Protect Us Kids Foundation (PUK) is on a mission to shield young people from cyber threats while empowering them to create a safer digital world. As technology transforms how we live and connect, we stand as global leaders advocating for the safety and protection of youth in virtual spaces.

WORKSTREAM

Cybersecurity and Data Governance Readiness

ROLE OVERVIEW

Protect Us Kids Foundation (PUK) is seeking a Cybersecurity Governance & Policy Volunteer to support the development and maintenance of our cybersecurity and privacy governance framework. This role focuses on policy, documentation, and governance readiness, not operational security or compliance enforcement.

The volunteer will work closely with the VP, Global Cybersecurity Compliance & External Affairs to help ensure PUK’s governance practices reflect the regulatory complexity of a U.S.-based, volunteer-run nonprofit with a global mission. PUK’s governance framework spans multiple regulatory jurisdictions and standards, including NIST, COPPA, GDPR, UK GDPR, POPIA, PIPEDA, Australian Privacy Principles, the UN Convention on the Rights of the Child, and the WeProtect Global Alliance framework.

This role is well suited for cybersecurity professionals interested in GRC, policy development, and board-level governance experience within a globally operating child protection organization.

YOUR IMPACT

• Strengthen the governance foundation that protects children across rural and under-resourced communities worldwide
• Help PUK maintain governance readiness across multiple international regulatory frameworks as the organization scales
• Contribute to policy documentation that directly supports the We-Rise Platform and RiseUp application, ensuring youth-centered digital infrastructure meets global privacy and safety standards
• Support board-level visibility into cybersecurity posture through clear, well-organized governance materials
• Build governance language that reflects the intersection of cybersecurity, child safety, and global equity

KEY RESPONSIBILITIES

• Draft, review, and refine cybersecurity and privacy policies (e.g., access control, data handling, incident response) using provided guidance
• Help align governance documentation with NIST frameworks and GDPR principles without overstating compliance
• Organize and maintain policy and governance documents in a clear, board-readable format
• Ensure consistency across policies, procedures, and internal governance language
• Incorporate feedback from the Cybersecurity Lead and leadership into finalized documents

OUT OF SCOPE

This role does not include:

• Acting as a Data Protection Officer (DPO)
• Legal interpretation of GDPR or other regulations
• Technical security configuration or engineering
• Compliance certification or audit ownership

IDEAL BACKGROUND

• GRC analysts, cybersecurity professionals, or risk/compliance practitioners
• CISSP, CISM, or governance-focused certification candidates
• Graduate students or early-career professionals seeking real-world governance experience
• Strong written communication skills and attention to detail

REPORTING STRUCTURE

This role reports to the VP, Global Cybersecurity Compliance & External Affairs, who provides direction, review, and integration of governance work across PUK’s organizational and platform operations.

COMMITMENT

• Approximately 2–4 hours per week
• Flexible and remote

WHY THIS ROLE MATTERS

This role helps build a responsible cybersecurity foundation that supports PUK’s mission to protect children globally, while positioning the organization for future growth and readiness.