Director of IT Security (Volunteer)

Director of IT Security (Volunteer)

PromiseShield | Cybersecurity & IT Security Division

Organization: Mentor A Promise (MAP)

Reports To: Chief of PromiseShield

Location: Remote (U.S.-Based)

Type: Volunteer Leadership Role

About Mentor A Promise

Mentor A Promise (MAP) is a New York City–based nonprofit organization serving children and youth ages 5–18 experiencing housing instability through mentorship, education, literacy, social-emotional learning, creative expression, and community-based programming.

As a mission-driven organization working with sensitive operational, volunteer, and youth-related information, MAP recognizes that cybersecurity, digital trust, and responsible technology governance are essential to protecting the integrity of our mission, the safety of our community, and the continuity of our operations.

About PromiseShield

PromiseShield is MAP’s dedicated cybersecurity, digital protection, and IT security division responsible for strengthening organizational resilience, protecting cloud-based systems, supporting secure operational practices, and reducing cybersecurity risk across the organization.

The division focuses on:

• Google Workspace security administration
• Account and identity protection
• Phishing prevention and cybersecurity awareness
• Access governance and administrative controls
• Security operations and incident response
• Organizational cybersecurity standards and best practices

PromiseShield works collaboratively across leadership, operations, technology, and program teams to ensure MAP maintains a secure, ethical, and mission-aligned technology environment.

Role Overview

The Director of IT Security serves as the senior volunteer leader responsible for overseeing and strengthening MAP’s internal cybersecurity operations, with a primary focus on Google Workspace administration, phishing prevention, identity and access management, account security, and operational cybersecurity safeguards.

This role leads efforts to protect organizational systems, volunteer accounts, internal communications, and cloud-based infrastructure from phishing attacks, unauthorized access, account compromise, social engineering threats, and operational security vulnerabilities.

The Director will help establish scalable cybersecurity practices appropriate for a growing nonprofit environment while balancing operational usability, security, confidentiality, and mission-centered collaboration.

Key Responsibilities

Google Workspace Administration & Security

• Oversee security administration and operational protection of MAP’s Google Workspace environment.
• Configure and strengthen organizational security settings, policies, and administrative controls.
• Manage user accounts, permissions, organizational units, groups, and administrative access levels.
• Conduct periodic access reviews and privilege audits to ensure least-privilege access practices.
• Help enforce secure authentication standards including:
  • Multi-factor authentication (MFA)
  • Password protection policies
  • Account recovery safeguards
  • Session and login protections

Cybersecurity Operations & Threat Prevention

• Monitor and help mitigate phishing attempts, spoofing activity, malicious login attempts, and suspicious account behavior.
• Support organizational readiness against phishing attacks, social engineering, and account compromise threats.
• Assist in investigating and responding to security incidents professionally and confidentially.
• Help establish incident response procedures and escalation workflows for cybersecurity events.
• Support domain protection, email security practices, and administrative risk reduction efforts.

Organizational Security Governance

• Help develop and maintain internal IT security policies, procedures, standards, and operational safeguards.
• Recommend cybersecurity improvements aligned with nonprofit and cloud-security best practices.
• Support secure onboarding and offboarding procedures for volunteers and staff.
• Partner with leadership to strengthen operational security awareness across teams.
• Provide practical guidance and education related to phishing prevention, account safety, and cybersecurity hygiene.

Risk Management & Operational Support

• Identify operational cybersecurity risks and recommend mitigation strategies.
• Support responsible handling of sensitive organizational information and systems.
• Help strengthen organizational resilience through proactive security planning and continuous improvement practices.
• Maintain professionalism, discretion, and confidentiality when handling sensitive systems, operational data, or internal security matters.

Qualifications

• Experience in IT security, cybersecurity, systems administration, or Google Workspace administration.
• Strong understanding of phishing prevention, account protection, access management, and cybersecurity best practices.
• Experience managing or supporting cloud-based collaboration environments.
• Ability to communicate technical risks and security recommendations clearly and professionally.
• Strong organizational skills, judgment, and attention to detail.
• Ability to work collaboratively within a remote, mission-driven environment.
• Alignment with MAP’s mission, safeguarding values, and community-centered approach.

Preferred Qualifications

• Experience supporting nonprofit, education, or mission-driven organizations.
• Familiarity with Google Workspace Admin Console and administrative security controls.
• Experience with email security, phishing awareness tools, or identity management practices.
• Knowledge of cybersecurity governance, access auditing, or incident response coordination.
• Experience supporting distributed or volunteer-based teams.

Commitment

• Volunteer leadership position
• Approximately 5–10 hours per week
• Minimum 6-month commitment preferred
• Fully remote with optional NYC-based collaboration opportunities

What You’ll Gain

• Senior leadership experience within a growing nonprofit cybersecurity division
• Hands-on experience helping secure a mission-driven organization’s technology environment
• Direct impact protecting operational systems, volunteers, and organizational trust
• Collaboration with executive leadership and cross-functional teams
• Professional references and leadership development opportunities
• The opportunity to help build ethical, scalable, and human-centered cybersecurity practices

How to Apply

Interested candidates should apply directly through Idealist and include:

• Resume
• Cover Letter

Help strengthen the systems that support children, families, volunteers, and communities through thoughtful, ethical, and mission-driven cybersecurity leadership.

Thank you for your interest in volunteering with Mentor A Promise. At this time, volunteer opportunities are limited to individuals based in the United States due to legal, safeguarding, operational, and data privacy requirements. We appreciate your interest in our mission and your understanding of these constraints.