Chief Information Security & Privacy Officer

About Us

Ready to Drive Meaningful Change Through Technology?

At reSolved, we don’t just implement systems, we help purpose-driven organizations transform how they operate. We work with clients who are on a mission to create change, and we are beside them, making it happen. With over two decades of experience, reSolved helps change-makers overcome challenges to unlock the full potential of their technology, turning purpose into meaningful impact. We partner with our clients through Advisory, Implementation and Support Services, ensuring their digital transformation succeeds across people, process, and technology.

We work with some of the largest and most prestigious philanthropic foundations, research institutions, governments, and mission-aligned organizations. Our clients are based predominantly in the United States, EMEA and Canada.

We are now hiring a Fractional CISO and Privacy Officer, as our current CISO transitions out of the role. This is a critical leadership position focused on maturing and executing our cybersecurity and privacy strategy.
‍

Where You’ll Work

At reSolved, we embrace a hybrid work approach, giving our team the flexibility to work where they thrive while also attending social and work meetings at the office, and staying closely connected through technology. Our global team collaborates seamlessly across time zones, supported by virtual tools and occasional in-person gatherings that fuel innovation and teamwork.

‍

Role Overview

This is not a new position, you will be taking over from our existing CISO and stepping into an active program with strong leadership support. We are seeking an experienced Fractional CISO and Privacy expert to lead our cybersecurity strategy on a part-time, permanent basis. Reporting to the Co-CEO, you will work cross-functionally with delivery, operations, legal and client-facing teams, ensuring we continue to meet best practices in security and privacy throughout the company, that have made our clients trust us for the last 20 years we have been in existence.

You will lead, implement and evolve our security, privacy, ISO 27001 and risk practices. This includes developing policies, conducting risk assessments, guiding compliance initiatives, liaising with legal on matters related to Data Protection, oversight over IT vendor to ensure they are compliant and maintain best security practices, engage directly with client security teams when needed, and preparing our team for security audits and certifications.

The ideal candidate is a seasoned security and privacy professional who can balance strategic vision with hands-on execution, working collaboratively with internal teams and external partners to embed security and privacy into every part of the organization.

Key Responsibilities

Strategic Leadership

• Refine and execute reSolved's cybersecurity and privacy strategy, ensuring alignment with business priorities and regulatory expectations.
• Serve as the internal executive lead for security and privacy risk, advising leadership on readiness, and remediation.
• Oversee the security governance framework, including updates to internal policies, standards, and procedures.
• Lead the organization through its ongoing ISO 27001 certification, working with internal stakeholders and external auditors to ensure readiness.
• Guide the company through its AI adoption journey.
• Chair the ISMS Committee.

Privacy, Compliance, and Contracts

• Ensure compliance with key privacy regulations such as GDPR, PIPEDA, or other relevant frameworks.
• Accountable for our Privacy Program including data classification, data subject rights management, and breach response.
• Develop and deliver training to foster a culture of privacy and compliance throughout the organization.
• Review contracts, RFP submissions and Data Privacy Agreements (DPAs) to ensure privacy and security terms meet internal and client standards (supported by legal).
• Ensure we maintain a current AI Framework, policies and procedures as the landscape and adoption evolves.

Security Operations

• Oversee incident response planning and be point of contact to clients in the event of a breach.
• Coordinate risk assessments, vulnerability scans, and third-party penetration tests.
• Review and approve security questionnaires, vendor risk assessments, and other client security deliverables.
• Engage directly with clients’ CISOs and Privacy leads to support compliance reviews, onboarding, or escalations as needed.

Governance & Reporting

• Track and report on security and privacy KPIs, audit results, and incident metrics to executive leadership.
• Provide ongoing security guidance to DevOps and operations teams as needed.
• Stay current with global regulatory changes, evolving threats, and industry best practices.

Qualifications

• Proven experience as a CISO, VP of Security, or senior cybersecurity and privacy leader (fractional or full-time).
• Experience leading or supporting ISO 27001, SOC 2, and Privacy audits and certifications.
• Experience with cloud-native security best practices across AWS and Azure.
• Excellent communication skills, including the ability to advise executive leadership and engage with client security stakeholders.
• Previous experience in professional services, consulting, or fast-growing mid size SMBs is highly desirable.
• Certifications such as CISSP, CISM, or CISA are a plus.

Engagement Details

• Commitment: ~1 day per week (flexible based on needs).
• Term: Ongoing engagement with potential to scale up/down as business evolves.
• Compensation: Competitive fractional CISO based on experience.

‍

How to Apply

Note: This is a syndicated job post, meaning it was not posted to Fractional Jobs directly, so we don't have control over the application process. To apply, click on the "View Application" and follow the application's instructions.

‍