Director of Information Security – Volunteer Leadership Role

The Donovan's Venom, INC. Is a non-profit 501(c)(3) tax exempt organization dedicated to taking music, art, and entertainment to those who need it the most. The Donovan's Venom, INC. Caters to no particular individual(s) yet pledges relief to impaired or deprived individuals who are in need of musical,visual, comedic, and-or any alternative forms of liberation-through fine art & entertainment. The Donovan's Venom INC. Gives its resources to individuals who don't have the means or access.

,

Director of Information Security

(CISO-Level Function)

The Donovan’s Venom

Remote | Senior Leadership | Volunteer

We’re Building — And It Must Be Protected

The Donovan’s Venom is growing.

Platforms.

Systems.

Data.

All of it must be secure, protected, and trusted.

We are seeking a Director of Information Security to define and lead the organization’s cybersecurity strategy across all systems, platforms, and operations.

Because one vulnerability can impact everything.

And strong security protects everything we build.

The Role

This is the leader responsible for establishing and enforcing the organization’s information security strategy.

From governance → architecture → operations → risk → compliance — you own it.

You are not just responding to threats.

You are building a security-first organization.

This role operates at both a strategic and operational level, ensuring security is embedded across all technology and business functions.

What You’ll Own

Security Strategy & Governance

• Define and lead the organization’s security strategy
• Establish policies, standards, and frameworks
• Promote a security-first culture across all teams
  

Security Architecture & Risk Management

• Oversee secure system architecture across
• Internal systems
• EdTech platform
• Cross-division technologies
• Identify and mitigate cybersecurity risks
  

Security Operations & Threat Management

• Lead security operations (monitoring, detection, response)
• Establish incident response plans
• Ensure continuous threat monitoring and improvement
  

Identity & Access Management (IAM)

• Oversee authentication and access controls
• Ensure secure onboarding/offboarding access processes
• Implement role-based and privileged access controls
  

Vulnerability Management & Testing

• Lead vulnerability assessment and remediation
• Oversee penetration testing efforts
• Strengthen system defenses continuously
  

Governance, Risk & Compliance (GRC)

• Establish GRC frameworks
• Ensure compliance with security standards and policies
• Maintain documentation and audit readiness
  

Data Protection & Privacy

• Define and enforce data protection practices
• Ensure secure handling of sensitive data
• Support PII minimization and privacy-first practices
  

Security Awareness & Training

• Lead organization-wide cybersecurity awareness initiatives
• Partner with HR and training teams to embed security practices
  

Cross-Functional Security Integration

• Partner with
• IT Operations
• Platform Development
• HR
• Ensure security is integrated across all workflows
  

Continuous Improvement & Innovation

• Stay ahead of emerging threats
• Introduce new tools, frameworks, and practices
• Strengthen the organization’s overall security posture
  

Who This Is For

This role is for someone who

• Thinks in risk, systems, and prevention
• Can lead security strategy at an enterprise level
• Understands both technical security and governance
• Can influence across teams without being siloed
• Sees security as a foundation, not a function
  

Qualifications

Required

• 5 years in cybersecurity, information security, or related fields
• Experience in
• Security operations
• Risk management
• Security governance
• Strong understanding of
• Security frameworks
• Threat management
• Identity and access control
  

Preferred

• Security certifications (CISSP, CISM, CEH, Security )
• Experience in SaaS, cloud, or EdTech environments
• Experience leading or building security programs
• Experience in remote teams
  

Commitment

• 12–20 hours per week
• Senior leadership engagement
• Fully remote
  

What You’ll Gain

• Leadership of the organization’s security function
• Opportunity to build a security program from the ground up
• Cross-functional influence across all divisions
• Direct impact on protecting systems, data, and users
  

Application Requirements (Read Carefully)

We are building — and protecting in real time.

To ensure alignment

• You must be able to start within 14 days
• You must complete the full application
• You must be ready to lead and respond to security needs
  

Important Disclaimer

This is a volunteer senior leadership role.

We are onboarding individuals who are ready to contribute immediately.

Please only apply if you are prepared to begin within the next 14 days.