Fractional Chief Information Security & Privacy Officer (CISO)
About the role
About Us
Ready to Drive Meaningful Change Through Technology?
At reSolved, we don’t just implement systems, we help purpose-driven organizations transform how they operate. We work with clients who are on a mission to create change, and we are beside them, making it happen. With over two decades of experience, reSolved helps change-makers overcome challenges to unlock the full potential of their technology, turning purpose into meaningful impact. We partner with our clients through Advisory, Implementation and Support Services, ensuring their digital transformation succeeds across people, process, and technology.
We work with some of the largest and most prestigious philanthropic foundations, research institutions, governments, and mission-aligned organizations. Our clients are based predominantly in the United States, EMEA and Canada.
We are now hiring a Fractional CISO and Privacy Officer, as our current CISO transitions out of the role. This is a critical leadership position focused on maturing and executing our cybersecurity and privacy strategy.
Where You’ll Work
At reSolved, we embrace a hybrid work approach, giving our team the flexibility to work where they thrive while also attending social and work meetings at the office, and staying closely connected through technology. Our global team collaborates seamlessly across time zones, supported by virtual tools and occasional in-person gatherings that fuel innovation and teamwork.
Role Overview
This is not a new position, you will be taking over from our existing CISO and stepping into an active program with strong leadership support. We are seeking an experienced Fractional CISO and Privacy expert to lead our cybersecurity strategy on a part-time, permanent basis. Reporting to the Co-CEO, you will work cross-functionally with delivery, operations, legal and client-facing teams, ensuring we continue to meet best practices in security and privacy throughout the company, that have made our clients trust us for the last 20 years we have been in existence.
You will lead, implement and evolve our security, privacy, ISO 27001 and risk practices. This includes developing policies, conducting risk assessments, guiding compliance initiatives, liaising with legal on matters related to Data Protection, oversight over IT vendor to ensure they are compliant and maintain best security practices, engage directly with client security teams when needed, and preparing our team for security audits and certifications.
The ideal candidate is a seasoned security and privacy professional who can balance strategic vision with hands-on execution, working collaboratively with internal teams and external partners to embed security and privacy into every part of the organization.
Key Responsibilities
Strategic Leadership
- Refine and execute reSolved's cybersecurity and privacy strategy, ensuring alignment with business priorities and regulatory expectations.
- Serve as the internal executive lead for security and privacy risk, advising leadership on readiness, and remediation.
- Oversee the security governance framework, including updates to internal policies, standards, and procedures.
- Lead the organization through its ongoing ISO 27001 certification, working with internal stakeholders and external auditors to ensure readiness.
- Guide the company through its AI adoption journey.
- Chair the ISMS Committee.
Privacy, Compliance, and Contracts
- Ensure compliance with key privacy regulations such as GDPR, PIPEDA, or other relevant frameworks.
- Accountable for our Privacy Program including data classification, data subject rights management, and breach response.
- Develop and deliver training to foster a culture of privacy and compliance throughout the organization.
- Review contracts, RFP submissions and Data Privacy Agreements (DPAs) to ensure privacy and security terms meet internal and client standards (supported by legal).
- Ensure we maintain a current AI Framework, policies and procedures as the landscape and adoption evolves.
Security Operations
- Oversee incident response planning and be point of contact to clients in the event of a breach.
- Coordinate risk assessments, vulnerability scans, and third-party penetration tests.
- Review and approve security questionnaires, vendor risk assessments, and other client security deliverables.
- Engage directly with clients’ CISOs and Privacy leads to support compliance reviews, onboarding, or escalations as needed.
Governance & Reporting
- Track and report on security and privacy KPIs, audit results, and incident metrics to executive leadership.
- Provide ongoing security guidance to DevOps and operations teams as needed.
- Stay current with global regulatory changes, evolving threats, and industry best practices.
Qualifications
- Proven experience as a CISO, VP of Security, or senior cybersecurity and privacy leader (fractional or full-time).
- Experience leading or supporting ISO 27001 , SOC 2 , and Privacy audits and certifications.
- Experience with cloud-native security best practices across AWS and Azure.
- Excellent communication skills, including the ability to advise executive leadership and engage with client security stakeholders.
- Previous experience in professional services, consulting, or fast-growing mid size SMBs is highly desirable.
- Certifications such as CISSP , CISM , or CISA are a plus.
Engagement Details
- Commitment: ~1 day per week (flexible based on needs).
- Term: Ongoing engagement with potential to scale up/down as business evolves.
- Compensation: Competitive fractional CISO based on experience.
Why Join reSolved?
✅ This is a unique opportunity to lead the ongoing evolution of cybersecurity and privacy in a mission-aligned, values-driven company. You will have direct access to executive leadership and autonomy to shape how security and privacy continue to be embedded in our operations, culture, and services.
✅ Your work will help ensure that we can confidently support global clients who do good in the world and demand the highest standards of compliance and governance, while also protecting the integrity of our internal systems and data.
How to Apply
We know great candidates don’t always check every box. If you’re excited about this role and think you’d be a great fit, we want to hear from you! Apply now and let’s explore how you can make an impact at reSolved.
reSolved is committed to equity and inclusivity. We welcome applications from all qualified candidates. If you require accommodation during the recruitment process, email us at talent@re-solved.ca - we're here to support you.
About reSolved
We partner with organizations that do good, so they can be better. Because we believe that there is always a better way.
We empower our clients to deliver greater impact now and into the future, by making their technology work for them and bringing their people, processes, and meaningful results into focus. We give our clients the tools and knowledge to do what they do, better and more efficiently.
Our team has implemented best-in-class technologies for some of the largest, high profile philanthropic organizations, multinational corporations, government agencies, and research institutions, bringing decades of deep knowledge and expertise to help them create lasting change in 100 countries using solutions in 12 languages throughout the United States, Europe, Asia, and Canada.
We have grown by 250% in the last three years and have teams in Canada, the US, India, and Europe, with office locations in Toronto and Ireland.
As partners we understand that the only way to make true impact in this world, is by doing things better. We work with our clients to understand their unique needs. We carefully listen and discover everything there is to know so we can deliver solutions that are right-sized for today, but future-ready for tomorrow. We ask questions and research. We bring empathy and a desire to learn. Our collaborative approach is powered by our clients' purpose and their success is ours as well. We pursue excellence and aspire to exceed expectations, one client at a time.
Fractional Chief Information Security & Privacy Officer (CISO)
About the role
About Us
Ready to Drive Meaningful Change Through Technology?
At reSolved, we don’t just implement systems, we help purpose-driven organizations transform how they operate. We work with clients who are on a mission to create change, and we are beside them, making it happen. With over two decades of experience, reSolved helps change-makers overcome challenges to unlock the full potential of their technology, turning purpose into meaningful impact. We partner with our clients through Advisory, Implementation and Support Services, ensuring their digital transformation succeeds across people, process, and technology.
We work with some of the largest and most prestigious philanthropic foundations, research institutions, governments, and mission-aligned organizations. Our clients are based predominantly in the United States, EMEA and Canada.
We are now hiring a Fractional CISO and Privacy Officer, as our current CISO transitions out of the role. This is a critical leadership position focused on maturing and executing our cybersecurity and privacy strategy.
Where You’ll Work
At reSolved, we embrace a hybrid work approach, giving our team the flexibility to work where they thrive while also attending social and work meetings at the office, and staying closely connected through technology. Our global team collaborates seamlessly across time zones, supported by virtual tools and occasional in-person gatherings that fuel innovation and teamwork.
Role Overview
This is not a new position, you will be taking over from our existing CISO and stepping into an active program with strong leadership support. We are seeking an experienced Fractional CISO and Privacy expert to lead our cybersecurity strategy on a part-time, permanent basis. Reporting to the Co-CEO, you will work cross-functionally with delivery, operations, legal and client-facing teams, ensuring we continue to meet best practices in security and privacy throughout the company, that have made our clients trust us for the last 20 years we have been in existence.
You will lead, implement and evolve our security, privacy, ISO 27001 and risk practices. This includes developing policies, conducting risk assessments, guiding compliance initiatives, liaising with legal on matters related to Data Protection, oversight over IT vendor to ensure they are compliant and maintain best security practices, engage directly with client security teams when needed, and preparing our team for security audits and certifications.
The ideal candidate is a seasoned security and privacy professional who can balance strategic vision with hands-on execution, working collaboratively with internal teams and external partners to embed security and privacy into every part of the organization.
Key Responsibilities
Strategic Leadership
- Refine and execute reSolved's cybersecurity and privacy strategy, ensuring alignment with business priorities and regulatory expectations.
- Serve as the internal executive lead for security and privacy risk, advising leadership on readiness, and remediation.
- Oversee the security governance framework, including updates to internal policies, standards, and procedures.
- Lead the organization through its ongoing ISO 27001 certification, working with internal stakeholders and external auditors to ensure readiness.
- Guide the company through its AI adoption journey.
- Chair the ISMS Committee.
Privacy, Compliance, and Contracts
- Ensure compliance with key privacy regulations such as GDPR, PIPEDA, or other relevant frameworks.
- Accountable for our Privacy Program including data classification, data subject rights management, and breach response.
- Develop and deliver training to foster a culture of privacy and compliance throughout the organization.
- Review contracts, RFP submissions and Data Privacy Agreements (DPAs) to ensure privacy and security terms meet internal and client standards (supported by legal).
- Ensure we maintain a current AI Framework, policies and procedures as the landscape and adoption evolves.
Security Operations
- Oversee incident response planning and be point of contact to clients in the event of a breach.
- Coordinate risk assessments, vulnerability scans, and third-party penetration tests.
- Review and approve security questionnaires, vendor risk assessments, and other client security deliverables.
- Engage directly with clients’ CISOs and Privacy leads to support compliance reviews, onboarding, or escalations as needed.
Governance & Reporting
- Track and report on security and privacy KPIs, audit results, and incident metrics to executive leadership.
- Provide ongoing security guidance to DevOps and operations teams as needed.
- Stay current with global regulatory changes, evolving threats, and industry best practices.
Qualifications
- Proven experience as a CISO, VP of Security, or senior cybersecurity and privacy leader (fractional or full-time).
- Experience leading or supporting ISO 27001 , SOC 2 , and Privacy audits and certifications.
- Experience with cloud-native security best practices across AWS and Azure.
- Excellent communication skills, including the ability to advise executive leadership and engage with client security stakeholders.
- Previous experience in professional services, consulting, or fast-growing mid size SMBs is highly desirable.
- Certifications such as CISSP , CISM , or CISA are a plus.
Engagement Details
- Commitment: ~1 day per week (flexible based on needs).
- Term: Ongoing engagement with potential to scale up/down as business evolves.
- Compensation: Competitive fractional CISO based on experience.
Why Join reSolved?
✅ This is a unique opportunity to lead the ongoing evolution of cybersecurity and privacy in a mission-aligned, values-driven company. You will have direct access to executive leadership and autonomy to shape how security and privacy continue to be embedded in our operations, culture, and services.
✅ Your work will help ensure that we can confidently support global clients who do good in the world and demand the highest standards of compliance and governance, while also protecting the integrity of our internal systems and data.
How to Apply
We know great candidates don’t always check every box. If you’re excited about this role and think you’d be a great fit, we want to hear from you! Apply now and let’s explore how you can make an impact at reSolved.
reSolved is committed to equity and inclusivity. We welcome applications from all qualified candidates. If you require accommodation during the recruitment process, email us at talent@re-solved.ca - we're here to support you.
About reSolved
We partner with organizations that do good, so they can be better. Because we believe that there is always a better way.
We empower our clients to deliver greater impact now and into the future, by making their technology work for them and bringing their people, processes, and meaningful results into focus. We give our clients the tools and knowledge to do what they do, better and more efficiently.
Our team has implemented best-in-class technologies for some of the largest, high profile philanthropic organizations, multinational corporations, government agencies, and research institutions, bringing decades of deep knowledge and expertise to help them create lasting change in 100 countries using solutions in 12 languages throughout the United States, Europe, Asia, and Canada.
We have grown by 250% in the last three years and have teams in Canada, the US, India, and Europe, with office locations in Toronto and Ireland.
As partners we understand that the only way to make true impact in this world, is by doing things better. We work with our clients to understand their unique needs. We carefully listen and discover everything there is to know so we can deliver solutions that are right-sized for today, but future-ready for tomorrow. We ask questions and research. We bring empathy and a desire to learn. Our collaborative approach is powered by our clients' purpose and their success is ours as well. We pursue excellence and aspire to exceed expectations, one client at a time.