ICT Ignite - Cyber Security Policy Development (2 of 2)

The main goal of the Security Policy Development project is to create and implement tailored cybersecurity policies and procedures for the Foundation for Environmental Stewardship (FES), ensuring the protection of sensitive data and the mitigation of cyber threats. Our team at the Foundation for Environmental Stewardship works fully remotely from all across Canada. While we have three (3) external-facing public websites (www.FESplanet.org, www.TheYouthHarbour.org, and www.NowForNetZero.org), as a nonprofit and agile small team we predominantly use various third-party productivity and teamwork apps to conduct our work (ie. Google Suite, Slack, Zoom, Salesforce, Monday, etc.). We currently have a large portion of our team conducting their work from non-networked devices using local wifi. This year we are in the midst of an internal governance review to optimize our procedures, fortify our internal capacity, and scale for growth. As part of the governance review we are upgrading several of our internal policies, including those around cybersecurity. We are looking for a collaborative, detail-oriented learner to work with the Internal Policy and Governance Lead and relevant staff to help draft our cybersecurity policies. Learners will be responsible for: Collaborate with key stakeholders within the FES charity, including the Internal Policy and Governance Lead, the Executive Director, and relevant staff, to understand the specific needs and requirements. Review existing cybersecurity policies, if any, to identify gaps and areas for improvement. Analyze industry best practices and regulatory requirements relevant to the nonprofit and climate action sectors. Work the FES staff to establish clear guidelines for separating personal and work accounts. Work with FES staff to create and communicate cybersecurity policies and best practices. Leading the team in a transition within our Google Suite apps login process from a Less Secure Apps (LSA) authentication to OAuth authentication (this deliverable to be completed before June 15, 2024) About Us: Foundation for Environmental Stewardship (FES) is a youth-led, youth-serving non-partisan sustainable development organization. As the final generation that can solve climate change, FES empowers youth to create a more inclusive, fair, prosperous, and sustainable future. Main website: https://www.fesplanet.org/who-we-are Flagship program, The Youth Harbour: https://www.theyouthharbour.org/about-us/ Newest program, Now for Net Zero: https://nowfornetzero.org/

ICT Ignite - Security Policy Development

The main goal of the Security Policy Development project is to create and implement tailored cybersecurity policies and procedures for the Foundation for Environmental Stewardship (FES), ensuring the protection of sensitive data and the mitigation of cyber threats. Our team at the Foundation for Environmental Stewardship works fully remotely from all across Canada. While we have three (3) external-facing public websites (www.FESplanet.org, www.TheYouthHarbour.org, and www.NowForNetZero.org), as a nonprofit and agile small team we predominantly use various third-party productivity and teamwork apps to conduct our work (ie. Google Suite, Slack, Zoom, Salesforce, Monday, etc.). We currently have a large portion of our team conducting their work from non-networked devices using local wifi. This year we are in the midst of an internal governance review to optimize our procedures, fortify our internal capacity, and scale for growth. As part of the governance review we are upgrading several of our internal policies, including those around cybersecurity. We are looking for a collaborative, detail-oriented learner to work with the Internal Policy and Governance Lead and relevant staff to help draft our cybersecurity policies. Learners will be responsible for: Collaborate with key stakeholders within the FES charity, including the Internal Policy and Governance Lead, the Executive Director, and relevant staff, to understand the specific needs and requirements. Review existing cybersecurity policies, if any, to identify gaps and areas for improvement. Analyze industry best practices and regulatory requirements relevant to the nonprofit and climate action sectors. Work the FES staff to establish clear guidelines for separating personal and work accounts. Work with FES staff to create and communicate cybersecurity policies and best practices. Leading the team in a transition within our Google Suite apps login process from a Less Secure Apps (LSA) authentication to OAuth authentication (this deliverable to be completed before June 15, 2024) About Us: Foundation for Environmental Stewardship (FES) is a youth-led, youth-serving non-partisan sustainable development organization. As the final generation that can solve climate change, FES empowers youth to create a more inclusive, fair, prosperous, and sustainable future. Main website: https://www.fesplanet.org/who-we-are Flagship program, The Youth Harbour: https://www.theyouthharbour.org/about-us/ Newest program, Now for Net Zero: https://nowfornetzero.org/