On-Demand

Cybersecurity for Not-for-Profits: Timely Learnings and Incident Response Preparedness 2025-26

CPE: 1

Overview

In this course, you’ll deepen your understanding of core cybersecurity principles, risks, and threats—and see why a strong, executive-led cybersecurity program is vital for nonprofits. Discover why NFPs can face even greater cybersecurity challenges than for-profits, and learn how to strengthen your organization’s cybersecurity maturity with proven frameworks. As cyber incidents become more common, you’ll also gain practical best practices for response and recovery, including how to build an effective incident response plan.

Your presenters — cybersecurity experts from SingerLewak’s Business Informatics practice — draw on decades of experience in cybersecurity, information systems, internal controls, and incident response.

This session was recorded on May 29, 2025 for CalCPA’s Not-for-Profit Organizations Conference.

Product Code
1000004235
Credit Type
CPE: 1
CPE-Non-Technical: 1
Format
Online Self-Study
Intended Audience
Financial leaders and advisors — CPAs, CFOs, controllers, executive directors, attorneys, board members, and staff — who manage, audit, or prepare financials for not-for-profit organizations.
NASBA Field of Study
Accounting (Governmental)
Level of Difficulty
Basic
Prerequisites
None
Advance Preparation
None

Learning Objectives

Understand cybersecurity principles and their relevance to nonprofit organizations, supported by current statistics.

Learn to assess, identify, and manage risks from cybersecurity threats through effective risk management practices.

Recognize the importance of a cyber incident response plan, including its critical components and the role of tabletop exercises.

Major Subjects

Core cybersecurity risks for nonprofit organizations
Executive leadership in cybersecurity management
Cybersecurity challenges unique to NFPs
Advancing cybersecurity maturity in nonprofits
Proven frameworks for cybersecurity programs
Responding to cybersecurity incidents effectively
Importance of an incident response plan

Faculty

Robert P Green

Robert (Bob) Green is the practice leader for SingerLewak’s business risk and technology services practice. He specializes in strategic technology planning and guiding businesses in the selection, implementation and management of ERP, accounting and business management software. Green oversees practice and service lines that involve outsourced IT leadership and advisory for growing businesses – as well as being responsible for SingerLewak’s IT...

More about Robert P Green

Carl Grifka

Managing Director of SL Business InformaticsPrior experience includes Top 10 CPA firm as a Risk Consulting Director, Private and Public sector IT auditor; Global enterprise CFOFrequent speaker and nonprofit board member

More about Carl Grifka

Eric Rockwell

Eric Rockwell specializes in corporate information security, including cybersecurity. His experience in providing IT audit, maturity assessments and on-going InfoSec governance, remediation and control design span among multiple frameworks – including National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF), NIST 800-53, NIST 800-171, the Center for Internet Security (CIS) Controls, the International Standards Organi...

More about Eric Rockwell

Cybersecurity for Not-for-Profits: Timely Learnings and Incident Response Preparedness 2025-26

Member

Nonmember

Overview

Product Code

Credit Type

Format

Intended Audience

NASBA Field of Study

Level of Difficulty

Prerequisites

Advance Preparation

Learning Objectives

Major Subjects

Faculty