On-Demand

Cybersecurity for Not-For-Profits: Timely Learnings and Incident Response Preparedness 2025-26

CPE: 1

Overview

In this session, you will deepen your understanding of essential cybersecurity principles, threats, and risks, while recognizing the critical importance of an executive-led cybersecurity management program for nonprofit organizations (NFPs). You will discover why effective cybersecurity management may be even more crucial for NFPs compared to for-profit entities. Furthermore, given the diverse approaches to managing cybersecurity across various NFPs, you will learn how to advance your organization's cybersecurity maturity by implementing a robust cybersecurity program based on proven methodologies. As harmful cybersecurity incidents are increasingly common, the presenters will share best practices for responding to and recovering from such incidents, emphasizing the necessity of a cybersecurity incident response plan.

The presenters, cybersecurity professionals from SingerLewak’s Business Informatics practice, bring decades of experience in cybersecurity, information systems, internal controls, and incident response projects.

This session was recorded on May 29, 2025 for CalCPA’s Not-For-Profit Organizations Conference.

Product Code
1000004235
Credit Type
CPE: 1
CPE-Non-Technical: 1
Format
Online Self-Study
Intended Audience
CPAs, CFOs, controllers, executive directors, attorneys and financial staff who work in a not-for-profit organization, CPAs who audit or prepare financial statements for not-for-profit organizations and nonprofit board members who want a better understanding of their organizations' economic issues.
NASBA Field of Study
Accounting (Governmental)
Level of Difficulty
Basic
Prerequisites
None.
Advance Preparation
None.

Learning Objectives

Understand cybersecurity principles and their relevance to nonprofit organizations, supported by current statistics.

Learn to assess, identify, and manage risks from cybersecurity threats through effective risk management practices.

Recognize the importance of a cyber incident response plan, including its critical components and the role of tabletop exercises.

Major Subjects

Core cybersecurity risks for nonprofit organizations
Executive leadership in cybersecurity management
Cybersecurity challenges unique to NFPs
Advancing cybersecurity maturity in nonprofits
Proven frameworks for cybersecurity programs
Responding to cybersecurity incidents effectively
Importance of an incident response plan

Faculty

Robert P Green

Robert (Bob) Green is the practice leader for SingerLewak’s business risk and technology services practice. He specializes in strategic technology planning and guiding businesses in the selection, implementation and management of ERP, accounting and business management software. Green oversees practice and service lines that involve outsourced IT leadership and advisory for growing businesses – as well as being responsible for SingerLewak’s IT...

More about Robert P Green

Carl Grifka

Managing Director of SL Business InformaticsPrior experience includes Top 10 CPA firm as a Risk Consulting Director, Private and Public sector IT auditor; Global enterprise CFOFrequent speaker and nonprofit board member

More about Carl Grifka

Eric Rockwell

Eric Rockwell specializes in corporate information security, including cybersecurity. His experience in providing IT audit, maturity assessments and on-going InfoSec governance, remediation and control design span among multiple frameworks – including National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF), NIST 800-53, NIST 800-171, the Center for Internet Security (CIS) Controls, the International Standards Organi...

More about Eric Rockwell

Cybersecurity for Not-For-Profits: Timely Learnings and Incident Response Preparedness 2025-26

Member

Nonmember

Overview

Product Code

Credit Type

Format

Intended Audience

NASBA Field of Study

Level of Difficulty

Prerequisites

Advance Preparation

Learning Objectives

Major Subjects

Faculty