fbpx
Contact Us
 
Contact Us

Insights

< Back to Thought Leadership

Strengthening Cybersecurity in Not-for-Profits: Assigning Oversight Responsibilities to Mitigate Risk

man typing on a laptop for cybersecurity
April 19, 2023

By Allen Norvell, CPA, MBA, Director at Blue & Co.

While certainly not a new risk for not-for-profit (NFP) organizations, cybersecurity risk is increasing in profile as an area of interest among members of governance. NFPs manage a significant volume of customer and donor data. We have previously provided thought leadership to help NFPs identify the cybersecurity risks they face related to that data and the steps NFPs can take to mitigate those risks.

Some of that guidance can be found at the following links:

In addition to the practices identified above, how has governance at your organization embraced the oversight of cybersecurity risks? Has oversight been assigned to a specific committee? Which committee is best equipped to exercise oversight over the organization’s cybersecurity risk management?

The answers to the above questions will vary depending upon the size and complexity of your organization.

In many organizations that have an Audit Committee, it is becoming increasingly common for that committee to take on the oversight responsibility for cybersecurity risk management. Once an appropriate committee is identified, the committee’s charter is likely to need to be amended and expanded to incorporate the additional responsibilities. It is also possible that the mix of skills and experience of the committee members will need to be revised and broadened.

If your organization has not yet formally assigned oversight responsibility for cybersecurity risk management, the above questions are a good starting point for that deliberation.

If your organization is currently deliberating these issues and you have questions how best to implement this oversight function or need assistance with developing related policies and best practices, please feel free to reach out to your Blue & Co., LLC advisor and we will be happy to assist.

Our Cybersecurity and Data Management team, led by Tom Skoog, has the experience and tools necessary to successfully guide your organization through this process.

Resources View More Resources

Coronavirus Resources & Information
2019 Year-End Tax Planning Guide
Implementation Guide: ASU 2016-14 Presentation of Financial Statements for Not-for-Profit Entities

Recent Articles View All Thought Leadership

Wage Index Timeline: Mid-Year Update and Looking into 2025

July 19, 2024

As we head into the second half of the 2024 calendar year and the start of 2025, there are a few major dates that you need to be aware of […]

Learn More
Blue & Co., LLC Welcomes Wayne Little to the Firm | Wayne Little headshot

Blue & Co., LLC Welcomes Wayne Little to the Firm

July 19, 2024

CARMEL, Ind. (July 19, 2024) – Blue & Co., LLC is proud to announce that Wayne Little has joined the Louisville office of Blue & Co. as a principal. Little […]

Learn More
research and development

Manufacturers: It’s Time to Rethink Your R&D Tax Strategy

July 10, 2024

By Stephen Stringer, CPA, Director and Amy Sandlin, CPA, Senior Manager at Blue & Co. LLC News of incredible technological advancement and the rapid pace at which it is changing […]

Learn More
Subscribe to our newsletters.

Facebook

Join Blue & Co. for the 2024 Construction Summit Series: Part I! Our keynote speaker, Dr. Anirban Basu, will be giving an economic update on current industry trends.Register here: hubs.la/Q02HwrXd0#construction #financialforecast ... See MoreSee Less
View on Facebook
· Share

Share on Facebook Share on Twitter Share on Linked In Share by Email

Quick Links

AICPA SOC Award Banner for Service Organizations | Blue Button
Blue & Co. Logo

Copyright © 2024, Blue & Co., LLC.
All Rights Reserved.

See All Locations