Your data might not be secure, which leaves the door open to a cyberattack that could damage your reputation irreparably.

Common Symptoms

In many cases, associations facing this challenge will show one or more of these signs:


You aren’t confident that your staff knows how to avoid phishing scams, respond in the event of a breach, or generally keep your member data secure.


Your policies for setting passwords, using mobile devices, off-boarding staff, and backing up your member data are loosely enforced or nonexistent.


You’ve read enough headlines to know that you’re at risk of a cyberattack, but you don’t know what steps you need to take, and which would be overkill.

How To Solve It

Depending on what works for you, there are a few ways to approach this problem:

Cross your fingers!

In some cases, organizations know they could probably be more secure, but they aren’t handling too much sensitive information, and are pretty sure they could weather the storm in the event of a breach.


Try outsourcing

Many associations appreciate the scalability and expertise that they get from an outsourced firm that can pull on their team’s collective knowledge to implement the safeguards and response measures that make the most sense for your organization.


Bring a security guru aboard

If securing member data is absolutely critical to the success of your mission, you might consider hiring someone who spends all day every day checking and advancing your security. This can be insourced or outsourced to a cybersecurity firm, and will be in addition to your IT management investment.

Need help choosing the right path?

To learn more…

How Much Should Associations Spend on IT Security (Trade/Professional)?
How to Identify a Dangerous/Malicious Email
What are the Top Cybersecurity Threats to Nonprofits?
How to Avoid Going Overboard with Tech Security