IT and Cybersecurity, John Giordani, CISA, CISO

IT and Cybersecurity, John Giordani, CISA, CISO

Non-profit organizations and Cybersecurity

Cybersecurity Risk Management of non-profit organizations is a topic not discussed in the IT industry and deserves a deepening. This sector has characteristics that strongly differentiate it from traditional profit-oriented businesses, so even IT require specific terms and conditions. The main peculiarity is that the standard solutions offered by the market do not provide adequate protection since for non-profit “one-size-fits-all ” products do not work. What is needed is, instead, personalized Risk Management products and specially designed for the needs of individual companies. It is not easy to find in the companies (or independent consultants) the skills needed to grasp the peculiarities of each organization and to be able to develop policies and procedures that provide total coverage. Nowadays every business is exposed to the risk of cyber attacks, including non-profit. The most vulnerable are those who receive donations through their website, who organize online fundraising campaigns or who have digital databases. As an example, passwords set up and use.


John Giordani
John Giordani, CISA, CISO


John Giordani is the Director of IT and Chief Information Security Officer of NCheng LLP.

John has more than 20 years’ experience in Information System Management, IT Audit, and Cybersecurity Risk Management. with a focus on Information Security & Assurance, Data Governance, and IT Risk Management in the Financial industry. This is often a challenge as clients vary greatly in their technological capability.

As founder and president of LinxPower LLC, John has managed a number of complex information technology projects in the financial services and other industries. He was project manager for JP Morgan Chase’s U.S. Trust Outsourcing Repatriation Project; and in the Italian Air Force, he designed, developed and implemented telecommunication software.

Born and raised in Italy, John earned his Master of Science in Information Systems Management (MIS), City College of NY, (CUNY). He also holds a Doctor of Letters degree in Modern Italian Language and Culture from the University of Pisa, Italy, an Executive Master in Emergency Crisis Management in Cybersecurity, University of Nevada Las Vegas and a Graduate Certificate in Cybersecurity, Harvard University.



Useful tips

Verify – the networks you connect to are closed or open Wi-Fi hotspots? Avoiding unsafe connections is the basis for protecting your data over the internet.

Generate – passwords that are far from personal, non-trivial and complex: avoid birth dates, pet names, or peculiar features that may come to your person.

Be careful – don’t trust emails that ask for credit card credentials or information that is generally not requested via email or chat.

Delete – periodically visit your website visit history. Deleting your browser cache not only speeds up but also eliminates stored information that may no longer be needed.

Handle – the permissions of your social networks profiles so that only the information you want to be shared is of public domain. For example, you can limit the consultation of Facebook’s diary to friends.