Developing and implementing effective cybersecurity policies

Cybersecurity security policies cover a broad range of topics, from appropriate use of computing resources within an organization to specific guidelines regarding computing devices and applications. But for too many organizations, policies often fall short of meeting organizational objectives if they are not married with procedure-level documentation and user training to support the “how” of policy compliance or execution. Do your policies reflect the objectives of your nonprofit organization? Does everyone understand and follow your cybersecurity policies? How can you know?

In this course, you’ll learn about cybersecurity policies, standards, guidelines, and procedures, including when to use each document. You’ll review online resources, sample cybersecurity policies, and learn to draft and implement policies to protect nonprofit information assets effectively.  You’ll learn to start from a mindset of balancing organization objectives, cybersecurity risk, and organizational risk tolerance.

Next course

Cost per course

Members $125/Non-members $250

Qualifying credits

NTEN professional certificate

Certified Fund Raising Executive

Certified Association Executive

Course overview

Policy frameworks

Understand the different policies and determine which types your organization needs.

Create policies

Identify the scope and applicability of policies.


Design accessible policies and share them in the organization.

Open quote marks
Close quote marks

Information Security policies are the bedrock of any information security program. This course teaches how you can develop and implement effective cybersecurity policies.

- Instructor Kuli Mavuwa

Meet the presenter

Kuli Mavuwa

Kuli Mavuwa

Chief Technology, Security & Privacy Officer

Oregon Health & Science University

Kuli Mavuwa is an experienced leader with broad information technology, privacy, and security experience. He previously served in a variety of roles including Systems Engineer, Security Engineering Manager, Associate Privacy and Security Officer, and Chief Privacy Officer. He is currently responsible for providing oversight for a large information privacy and security program including developing and implementing policies that govern the collection, access, use and disclosure of various personally identifiable information covered by multiple privacy regulations. Kuli earned a master’s degree in Engineering Management from Portland State University, and a Law Degree (J.D.) from Lewis & Clark Law School. He holds multiple privacy and security credentials, including being an IAPP’s Fellow of Information Privacy.

Looking for more ways to learn?

Take charge of your professional development with these other learning opportunities.

Nonprofit Tech Readiness

These six-month cohorts give you an opportunity to ramp up your technology leadership and planning skills.Learn about Nonprofit Tech Readiness

Professional certifications

Boost your career by earning a professional certificate that builds your skills and demonstrates your nonprofit tech know-how.Learn about certifications


If finances are tight, apply for a scholarship for an NTEN course or professional certification. Availability limited.Learn about scholarships

nten logo
P.O. Box 86308
Portland, OR 97286-0308
+1 503-272-8800

© 2024 NTEN