In a new episode of Untapped Philanthropy, Chris Aurelio, Director of Security and Compliance at Fluxx, joins Kerrin and Tim to break down why cybersecurity in the social sector is no longer just technical work — it’s trust work. With threats moving faster and AI changing the playing field, Chris explains how organizations of any size can strengthen their defenses without overwhelming budgets or big teams.
One of the biggest takeaways from Chris: the majority of breaches still begin with human behavior, not broken code. Clicking a phishing link, reusing a password, or sending sensitive data to the wrong person — these everyday moments account for a large percentage of incidents.
As Chris puts it, “Most vulnerabilities don’t live in code. They live in behavior.”
That means strong security begins with habits, awareness, and simple protections people can apply consistently.
Cyberattacks that once took weeks now unfold in hours, aided by automated tools and “cybercrime-as-a-service.” At the same time, AI is also giving defenders better tools for detection, pattern recognition, and early warning.
The challenge — and opportunity — lies in learning how to use AI to strengthen resilience rather than widen risk.
Nonprofits and funders often juggle sensitive data, regulatory demands, and limited resources. That combination makes the sector particularly vulnerable — but it also means that small steps have outsize impact.
Chris highlights a few essentials:
Turn on MFA everywhere
Use password managers to avoid reused credentials
Practice least-privilege access
Offer clear, consistent security training
These fundamentals go a long way, especially in smaller organizations.
Funders and grantees often rely on the same systems and workflows. That means cybersecurity has to be collaborative. Chris encourages the sector to treat it as a shared investment in resilience rather than a technical burden.
“Resilience isn’t something one group can achieve alone.”
This conversation with Chris offers practical, accessible guidance on:
The real threat trends shaping 2026
How AI changes both attack and defense
Low-lift steps any organization can take to reduce risk
How the sector can work together to strengthen trust
Why cybersecurity is ultimately a form of stewardship
Listen to the full episode to hear Chris’s insights, examples, and practical tips.
Download transcript here.
To learn more about Neon One, visit: neonone.com
Episodes of Untapped Philanthropy are edited, mixed, and mastered by Rocket Skates Recording.
Learn how to elevate your corporate philanthropy with strategic giving, impact measurement, and technology-driven solutions for greater social impact.
In a landscape crowded with worthy causes, the right story — driven by the right data — makes the work your nonprofit does get noticed.
Discover the key nonprofit management tools your organization needs to stay efficient, accountable, and mission-driven. Learn how software like Fluxx...
