528: Domestic Terrorism And Your Nonprofit & 21NTC – Tony Martignetti Nonprofit Radio

tony_martignetti_300x300-itunes_image2

This Week: 

Domestic Terrorism And Your Nonprofit 
Insurrection at the US Capitol. Insurrection by redditers against hedge funds. Our nonprofit community is also at risk of domestic terrorism, regardless of mission. What are those risks and what can you do to minimize them? In collaboration with the Nonprofit SnapCast podcast, my guests are Mickey Desai, SnapCast host, Heidi Beirich at Global Project Against Hate and Extremism, and Pete Clay with CyberOpz. 

21NTC 
Amy Sample Ward returns to reveal what’s planned for NTEN’s virtual 21NTC on March 23 to 25. Many of their smart speakers will be guests on Nonprofit Radio over the next months. Amy is NTEN’s CEO and our social media and technology contributor.

There’s more at tonymartignetti.com 

338: Idealware New Release! – Tony Martignetti Nonprofit Radio

tony_martignetti_300x300-itunes_image2Tony’s guest this week:

Karen Graham, executive director of Idealware.

There’s more at tonymartignetti.com

318: Leveraging Expert or Tech Volunteers & 7 IT Security Pitfalls – Tony Martignetti Nonprofit Radio

tony_martignetti_300x300-itunes_image2Tony’s guests this week:

Steve Heye, solution consultant, and Erin Dieterich, director of corporate citizenship, from NetSuite, and Princessa Bourelly, director of finance at Juma Ventures.

Also, Leon Wilson, chief technology & information officer with The Cleveland Foundation, and Dan Rivas, managing writer for Idealware.

Here’s the transcript

There’s more at tonymartignetti.com

041: Event Sponsorships and Email Security – Tony Martignetti Nonprofit Radio

Tony’s guests this week are:

Karen Perry, president of EventJournal
Howard Globus, president of IT On Demand

Read and watch more on Tony’s blog: http://mpgadv.com

View Full Transcript
Transcript for 041_tony_martignetti_nonprofit_radio_05132011.mp3

Processed on: 2018-11-11T22:43:00.777Z
S3 bucket containing transcription results: transcript.results
Link to bucket: s3.console.aws.amazon.com/s3/buckets/transcript.results
Path to JSON: 2011…05…041_tony_martignetti_nonprofit_radio_05132011.mp3.5698198.json
Path to text: transcripts/2011/05/041_tony_martignetti_nonprofit_radio_05132011.txt

No. Hello and welcome to tony martignetti non-profit radio big non-profit ideas for the other ninety five percent. I’m your aptly named host. I hope you were with me last week when i had a conversation with craig newmark, and we also talked about everlasting endowment. The founder of craigslist joined me hey has created craigconnects dot or ge for non-profits and those who support them, and we talked about the site and its areas of support. Craig is an inspiration to non-profits i’m thinking about this the past week, the way he works outside of his comfort zone to inaugurate craigconnects when he knows it’s a good idea, but he doesn’t really know how it’s going to turn out. So i hope you listen to that. I hope you were with me for that show and of course, it’s always on itunes, and also last week i had the co author of foundation and endowment investing, kathleen rittereiser joined me, she revealed strategies used by big endowment managers that you can take home to keep your endowment safe and invested, right? That was a segment that your cfo and you’re bored should hear this week event sponsorships and email security. Karen perry, the president of eventjournal, shares her ideas on how to cultivate, solicit and steward corporate sponsors so that you can raise big money for your events. And howard globus, president of i t on demand. Howard’s gonna have strategies to keep your email safe and sound and away from snoopers. He’s got some great non-profit discount sites for major league email and data security. So today i’m joined by two presidents in the studio on tony’s. Take two. In between, my guests remind you that we are media sponsors for fund-raising day in june, it’s, a big fund-raising day here in new york city, and i’ll talk a little about that. That is, at roughly thirty two minutes into the hour on tony’s, take two. So all that is, after this break, and right after the break, i’ll be joined by karen perry, will talk about event sponsorships, so stay with me. You’re listening to the talking alternative network. Latto are you suffering from aches and pains? Has traditional medicine let you down? Are you tired of taking toxic medications, then come to the double diamond wellness center and learn how our natural methods can help you to hell? Call us now at to one to seven to one eight, one eight three that’s to one to seven to one eight one eight three or find us on the web at www dot double diamond wellness dot com. We look forward to serving you. Is your marriage in trouble? Are you considering divorce? Hello, i’m lawrence bloom, a family law attorney in new york and new jersey. No one is happier than the day their divorce is final. My firm can help you. We take the nasty out of the divorce process and make people happy. Police call us ed to one, two, nine, six, four three five zero two for a free consultation. That’s lawrence h bloom two, one, two, nine, six, four, three five zero two. We make people happy. Hey, are you crazy listeners looking to boost your business? Why not advertise on talking alternative with very reasonable rates? Interested simply email at info at talking alternative dot com. Metoo welcome back to tony martignetti non-profit radio, always talking about big non-profit ideas for the other ninety five percent. With me in the studio now is karen perry. She has been helping non-profits raise more money from their galas and other major special events. For more than ten years, karen has worked at several of new york’s top advertising agencies on fortune one hundred accounts and has also worked in the non-profit arena in a variety of advocacy development, casework and outreach positions. She has her master’s in social work. In two thousand two, she founded event journal, the first web based alternative to printed ad journals and program books. Karen is here to share her ideas about event sponsorships. Karen, welcome to the show. Thank you, tony. What have you, um, what’s a sponsorship? A sponsorship is an opportunity. That’s packaged where a third party or a second party organization can get some derive some benefit from supporting another endeavor and were generally talking about corporate sponsorships today. Is that correct? This fall into the same sort of pattern of fund-raising that we see with individuals in that it’s cultivation solicitation stewardship? Well, there’s a general pattern. Yes, but there’s a different motivation in general for corporate sponsors, your individual donors, but we see the same sort of general flow i mean, you’re cultivating, soliciting and starting exactly okay, we’ll talk about each of those, you know, talk major those faces. What? What types of events are appropriate for sponsorship? Fund-raising well, there’s generally a distinction between fund-raising events and cultivation or stewardship events, although fund-raising events requires some stewardship as well, to maintain the sponsors, but basically a sponsored event can be anything from a dinner gala to a golf outing to a five k run. Anything where there’s exposure to the public on behalf of the charity or non-profit, where the sponsor would derive some value from being publicly associated with it? And what what are some of those sponsor motivations? Wired wire companies doing this well, probably the most, the one that most charities would assume is for the philanthropic value of it. Ah, usually you know, corp corporate entities are run by people, and people have different experiences in life. So if the nonprofit organization is doing work that touches on the pulse or the heart strings of thie president or vice president or other other key people in the company they miss may wish to get behind it. If there’s ah employees in the company who have been touched by particular disease or helped by an organization, then they may want to rally behind that organization. But that’s, just a piece of it is the philanthropic aspect. There’s also the what’s in it for me. And i think that in this day and age, there’s a big buzz going on right now about corporate social responsibility caused marketing. And so it really behooves the organization to take a look att tthe e exposure and recognition opportunities that they’re offering too, the sponsors when they support an event. Now we have drug in jail on tony martignetti non-profit radio, and i don’t want you to have very long stint in jargon jail you mentioned caused marketing. What does that mean? Cause marketing is when a when a the opportunity basically for a company to aa or for a non-profit to offer value to a company in association with its mission. And how would somebody figure out whether the company has that kind of affinity for for their mission? So how would a charity sort of sort that out. Well, it always goes back to the people who are in the company because cos they’re not faceless. They have people behind them. So if there’s a a company president who has a brother who was developmentally disabled, perhaps that would be a hot button for such an agency. Um, but i think it’s also a matter of ah on the less philanthropic end is, you know what? Exposure to the public, what goodwill are they conveying to the community when the organization offers thie sponsor an opportunity for exposure? Oh, yeah, definitely. I mean, i’m sort of combining two areas amused, definitely talking about the mission related interest that the company may have, and then also the what a positive association interest that they would have blang allied with the being seen with the charity name. So the organization used to do its homework to know who’s being touched by which type of condition and whether or not their mission speaks to a responsible person within the company, but very often that’s, not something that they can identify. So then i think the best opportunity for most non-profits is to put together compelling packages and traditionally for non-profit events, a dinner gala might have three hundred guests or a golf outing. Might have one hundred forty four golfers at best. That’s. Not a very big audience to be noticing the sponsorship support of a company. So in this day and age, there are so many digital opportunities and media opportunities to get the recognition factor out, that the organizations need to understand, and we’re about to take a break. But when we come back from the break, we’ll talk more about some of these marketing materials that you’re recommending that non-profits need to put together to make this compelling case. Teo cos. This is tony martignetti non-profit radio stay with us. E-giving didn’t think the building getting ding, ding, ding ding. You’re listening to the talking alternate network to get you thinking. Things. Cubine are you stuck in your business or career trying to take your business to the next level, and it keeps hitting a wall? This is sam liebowitz, the conscious consultant. I will help you get to the root cause of your abundance issues and help move you forward in your life. Call me now and let’s. Create the future you dream of. Two, one, two, seven, two, one, eight, one, eight, three, that’s to one to seven to one, eight one eight three. The conscious consultant helping conscious people. Be better business people. Dahna are you feeling overwhelmed in the current chaos of our changing times? A deeper understanding of authentic astrology can uncover solutions in every area of life. After all, metaphysics is just quantum physics, politically expressed, i and montgomery taylor and i offer lectures, seminars and private consultations. For more information, contact me at monte m o nt y at r l j media. Dot com duitz looking to meet mr and mrs wright, but still haven’t found the one. Want to make your current relationship as fulfilling as possible? Then please join us, starting monday, may second at ten am for love in the morning with morning alison as a professional matchmaker, i’ve seen it all. Please tune in and call as we discuss dating relationship and more. Start your week off with love in the morning with marnie alison on talking alternative dot com. Talking alternative radio twenty four hours a day. Duitz welcome back to the show i’m with karen perry, the president of event journal, which you’ll find at event journal dot com and we’re talking about event sponsorships. So, karen, before the break, we were talking a little about the marketing materials that are appropriate for a charity to put together. What do those look like? In-kind trying to cultivate the corporate sponsorships? Okay, well, traditionally thie formula that’s been used for the ages has been that initially, to promote an event there’s a save the date card goes out about six months before the event, then there’s typically a sponsorship letter that the charity writes that engages attempts to engage thie company in ah, connection to the mission connection to perhaps an event honore connection, teo recognition exposure that they’re going to be offering. And a typical sponsorship package combines tickets or tables at the event, along with certain, um, benefits of recognition and association with the organization. So then, of course, the invitation pack it comes out in which if there’s someone who has committed early, sometimes their logo will be featured. And so, you know, the the media met message for the event starts churning and then sponsorship is usually inclusive of some kind of recognition in association with the continuation of that. So if they have an advertisement in the newspaper logos for sponsors, khun b identified email marketing, which is a newer component logo czar identified for sponsors and then at the event they’ll typically have some sort of banners or some sort of aa journal book where the sponsors and supporters are acknowledged by having an ad and that’ll be in us and in combination with tickets and the it’s sort of sounding like there has to be, you know, a lot of recognition, but couldn’t this could this work also for smaller organizations, are more locally based, but but maybe they would just be reaching out to local companies? Sure, you know, even a small organization, if they’re having a five k run, they have t shirts where people khun can have ah, you know, logos for companies or take and i’ve seen dog walks where when you get there next to the water station, there sign ege where the sponsors are being recognized, but for the larger events, probably the single biggest recognition opportunity traditionally has been the printed ad journal and ah, that’s something that at this point is become somewhat passe because the books are our passive piece, one of the opportunities that’s out there right now for non-profits is to use digital media in various forms to offer recognition and sponsorship exposure to the companies that underwrite their events. So now there’s websites for events there’s email marketing, where they expand to a much larger audience, digital media is going to reach out to people who may not be in the room the night of the event, but who were still part of the larger database for the organization and community for the organization. So the moran organization can tie into a variety of digital media. It expands from what used to be a printed piece or printed advertisement. Okay, and that’s what? Your work is involved with eventjournal and we’ll get into the recognition. I just want to sort of work our way into that. So there was another we’ve identified you identified two reasons that companies would be interested in some kind of event sponsorship that was analogue i with the mission that they’d be in sympathy with the mission or just ah positive association with a local organization and you mentioned a third, but let’s, let’s investigate that one little bit the honoree relationship. What is that? Well, in the new york metropolitan market, honorees are really tried and proven method for bringing revenue into the event, you know, as you get outside of the new york metro area. Interestingly enough, it’s not done as much really is not so common outside new york, but we’ve learned that it’s it’s sometimes we’re suggesting it to organizations and it’s kind of like an aha for them. But basically what that’s all about is identifying somebody. Who’s either done some incredible work or made contributions to the organization or someone who’s business. They can tie their business to the mission of the event, the organization and or if not just some prominent individual who’s willing to put their name and their support behind the event for particular year. And then they either are asked or were requested are expected to bring in a certain amount of support along with there being recognized, so the honoree themselves generally underwrites the event from their company. To some extent, they’ll usually by a couple of tables, or they’ll invite their colleagues. To buy tables, and then the big opportunity, depending on the prominence of the honore, is to reach out to the vendors and suppliers and clients and colleagues of that particular business person or corporation. And ah, you know, let them know that they should show support for the fact that their colleague is being honored. Yeah, so what’s the receptivity that you find in other parts of the country when you’re having a conversation with eventjournal clients or potential clients to this to this honoree idea that you said is new to them? Well, i think that there is a general sense that, you know, asking people to it there’s a discomfort i found with asking people to not only ah chip in a certain amount of much money for their own company, but then reaching out to the next tier, then and the vendors and kind of putting the arm on them strong, arming them to pony up some money. But i think at the end of the day, one of thie ah, one of the real facts of fund-raising is that its sales? You’ve got to get out there, you’ve got to ask, you’ve gotto give people. Compelling reasons, teo, make their contribution words like stewardship. And where were the other worlds of cultivation? You know you can you can catch those and euthanize them, but basically that’s sort of like prospects, prospecting and following up and doing customer service. It’s all the same thing, it’s, just different verbiage. And you you alluded to that we didn’t call it prospecting earlier. When you’re saying that there may be people in the company or heads of the company that are sympathetic to a mission because of their own family circumstances, that’s the prospecting part of of corporate sponsorships, that’s a piece of it. But i think it’s also just knowing if there’s a company that wants to come out as being a good citizen in the community, and you have an opportunity for them to get their logo and their recognition in front of a thousand people who all share some common bond, where there’s some warm and fuzzy feeling for the fact that they have supported a mission that’s important to the individuals in the organization. That’s important to noto you know, you know what about thie the’s honorees in doing this in other parts of the country are we really anomalous in new york city? I mean, what about other cities? Are they are they doing the honoree strategy? They are there, other cities air doing work with honorees, but a lot of times it’s not as monetarily related. So, you know, they may end up honoring the chairman of the board where they may honor a great volunteer. Who’s. You know, the priest who started the programme or something like that in new york, we’ve kind of got it down to a science where you usually have two or three honorees. One is a business honoree who brings in the money. One might be a cause related, honore and a third might be just a scholarship recipient or somebody has benefited from the program. Okay, but the first of those that business honoree here in new york, i mean, there they are expected teo to put forth their vendor list. Other friends of their company there’s always an agreement. Doctor there’s always an agreement between the charity and the honoree as to what level of involvement they’re goingto have, whether they’re just providing a vendor list, whether they’re sending out a letter teo their supporters. One of the best examples we had recently was an honoree who stepped up personally, and we did a video message from eventjournal we did a video message from that honore that was blasted out on email that went tio a couple of thousand of people that the organization and this particular businessman knew it was a personal appeal from him to support the organization and then the email message click back into the website that eventjournal built for the event where all the event information the honorees byo everything to do with why they should support this charity. And then, of course, because it was an online journal, which is what our company does, it had thie ads of thie supporting vendors where everyone could see who was supporting this gentleman, and if your ad wasn’t there, it was very publicly not there and then, because annie journal is a public recognition opportunity, we also incorporate a shopping courts of people come by the rad’s right then and there and, you know, get their support recognized. And so these expectations are all laid out in advance so that the honoree on the charity know what each is expected to. Do in best practices they are, you know, some some organizations, they’re not. His bold is toe have dollar figures. Some will just ask for support and sharing of lists. Sometimes it depends on who the honoree is and what can reasonably be asked and how strong the relationship is between the charity and that particular honore. If it’s someone they barely know, and they’re just happy to have them lend their name to the organization, they have to tread lightly, expectations will be lower. Sure. S so i don’t know how to interpret the new york city version of galas and honorees, are we? I don’t know if we’re greedy or we’re just ahead of the curve and the rest of the country. Well, we’ll catch up. I think in new york, we know that were after the money. I mean, that’s the whole purpose of a fund raising event, you can have nicey nice events or you could have fund-raising events in new york, i believe we feel it’s about the bottom line, right? I’m with karen perry and she’s, the president of eventjournal we’re talking about excuse me, we’re talking about event sponsorships, karen, who should be out soliciting for the sponsorships now, you know, of course, the audience hears small and midsize non-profit so they may not have the wherewithal to get the high profile sponsorships. But who from the charity should be out soliciting these? Well, i think that it’s it’s a communal effort, there’s, generally a few tears of responsibility. Not every organization has a committee, but some d’oh. So if there’s an event committee, a committee of volunteers you mean generally it’s a committee of volunteers on dh they have some vested interest in the success of the event on behalf of the mission of the organization. So what i think is important for staff people to know is that their committee members aren’t as well versed in why somebody should sponsorship sponsor an event they may not be as comfortable with the ask itself, but they have contacts and friends and colleagues and business connections within the community. So i think that they’re a field that could be mined. I don’t think that they’re the ones who should be making the ask in general, unless you have a very sophisticated committee member on dh, then there’s generally the committee, the gala co chairs. Ok, so wait well, before we go to those let’s, just focus on the volunteer committee, that event committee so are they their role then? If they’re not actually soliciting asking for the for the sponsorship there more just setting it up so that then the staff member actually does they ask? Is that would you know, i think that in an organization that’s very well organized there’s generally a target list of companies, businesses and corporations that they would liketo have sponsor their event. I don’t see that as often as i’d like to. But i think that any time you start out with a target list, you have a much greater chance of actually closing sales or closing donation requests. So i think if you put out a list like that to a committee, you may find out that somebody’s brother in law sister in law is involved in the company and that’s information that you would have overlooked had you not asked for that. You just said, oh, who knows anybody that could sponsor us? Most committee members glaze over. Yeah, but a more specific list on dh then you you have a suggestion to go beyond the event committee itself in terms of who should be out doing this marketing for you. Right? Well, i mean, it’s going to depend on the organizational structure of this particular event. We have clients where all the asks are done by paid staff. We have others where the board members are very involved in reaching out to their contacts. Then there’s generally a gala or an event chairperson sometimes there’s a sponsorship committee, which is more focused than the committee at large. So i think, really. It depends on the structure of the event organization. But in general, what i found is that the actual asked can be started by someone on the committee or the board, but wth e conclusion and what level and what they get for that and how you package the benefits. It’s generally got to be done by a dedicated staff person in general. And in terms of that board board involvement. Is that really just about as far as it should go? I mean, what what do you think is the best practice for the degree to which the board members should be involved in this hole process? Might they also be identifying potential sponsorship opportunities? Absolutely. They might be identifying sponsorship opportunities. I think the board’s primary benefit in this type of endeavor is identifying future honorees. And then once they know someone who they can tap for an honoree for an upcoming event, then it’s their relationship with that person. Perhaps that they can then go and make the ask. And then that ask includes who do you know, mr emma’s honoree that could become sponsors and support your being recognized by organization and there’s. Ah! Number of times that, ah, potential sponsor needs to be asked right or or receive marketing materials before you’re actually gonna get an action action for out of them, isn’t it? Yeah, i think that the fund-raising sector in general is not as up one marketing methodology as i think that they could be. And so typically, with any kind of sales or marketing effort, you need a minimum of four to six times of exposure and recognition of a message for someone to even take action and more like six to twelve times for them to really be compelled to do something about it. So what i described earlier with the save the date card, the sponsor letter, the invitation and maybe a phone call from the organization that’s that’s a bare minimum. And this is two thousand eleven. We have elektronik media and we have social media and we have, you know, you can have a facebook page. You can have ah, email, marketing, web based materials. There’s just so many opportunities to teo get in front of potential sponsors. What’s the revenue expectation for sponsorships around a single event. Can you clarify? Yeah, the i mean how? Much of your revenue from an event do you think should be coming from the sponsorships? Well, i think that depending on whether what the revenue streams are, the percentage is going to vary. If it’s a sit down dinner and there’s tickets sales and then their sponsorships, you know the vast majority of the money should come in from sponsorship packages for any successful event. The ticket sales are generally just the up charge between the out of pocket costs and the ticket price, and so there’s not as much potential, whereas a sponsor dollar if someone’s donating ten thousand dollars a sponsorship and they’re getting a table and that table has ten seats that cost the organization one hundred dollars. So the up charges nine thousand dollars there’s also organisations that have journals. And so the journal is where companies come by an ad and it’s just a matter of all the ad revenue comes together. Sponsors get ads, but then people can also buy ads individually. So the cost of printing or publishing or electronically publishing that journal is taken out of the costs. So if they have tickets and sponsorships, i think it should be at least sixty percent, if not more, of the revenue. If they also have a journal, then you put the journal together with the sponsorships, and then that should be a very large percentage of the revenue. Okay, i pulled our ah, our listeners and people who follow the show on facebook and on twitter no, their replies, there were just a few, but their replies were there. Their sponsorship revenue came in either between twenty six and fifty percent, or it was a combination of anywhere from zero to one hundred might said to me, that’s, that’s a huge opportunity with a do badder than glow. I think that should be you should be vast majority, well, that’s, because i’m think i’m thinking they’re not tapping sponsorship opportunity as best they can just in the minute or so that we have left let’s talk about the recognition because that’s, where your work is the recognition that the corporate sponsor gets what what should that look? Likes a little maybe a lot more detail than you said. Well, there’s on location at the event recognition and then there’s there’s ah at large recognition, so at the event it should be very parent who the supporters are with eventjournal we produce thie e journal online, and then we bring it to the event with a presentation where all of the ads are being shown on big screens and everybody sees who the sponsors are throughout the night. It’s very colorful and robust other times there’s a printed ad book where it says there’s an ad in the on a page in the book, sometimes depending on the nature of the event. If it’s not a very elegant event they might be, they may have a banner for the company or a poster board. They may get recognition from the dais. Sometimes a top sponsor gets to have a few remarks from the dais and then outside of the event there’s all of the event promotional materials like the event website, which can have logos and journal ads and their sponsorship letters and there’s all kinds of materials where they can identify who the supporters are. My guest has been carrying perry and she’s, the president of eventjournal, which you’ll find it eventjournal dot com. Karen, thank you very much for being on the show. You’re quite welcome. It goes fast and a pleasure. We’re going to take a break, and after this break, tony’s, take two. And then i’ll be joined by howard globus, the president of tian demand, and we’ll talk about email security. Stay with us. You’re listening to the talking alternative network. Are you feeling overwhelmed in the current chaos of our changing times? A deeper understanding of authentic astrology can uncover solutions in every area of life. After all, metaphysics is just quantum physics, politically expressed hi and montgomery taylor and i offer lectures, seminars and private consultations. For more information, contact me at monte m o nt y at r l j media. Dot com are you stuck in your business or career trying to take your business to the next level, and it keeps hitting a wall? This is sam liebowitz, the conscious consultant. I will help you get to the root cause of your abundance issues and help move you forward in your life. Call me now and let’s. Create the future you dream of. Two, one, two, seven, two, one, eight, one, eight, three, that’s to one to seven to one, eight one eight three. The conscious consultant helping conscious people. Be better business people. Hey, all you crazy listeners looking to boost your business? Why not advertise on talking alternative with very reasonable rates? Interested simply email at info at talking alternative dot com welcome back to tony martignetti non-profit radio it’s, time for tony’s, take two at roughly thirty two minutes into the hour. We are media sponsors for the new york city chapter of association of fund-raising professionals fund-raising day, and that is the largest one day fund-raising conference in the world. It’s on friday, june tenth, at the marriott marquis hotel in times square here in new york, and i’ll be interviewing the conferences speakers for this show, so i’ll be interviewing them podcast interviews and then later on they’ll be replayed on the show. You could get information about the conference at www dot a f p and y c dot a f p net dot or ge again a f p and y si dot a f p net dot or ge. I always talk about my blogged for the week, but this week i had a guest blogger. My block is at mpg a dv dot com, and you’ll see that my guest blogger is howard globus this week, and howard is also the guest on this show this week, so that is tony’s take two for friday, may thirteenth and now it’s a pleasure for me to welcome howard globus to the studio. Howard welcome. Get after him. Howard has over fifteen years experience designing, installing and supporting windows server and workstation products in industries where security and reliability are critical. He’s worked with mount sinai and why you health system and the hospital for special surgery? He’s, president of t on demand and here to bring his big non-profit technology ideas to the other ninety five percent. I’m very glad that his work brings him to the studio. Howard, you have some suggestions about email security? Why don’t we start with the most basic that password for email? Okay, good afternoon. As i mentioned in the blogger hyre, your password should not be the same as your luggage tag or your luggage lock. Many people keep a luggage lock of xero xero xero or one, two, three, four and currently the most common password out there happens to be password with a capital p oh, but they but people do put a capital p on it. Yes, but that’s not enough to confound snoopers. Not not enough. And actually, some people put a capital p an a number one at the end. So that zoho very that’s. Very good. We like to say sarcastic things like that. It’s. Not very good. Now you can tell because you know, you know, you know he doesn’t mean that’s very good news. Go ahead. Sorry. Basically, you want to take a look at having as complex a password as you can to maintain security. That means doing simple things, like making sure your password is not in the dictionary. People may choose a word at random in the dictionary, but a very typical hacking attack would be to have a list of dictionary words sometimes one hundred thousand two hundred thousand words. And then programmatically attack your email by just going through the words if you’re so there are programs that can go through the whole dictionary or one hundred one hundred two hundred thousand words, all trying to hit just one one person’s password there. Programs that can actually go through about five million password words in approximately six hours. Also, these gross out there in the world, and it doesn’t not somebody sitting behind a screen one of the time it’s actually an automatic process that just runs. So when somebody uses ah, capital letter on the first word of the word or adds a number one or two at the end. It’s not a very good password. What you want to be looking at is having a complex password. Sometimes about eight or nine characters is usually a good starting point. Having a number or an additional character like a tilde or an asterix in the password somewhere. Commonly, people replaced the letter e with the number three. Um so what about those replacements, like e three for e and at signed for for for a name? What’s that oh, for a that’s, right? Right. Those work, they do work, but again, those air common replacements. So you want to try and and switch it up a little bit instead of having on eight or xero for for the letter o, you might want to take a look at a seven or something like that. Something that’s not common. The most important thing to understand is given enough time and enough computing power. Any password can be cracked. So you really want to make it as complex as possible and, frankly, not worth someone’s time to use up the band with trying cracked the password. Okay. I don’t know if people are aware that it’s so easy and that just the automation allows such sort of ah, harsh attacks on on a password in a very systematic way, correct. And i mean typically things like hotmail or gmail, even mac mail, these are things that are susceptible because they are they’re known addresses and there the common. So a lot of people go ahead and attack those female, that kind of thing. Now we’re talking about the email password, but does the same apply for your other password like system? Password? Same same kind of theories apply and depending on where you are and the amount of money and or lists that you have available to you will make you amore attractive were less attractive target. And based on how attractive a target you are, you may be under attack on a fairly regular a constant basis. Yeah, charities have donor xero often they’re preserving date of birth, maybe credit card numbers that might save to make it more convenient for the person for the donor to give, but that means they’re more susceptible, teo attack, because that that’s high value information bank bank routing information bank account information all that stuff is a can be available to ah, to ah, hacker. You know, my interest in this topic started because and i mention this in the block post because i got five e mails from different companies that i do business with all related teo hacking that occurred at a company called absalon, which i’ve never heard of, but apparently they do a lot of email distribution and email management for a lot of big companies because these were all big company names that i got the warning email from but absalon i’ve never heard of absalon is actually one of the biggest companies out there. They manage many list for folks is very disown me bed, bath and beyond paypal to some extent, so i mean, these air, these air companies that absalon works with, and they have hooks into each of these systems, so they’re a perfect target. And when, when a company hires this back end company, what you’re saying is huge, but i don’t think the typical users ever heard of them. It’s not a common name, right? Right? But they’re huge. You’re you’re really you’re relying on the front end. Company to be managing their relationship with the back end company and that’s going to play two non-profits to write if definitely for non-profit is hiring a vendor? What? What do you make sure of your agreement says when you’re hiring somebody else to manage your lists for you. Well, one of the things you definitely want to take a look at when you are using an outside vendor is what kind of arizona emissions insurance they happen to have. That’s ah, that’s. Certainly an after the fact kind of thing, but certainly something that wants that you want to have in place. You want to know that that they’re even thinking about it. If you ask an outside consultant, you know what kind of arizona missions insurance you have or data security insurance you have. And they look atyou blankly. That’s, not a vendor. You want to be talking with very much further. Okay, furthermore, you want to make sure that they have not disclosure agreements in place and that they have some kind of security system that’s audited that you can. Then go ahead and take a look at at least on a quarterly basis. Oh, that that the non-profit can audit the security for how does that work? Usually. Ah, vendor that is working with not-for-profits or for a large firms will have to have their systems audit on a regular basis to be compliant with either hip of requirements or sec requirements or some not-for-profits requirements. And if they are doing an audit on a regular basis, they’ll have a report that they can then go ahead and provide back to the to the customers. Okay, excellent let’s. Talk about attachments, since we are focusing mostly on email but not exclusively. What about those lurking attachments? What’s your advice, there’s a. An increase in what’s known as fishing out in the cyberspace and wanted to spell fishing. So keep you out of jargon jail a h i s h i n g l i just want to make the point that it’s not fishing, throwing a rod, but it starts with p a change. Things go ahead. The concept is, is that an e mail is sent that looks very similar to a a normal email that would come from from your one of your credit card companies or processing company or your bank or what? Have you? And that email will have a logo and we’ll have all the text formatted almost the same as as that emails coming from the actual valid location would be, and they would have a link on it’s saying something like, please update your password, papale had this happened quite a bit about a year and a half ago two years ago, you may also get an email from something someone claiming to be ups saying we have a package that needs to be delivered. Please click on this link to confirm your delivery instructions, and when you click on that link within the email, it will take you to a website, and that website may look very similar to the to the company that you that you’re using the website of the company you thinkyou’re going around exactly, but in fact, it’s ah it’s, a fishing site, and what they’ll do is they’ll ask for information, personal information, sometimes credit card information, and they’re looking to their statement is is they’re looking to confirm that you are who you say you are, but in fact what they’re doing is what’s called social engineering and and asking for information. That normally would provide and you provided fairly freely, and then that’s information that could be used later on teo to extract funds. She’s ok, so what’s your advice, then if you if you get something, how do you tell whether it’s legitimately from ups or or it’s, not in almost no cases will you’re a vendor that you’re working with? Ask you to send, send their information, your information via email or clip through on the website the wayto always check is if you log on to the company’s website directly outside of the e mail attachment, but rather going directly to your browser. Okay, so now you’re in there, you’re ignoring the email you going right to your browser and in the browser address window? Correct? You’re saying typing ups, dot com or paypal dot com and then put your credentials in there if on e mail went out saying you need to update something, it’ll have a notice on that website to say, hey, you need to update something alright, because you’ve logged in so they know that it’s you they would know if they had sent you the e mail, they’re going to know, and they’ll remind you of whatever it is they want to do after you’ve logged in. Okay, okay, why don’t you just we just have a minute before a break. Why don’t you say a little bit about firewalls and were firewall protection? And then we’ll look more added after the drugs. Traditionally, computers come with far walls, whether it’s, a mac, a pc or a linux based operating system that’s, a piece of software that will try to keep your system safe and using that software there’s a degree of of comfort that the end user has. The question is, is that comfort valid and that’s something that really needs to be investigated depending upon where the system is connected to how it’s connected teo to the internet and what of the things you’re doing on the on the machine? Ok, we’ll look more about that. Look more at that in a moment. Take a break right now and then howard globus will stay with us, so i hope you do, too. Talking alternative radio. Twenty four hours. Do you love movies, then join me and share your pains about them on the radio. This is mike, a movie fan like you, starting made tenth. Join me every tuesday night at six pm for my new show movie time on talking alternative dot com. Call me live or email me at movie time radio. At gmail dot com. We’ll talk about all the blockbusters whose the best director and which movies air overrated, among many other topics. Join me for movie time. Tuesdays at six on talking alternative dot com. Looking to meet mr and mrs wright but still haven’t found the one want to make your car relationship as fulfilling as possible? Then please join us starting monday, may second at ten am for love in the morning with morning alison as a professional matchmaker, i’ve seen it all. Please tune in and call as we discuss dating relationship and more. Start your week off with love in the morning with marnie alison on talking alternative dot com oh, this is tony martignetti aptly named host of tony martignetti non-profit radio big non-profit ideas for the other ninety five percent technology fund-raising compliance social media, small and medium non-profits have needs in all these areas. My guests are expert in all these areas and mohr tony martignetti non-profit radio fridays, one to two eastern on talking alternative broadcasting do you want to enhance your company’s web presence with an eye catching and unique website design? Would you like to incorporate professional video marketing mobile marketing into your organization’s marketing campaign? Mission one on one media offers a unique marketing experience that will set you apart from your competitors. Magnify your brand exposure and enhance your current marketing effort their services include video production and editing, web design, graphic design photography, social media management and now introducing mobile marketing. Their motto is. We do whatever it takes to make our clients happy. Contact them today. Admission. One one media. Dot com. Talking dot com. No. Kayman i’m with howard globus and he’s, the president of tian demand we’re talking about email security, you’ll find his company at hyphen on hyphen demand dot com before the break. Howard, we’re talking a little bit about firewall, so it’s it’s a degree of protection between the outside world and your your inner network, correct to speak a little bit more about that? Most computers come with a far wall, either preinstalled or something that you can turn on. The problem with principal firewalls on a computer is that they need to be hardened. They need to be ah, lock down a bit, which makes it a little bit mohr ah, less oxygen less user friendly on the computer itself. One of the things we recommend is a firewall that’s protecting your entire network, whether that’s, a home network of one or two pcs or or apples or a corporate network, a device that actually has a moral bust process and really is designed specifically tact is a firewall, as opposed to a far wall and a word processor and a web browser and all the other kind of things that a computer is okay and what kinds of things? Is this wall protecting you from? Well, the wall protects you from a number of different things. For example, some of the some of the password attacks that we were talking about not so much on the email side, but certainly on the server side, the database side things that would be password protected, but internally on the network. Additionally, it protects you from viruses and potential malware or little programs that get downloaded by by folks who is surfing the web or until you could tell how it’s, afraid of jargon, jail this’s, malware or little programs gets that definition right in there. Thank you, little programs to get downloaded when folks open up attachments and emails or are served to certain websites, the firewall, what it does is it actually monitors the traffic that goes from the outside in and from the inside out and that’s a critical piece, because if you have a network of any degree of complexity, which really more than one pc is a degree of complexity, the potential is is that there are programs that get installed on your computer that you may not be aware of and by monitoring the far wall. You can find out what what programs are what we call calling home or sending information from the machines back to some other server so you don’t just set this firewall up and and and then forget about it now, monitoring that would be ideal. Basically, ah, home user might have a firewall that they would really ideally take a look at at least once a week and take a look at the logs. Yeah, what about a small office, maybe three or four computers? Smart, a small office that operates on a typical nine to five business day but leaves their machines on so that way folks can work remotely should have. Ah, an active monitoring system is supposed to be a passive monitoring system. What that means is, is that when a potential violation occurs, it emails or notifies out someone who’s monitoring that far wall on a regular basis so you would do things like patch management and upgrades on a on a monthly basis. Take a look at the far wall logs on a weekly basis, but have active management and act of notification on an hourly or sometimes up to the minute basis, okay, and what types of things are you getting alerts about? Well, there’s a number of different things that the most common alert that we would get is we would have intrusion detection so there would be websites, and you’d have an external website or an external address from somewhere out in, out in the world, that’s attempting to ah to connect in using different protocols, things like ftp, which is a file transfer protocol, or using things over port eighty, which is the web protocol that’s things that people use to get out on internet explorer safari browser, but it also is ah, a whole range of different ports that are open and or potentially open, and if those ports are open, every port is a is a potential access point, and these ports are connections into your computer and thrown out of your computer credit. How does this small non-profit budget for all this, for the software that they need to protect their their network? Well, ideally, you’d be looking at or a small non-profit would be looking at some kind of manage service that has ah, a paper month as opposed to pays you go type of faith, the pay as you go, type of he can get very expensive very quickly. If you have a monitoring program in place and you say okay, we know that that monitoring is going to go on for this month. We’ll give you a report at the end of every week or at the end of every month. And we will go ahead and re mediate any of the types of issues that we see and it’s all included in tow. One service and that’s. That would be ideal. The reason why that’s ideal over as a pay pay as you go is the types of intrusion. Detection varies widely depending upon what your internet service provider is the time of the year it is. And, frankly, how valuable your information is assumed to be from an outside source. Roughly. How much would a small office get? Well, are the fees for that type of service based, i assume on the number of users? Is that right? Are the fees are based on the complexity of the device. That’s actually being used as the firewall more complex environment might only have excuse me. A more complex environment might have multiple firewalls and you’d be looking at something where you have to monitor multiple access points, a small environment. Let’s say five users or five people work in an office would probably only have a single firewall fairly, non complex, far wallet that and really be looking at maybe seventy dollars a month in terms of monitoring fees. Okay, okay. Um and that and that. Ah, that active monitoring you said, should be even hourly for some of the things that some of the dangers that are out there. Okay, i know you brought some resource is with you that where that are specific for non-profits why don’t why don’t you share those for discount something? Okay, well, the top website for discounts for non-profits is tech soup, that’s t ea ch soup dot or ge that’s, a website that actually matches non-profit companies with donor cos specifically software and hardware vendors. So microsoft, adobe, symantec, all the big companies go ahead and provide software if ah, non-profit can show their non profit status and joe need. Okay, so there’s a huge names. Is there another one you have or really tech soup? Texas is the main one fourth non-profits and then there’s. A website sands s es and s dot or ge, which deals with specific security issues and can talk a lot about auditing and keeping things upto up to date. Okay, and this sand’s dot org’s also have discounts or that sand xero is just a resource for for things that are going on in the world. All right, that’s, howard globus and he is the president of t on demand, which you’ll find at i t hyphen on hyphen demand dot com howard, thank you very much for joining us. Thank you for having me pleasure next week, our tech contributor and the editor of non-profit technology news, scott koegler will be with me he’s going to share the latest from his newsletter, and i hope you’ll be with me for that, you can keep up with what’s coming up week to week by signing up for our insider email alerts on the facebook page. While you’re there, click like and become a fan of the page, please, you can listen to the show on itunes at any time on the device of your choice at the time of your choice. That’s at non-profit radio dot net and each show is up, usually by the monday following. I want to thank my guests this week, karen perry and howard globus, the two presidents for coming into the office, coming into the studio and joining me. The creative producer of tony martignetti non-profit radio is claire meyerhoff. Our line producer is sam liebowitz he’s, also the owner of talking alternative broadcasting. Our social media is by regina walton of organic social media on tony martignetti, the host of tony martignetti non-profit radio. Always talking about big non-profit ideas for the other ninety five percent. I hope you’ll be with me next friday, one p, m eastern here at talking alternative dot com. I think they’re getting him. You’re listening to the talking alternative network, waiting to get into anything. Good. Duitz are you suffering from aches and pains? Has traditional medicine let you down? Are you tired of taking toxic medications, then come to the double diamond wellness center and learn how our natural methods can help you to hell? Call us now at to one to seven to one eight, one eight three that’s to one to seven to one eight one eight three or find us on the web at www dot double diamond wellness dot com way look forward to serving you. Do you love movies, then join me and share your pains about them on the radio. This is mike, a movie fan like you, starting may tenth. Join me every tuesday night at six pm for my new show movie time on talking alternative dot com. Call me live or email me at movie time radio. At gmail dot com. We’ll talk about all the blockbusters whose the best director and which movies air overrated, among many other topics. Join me for movie time. Tuesdays at six on talking alternative dot com. Is your marriage in trouble? Are you considering divorce? Hello, i’m lawrence bloom, a family law attorney in new york and new jersey. No one is happier than the day their divorce is final. My firm can help you. We take the nasty out of the divorce process and make people happy. Police call us ed to one, two, nine, six, four three five zero two for a free consultation. That’s lawrence h bloom two, one, two, nine, six, four, three five zero two. We make people happy. Hyre treyz do you want to enhance your company’s web presence with an eye catching and unique website design? Would you like to incorporate professional video marketing mobile marketing into your organization’s marketing campaign? Mission one on one media offers a unique marketing experience that will set you apart from your competitors, magnify your brand exposure and enhance your current marketing efforts. Their services include video production and editing, web design, graphic design photography, social media management and now introducing mobile marketing. Their motto is. We do whatever it takes to make our clients happy. Contact them today. Admission one one media dot com you’re listening to talking on their network at www dot talking all dot com, now broadcasting twenty four hours a day.