Today Carolyn talks with Johanny Torrico about her recent promotion to an executive position that the Community IT Board created for her: President and Chief Operations Officer.

This conversation provided an opportunity to delve into Johanny’s strategic vision for the company’s future. We explored how the new position was created to recognize her role guiding the company through a period of significant growth and innovation in the past few years, ensuring that we continue to provide the highest level of service and support to the nonprofit community.

We also touched on the challenges and successes of our expansion at Community IT, doubling both staff and clients served in the years following the pandemic. From scaling our services to meet increasing demand to fostering a cohesive culture as our team grows, Johanny shared valuable insights into the dedication and strategic planning that was required to navigate this dynamic landscape.

Our President and COO shared personal reflections on her extensive career in IT and operations, highlighting pivotal moments of challenge and the principles that have led to her success. This led to insights on what it takes to recognize and nurture talent within an organization, offering practical advice for HR professionals, managers, and job seekers alike.

We also explored the unique benefits of being a 100% employee-owned company. This model is a cornerstone of our internal culture, fostering a deep sense of ownership and commitment among our staff. Ultimately, this shared purpose and dedication not only helps us attract and retain top talent but also directly translates into the exceptional service and long-term partnerships we provide to our nonprofit clients.

Johanny has a lot to say on the benefits of a culture that encourages staff to be happy and capable, and the focus at Community IT on customer service – the face to face interactions of people with people.

Speaker:

Johanny Torrico brings over thirty years of experience managing teams and operations to her role as President and Chief Operating Officer at Community IT, where she leads the largest internal team providing services to clients. A calm and organized leader, Johanny is responsible for the service and technical operations for all the teams at Community IT. She also leads staff development and internal business processes, with a focus on staff retention and career mentoring.

As Chief Operating Officer Johanny played a critical role in leading the dramatic expansion of our service operations. She established new teams, expanded company management and led the successful adoption of a wide range of new technologies. Johanny has a special ability to promote standardization of our services in ways that add value for our clients. Johanny brings decades of experience, professional maturity and tremendous skillsets as a business leader.

_______________________________
Start a conversation :)

• Register to attend a webinar in real time, and find all past transcripts at https://communityit.com/webinars/
• email Carolyn at cwoodard@communityit.com
• on LinkedIn

Thanks for listening.

Nonprofit Cybersecurity expert and Community IT CTO Matt Eshleman offered his take on these trends. Listen for expert advice on avoiding new computer viruses and making sure your organization is protected from Attacker-in-the-Middle attacks on MFA (Multi-Factor Authentication), particularly for important accounts like your Executive Director and CFO.

Fighting Viruses

• Virus attacks have been increasing. These computer viruses are no longer just malware that “infects” your network through an email link or website.
• Bad actors know we are suspicious of links in our email and that these days most malicious emails are stopped from reaching our inboxes. As a work around, they have started sending a document with instructions to open the document with a “secure code” – actually a malicious code. In this way, they trick the victim into running the attack against themselves.
• To resist this attack, always think – if the document you need to open is legitimate, and the person emailing it to you is genuine, they can send you a pdf. You should be very suspicious of any attachment that requires another set of steps to open, particularly executing code on your computer.
• Other ways you may pick up a computer virus: downloading something malicious online. Be careful to double check you are on a legitimate site before downloading anything. Better yet, use the App Store where possible.
• We are also seeing an increase in malicious pop-ups. If a window opens on your computer saying you have a virus, it can be scary. Always contact your own IT provider. Do not follow the directions the pop up is giving you to get “support,” or you will be calling the scammer.

Using Phish-Resistant MFA

• Community IT continues to recommend that all users use a Multi-Factor Authentication method on all accounts.
• Because MFA is so effective, it is not surprising that attackers are trying to work around it. In the past few years Attacker-in-the-Middle attacks have been on the rise. In this attack, the bad guys trick a user into “logging in” in a way that exposes their secure token for the attacker to steal. The attacker can then login as the user from a different device and gain access to anything the user has access to.
• Phish-Resistant MFA, like using a passkey or Microsoft Hello, will only allow the MFA to be authenticated from the device where you are. You can also use a physical key like Ubikey or FIDO, which must be present to allow the login.
• Community IT is recommending at a minimum that all accounts with access to sensitive data such as Executive Director, CFO, maybe Board members, the executive team, should use Phish-Resistant MFA to best protect the organization. Of course, any access to your network is a risk, so where possible, investing in Phish-Resistant MFA for all staff is a good investment.
• Training on Phish-Resistant MFA can lessen the friction or feeling that an extra step is required. Most Phish-Resistant MFA is quick to use and easy to learn. Peace of mind is worth it.

Community IT hopes that building this culture of care at your organization makes it easier for you to update your staff on new threats and scams through your regular training program.

_______________________________
Start a conversation :)

• Register to attend a webinar in real time, and find all past transcripts at https://communityit.com/webinars/
• email Carolyn at cwoodard@communityit.com
• on LinkedIn

Thanks for listening.

Change Management Lessons with Debbie Cameron

Build Consulting Partner Debbie Cameron and change management expert in a webinar on when you can rescue a nonprofit technology project using change management techniques.

In part 1, Debbie describes the philosophy of change management and how these techniques work in helping the people at your organization understand and adapt to big changes. In part 2, she discusses how to rescue a failed project and some techniques to turn a project around. She also gives a mini-case study and takes audience questions.

It is never too late to go back and re-assess where change management best practices can help.
Learn how to use change management principles to get more out of your nonprofit technology investments and rescue a tech project that hasn’t succeeded – yet.

Do you have a technology tool that is not living up to expectations?

In an ideal world, change management would help inform three main phases of technology project implementation: planning, during, and after go-live. Build Consulting curated a three-part video series with Debbie Cameron, change management expert at Build Consulting, walking through the Build philosophy and providing best practices and examples at each stage of nonprofit tech project management.

But what if you weren’t present for the entire project? What if you are facing a project that isn’t going well – that you inherited – a technology tool that your organization is paying for but everyone hates – a tool your organization is stuck with … is there still a role for good change management? Is it too late to use change management best practices to rescue these projects?

In this new webinar, Debbie shares techniques and tools to help analyze where change management can support implementation after technology change.

_______________________________
Start a conversation :)

• Register to attend a webinar in real time, and find all past transcripts at https://communityit.com/webinars/
• email Carolyn at cwoodard@communityit.com
• on LinkedIn

Thanks for listening.