In the process of slashing expenses? Just be careful not to cut essential items, such as sufficient staffing to maintain strong internal controls, from your not-for-profit’s budget. Internal controls are critical for preventing occupational theft. Cybersecurity is something else your organization can’t afford to do without. The good news is fraud prevention measures don’t have to be expensive. Some simply require rigorous oversight and effective communication.
Bad timing
It’s usually imprudent to remove internal controls when employees and volunteers are under increased financial pressure and your organization has fewer people “minding the store” due to budget and staff cuts. Financial stress and greater opportunity could tempt even longtime, trusted stakeholders to misappropriate your organization’s funds. So if anything, you might want to increase internal controls at this time.
For example, your nonprofit’s policies need to specify that no one person should have sole responsibility for tasks such as receiving invoices, recording payments and making bank deposits. If your nonprofit is shorter-staffed than usual and only one accounting employee is available, assign an employee from another department or a trusted board member to provide necessary checks and balances. What if those solutions don’t work? You may need to bite the bullet and pay for an outside vendor to pick up the slack.
Also maintain strict policies for financial outlays, such as requiring dual signatures on checks over a certain amount. In fact, you may want to lower your current threshold of expenses or payments that trigger a manager’s review or a co-signature and start performing random audits more frequently.
Make workarounds feasible
If you ask staffers from elsewhere in your organization to assist temporarily or part-time with accounting duties, be sure to fully train them. You might want to shadow them for a while to ensure they follow all procedures correctly.
Now is also an excellent time to offer an internal controls refresher course for managers. They may be asked to authorize expenditures or perform other new duties. For instance, supervisors may need to provide greater oversight to team members and investigate potentially suspicious activities.
Protecting your network
You’ll also likely need to authorize expenditures for continued cybersecurity. Cyberfraud is the most common way for outsiders to gain access to nonprofit donor and employee data, including bank account and credit card numbers. Regardless of the cost, maintain software licenses that entitle you to manufacturers’ patches and consider upgrading your security tools as technology evolves to keep up with emerging threats.
Also, be wary if a new volunteer offers to perform IT tasks for free. You may be able to save on the cost of paying IT employees or consultants, but you risk giving network and data access to a potential bad actor.
More with less
Even with fewer employees working harder, you may have to stretch your budget and hire outside professionals. Make the most of these engagements by having staffers work closely with consultants so they acquire knowledge they can use in the future. Contact us for help with trimming your budget and doing more with less.
© 2025