Many nonprofit organizations know they need better security, but the cost of doing the work correctly can be difficult to absorb. A church may need controlled access at its exterior doors. A private school may need better visitor control. A community center may need cameras, lighting, reinforced doors, or a better way to secure the building during events. These are not cosmetic upgrades. They are real safety improvements that protect staff, volunteers, members, students, visitors, and the broader community.
The FEMA Nonprofit Security Grant Program, commonly called NSGP, is designed to help eligible nonprofit organizations pay for security enhancements when the organization is at risk of terrorist or other extremist attack. For many nonprofits, this grant may be one of the best opportunities to fund physical security improvements such as access control, high-security door hardware, controlled entry systems, video assessment systems, locks, gates, barriers, lighting, and certain cybersecurity improvements tied to security systems.
What Is the Nonprofit Security Grant Program?
The Nonprofit Security Grant Program is a federal preparedness grant administered by FEMA through State Administrative Agencies. Nonprofits do not apply directly to FEMA. Instead, they submit their application package through the appropriate state or urban-area administering agency.
The program is intended to improve the physical security, cybersecurity, and target hardening of nonprofit facilities that are at risk because of their mission, identity, visibility, symbolic value, or the population they serve. Eligible organizations often include houses of worship, private schools, museums, senior centers, community centers, day camps, medical nonprofits, and other 501(c)(3) organizations.
For FY2026, the program includes two major funding streams:
NSGP-UA, for eligible nonprofits located within designated high-risk urban areas.
NSGP-S, for eligible nonprofits located outside those designated high-risk urban areas.
Which funding stream applies depends on the physical location of the site being secured. This matters because applying under the wrong funding stream can cause an application to be rejected.
How Much Funding Can a Nonprofit Request?
For FY2026, a nonprofit with one eligible site may request up to $200,000 for that site. Nonprofits with multiple locations may submit separate applications for multiple sites, subject to the program limits.
Each physical address must have its own application, its own Investment Justification, and its own site-specific vulnerability/risk assessment. A generic organization-wide security wish list is not enough. The application needs to show the actual risks and vulnerabilities at the exact location where the funds would be used.
What Security Improvements Can NSGP Help Fund?
NSGP funding is generally focused on target hardening and security-related preparedness. Common project types include:
High-security locks and restricted key systems
Door hardware upgrades
Electric strikes and controlled entry hardware
Access control systems
Card readers and associated software or hardware
CCTV and video assessment systems
Impact-resistant doors or gates
Fencing, gates, barriers, and perimeter protection
Security lighting
Alarm and notification systems
Cybersecurity improvements tied to security systems
Security planning, training, and exercises
For a locksmith and access control project, a strong NSGP scope might include high-security restricted keyway cylinders, improved exterior door hardware, electric strikes, card reader access, door position monitoring, credential management, and improvements that help the organization control who can enter the building and when.
However, the application should not simply say, “We want Medeco locks” or “We want access control.” A better grant application explains the risk first, then ties the requested hardware to that risk.
For example:
“The organization currently has uncontrolled key distribution, exterior doors with aging mechanical hardware, and no reliable way to revoke access when keys are lost or former staff and volunteers leave. The proposed restricted high-security key system, electrified locking hardware, and controlled access system will reduce the risk of unauthorized entry and improve lockdown capability during services, school hours, and community events.”
That is much stronger than a basic equipment list.
What Makes a Strong NSGP Application?
The application is competitive. Approval is not just about wanting better security. The organization must explain why it is at risk, what vulnerabilities exist, what would happen if those vulnerabilities were exploited, and how the requested project reduces that risk.
A strong application focuses on these points:
1. A Site-Specific Vulnerability/Risk Assessment
The vulnerability assessment is one of the most important pieces of the application. It should identify the actual weaknesses at the site. Examples may include:
Uncontrolled or duplicated keys
Exterior doors that do not latch reliably
Doors without proper access control
No audit trail for entry
No way to quickly revoke access
Weak perimeter lighting
Lack of camera coverage at entrances
Public access points that are difficult to monitor
High-traffic events with limited visitor control
Children, elderly members, or vulnerable populations on site
Past threats, vandalism, suspicious activity, or targeted incidents
The grant request should match the vulnerabilities found in the assessment. If the assessment identifies exterior door access as a vulnerability, the application should explain how the proposed locks, electric strikes, access control, or door hardware solve that exact issue.
2. A Clear Threat Narrative
The grant is not mainly about ordinary crime prevention. Burglary, theft, vandalism, and trespassing may help provide background, but the application should clearly explain any terrorism, extremism, hate-based, ideology-based, or targeted threat concern.
This does not mean the organization needs to exaggerate. It means the organization should clearly document why it may be a target. That may include:
Religious identity
Public visibility
Symbolic importance in the community
Prior threats or suspicious activity
Association with a group that has been targeted elsewhere
Events that attract large gatherings
Programs serving vulnerable populations
Public-facing ministry, education, outreach, or advocacy work
The best applications make a clear connection between the organization’s mission and the reason it may face elevated risk.
3. Tie Every Requested Item to a Vulnerability
One of the biggest mistakes is submitting a list of desired equipment without explaining why each item is needed. Grant reviewers need to see the connection.
Instead of saying:
“Install access control on four doors.”
Say:
“The vulnerability assessment identified four exterior doors used by staff, volunteers, and program participants. These doors currently rely on mechanical keys that cannot be quickly revoked or audited. Installing access control on these doors will allow the organization to limit access by role and schedule, remove access for former users, and provide an entry record during high-risk periods.”
Instead of saying:
“Install high-security cylinders.”
Say:
“The site currently uses standard key cylinders with no effective key control. The organization cannot verify how many copies exist or whether former staff, volunteers, or contractors retain keys. A restricted high-security key system will reduce unauthorized duplication and help restore control over exterior access points.”
4. Focus on Feasible Projects That Can Be Completed
A strong application should include a realistic project scope, budget, and timeline. Reviewers want projects that can actually be completed within the grant period.
For physical security projects, the application should be specific:
Which doors are being upgraded?
What hardware is being installed?
What vulnerability does each upgrade address?
Does the work require power, cabling, fire alarm coordination, or permitting?
Will the hardware comply with life safety and accessibility codes?
Who will manage the project?
What is the expected completion timeline?
What measurable outcome will show the project worked?
For example, measurable outcomes could include:
All exterior staff entrances converted to restricted key control
Lost keys no longer requiring rekeying of the entire building
Former employee or volunteer access removable immediately
Access logs available for designated controlled doors
Main entry secured during services, school hours, or community programs
Improved lockdown capability
Reduced number of uncontrolled entry points
5. Do Not Treat the Grant as a Blank Check
NSGP is not simply “free security money.” The project must be allowable, properly documented, tied to the vulnerability assessment, and completed according to the rules. In many states, the grant operates as a reimbursement program. That means the organization may need to pay approved expenses first and then request reimbursement with proper documentation.
The organization should also be prepared for procurement rules, recordkeeping, environmental and historic preservation review, and restrictions on certain equipment or vendors. Historic buildings, exterior modifications, cameras, fencing, door replacement, and other physical work may require additional review before work begins.
Can You Apply Again If One Award Is Not Enough?
In many cases, yes. Prior NSGP recipients are generally not prohibited from applying again in later years. However, first-time applicants may receive a scoring advantage, and each year’s application must stand on its own.
This means a nonprofit can think in phases, but each phase should be a complete and defensible security project.
For example:
Phase 1: Correct the most urgent physical access vulnerabilities. This might include high-security restricted key hardware, exterior door hardware repairs, electric strikes, latch protection, door position monitoring, or securing the most vulnerable entrances.
Phase 2: Expand into a fuller access control system. This might include additional card readers, software, credential management, expanded door control, video integration, or cybersecurity improvements related to the access control system.
Phase 3: Add additional layers. This might include cameras, lighting, barriers, gates, or other measures identified in an updated vulnerability assessment.
The important point is that Phase 1 should still reduce risk by itself. A grant application should not request parts that do not create a functional security improvement unless they are clearly part of an approved, complete project. Reviewers are more likely to support a project that is practical, complete, and directly tied to documented risk.
If the total need is larger than the current award limit, the best approach is to build a security roadmap, prioritize the highest-risk vulnerabilities first, and apply for later funding to address the next set of documented gaps.
Practical Tips Before Applying
Start with a real vulnerability assessment. Do not wait until the last week.
Gather documentation of threats, suspicious activity, vandalism, harassment, police reports, insurance reports, incident logs, or safety concerns.
Make sure the mission statement clearly explains who the organization serves and why that mission may elevate risk.
Use the current year’s Investment Justification form. Old forms or incomplete forms can cause rejection.
Do not submit a generic equipment quote without explaining the risk.
Use plain language. Reviewers should understand the problem, the proposed fix, and the expected result.
Prioritize exterior access points, key control, controlled entry, and life-safety-compliant door hardware when the vulnerability assessment supports it.
Make sure any access control work is coordinated with fire code, egress requirements, ADA requirements, and existing door conditions.
Think in layers: doors, locks, access control, cameras, lighting, alarms, policies, and training all work together.
Do not wait to obtain a UEI if your state requires it before award.
Do not start work before approval if your state or FEMA requires environmental/historic review or formal grant authorization.
Keep procurement documents, quotes, invoices, proof of payment, and project records.
Why Door Hardware and Access Control Matter
Many nonprofits focus first on cameras, but cameras usually record what happened after someone has already gained access. Strong door hardware and access control help prevent or delay unauthorized entry in the first place.
A complete physical security plan should answer basic questions:
Who has keys?
Can keys be duplicated without authorization?
Can former staff or volunteers still enter?
Do exterior doors close and latch reliably?
Can access be limited by schedule?
Can the organization lock down quickly if needed?
Can staff see or verify who is entering?
Are doors code-compliant and safe for emergency egress?
For many churches, schools, and community facilities, high-security key control and properly designed access control are some of the most practical improvements available. They help the organization move from “we hope only the right people have keys” to “we can control and document access.”
How Able Locksmiths Can Help
Able Locksmiths can assist nonprofits with the security planning side of the process by identifying door, hardware, key control, and access control vulnerabilities. We can help develop a practical scope of work that matches the risks found at the facility, including high-security lock hardware, restricted key systems, electric strikes, access control, door repairs, and related security upgrades.
We do not guarantee grant approval, and the nonprofit remains responsible for its own grant application and compliance requirements. However, a clear, well-documented security scope can make the application stronger and help the organization avoid vague or incomplete project descriptions.
If your nonprofit is considering the Nonprofit Security Grant Program, now is the time to review your doors, keys, locks, access control, cameras, and security procedures. The strongest applications are built before the deadline, not during the final week.
Contact Able Locksmiths to schedule a facility security review or discuss a phased security upgrade plan that can support your grant application.
Disclaimer: This article is provided for general informational purposes only and is intended to help nonprofit organizations better understand the FEMA Nonprofit Security Grant Program. Able Locksmiths, LLC is not a law firm, grant administrator, or legal counsel, and this information should not be treated as legal, financial, or official grant advice. Grant requirements, deadlines, eligibility rules, allowable expenses, and application procedures may change from year to year. Organizations should always refer directly to the official FEMA Nonprofit Security Grant Program website for the most current information:
Nonprofit Security Grant Program | FEMA.gov
Maryland Applicants, Apply Here:
Nonprofit Security Grant Program



