New Year Technology Resolutions for 2020

New Year 2020. Time for resolutions that typically fail by February.

But technology resolutions matter. Here are practical resolutions for 2020 that practices can achieve and maintain.

Resolution 1: Migrate Email to Cloud

Why

On-premise Exchange servers require maintenance, are vulnerable to failures, and limit remote access.

Office 365 and Google Workspace provide better reliability, accessibility, and security.

How

Q1 2020: Research options and select provider.

Q2: Plan migration, train staff.

Q3: Execute migration.

Resolution 2: Enable Multi-Factor Authentication

Why

Compromised passwords are extremely common. MFA prevents compromised passwords from providing access.

Where

• Email
• Practice management software
• Financial accounts
• VPN and remote access
• Administrative accounts

How

Q1: Enable for IT and administrative accounts.

Q2: Roll out to all staff.

Resolution 3: Implement Cloud Backup

Why

Local-only backups vulnerable to same disasters affecting primary data. Cloud backup provides offsite protection.

What

Automated cloud backup of critical data. Immutable backups ransomware can't encrypt.

How

Q1: Select cloud backup service.

Q2: Implement and test.

Ongoing: Verify backups run successfully.

Resolution 4: Security Awareness Training

Why

Staff are both vulnerability and defense. Trained staff recognize phishing and handle data properly.

What

Quarterly security training covering phishing, passwords, data handling, physical security.

How

Q1: Initial comprehensive training.

Quarterly: Refreshers and updates.

Ongoing: Simulated phishing tests.

Resolution 5: Move to Cloud File Storage

Why

Local file servers require maintenance and limit accessibility. Cloud storage accessible from anywhere with automatic backup.

Options

OneDrive, SharePoint, Google Drive, Dropbox Business.

How

Q2-Q3: Migrate files to cloud storage.

Q4: Retire local file server or repurpose.

Resolution 6: Upgrade from Basic Antivirus

Why

Traditional antivirus catches only known malware. Modern threats require behavioral detection.

What

Endpoint detection and response (EDR) catching threats based on behavior, not just signatures.

Options

Microsoft Defender for Endpoint, Crowdstrike, SentinelOne, Sophos.

How

Q1: Research and select EDR solution.

Q2: Deploy to all endpoints.

Resolution 7: Regular Software Updates

Why

Unpatched vulnerabilities exploited by attackers. Many breaches exploit vulnerabilities with available patches.

What

Operating systems, applications, servers, network equipment all need regular updates.

How

Enable automatic updates where possible.

Establish monthly patching schedule for systems requiring manual updates.

Resolution 8: Test Backup Restores

Why

Backups you haven't tested might not work. Discovering backup problems during emergency is too late.

What

Quarterly: Test restoring files from backup.

Annually: Test full system restore if possible.

How

Schedule quarterly tests. Document results. Fix any problems discovered.

Resolution 9: Document Technology Procedures

Why

Undocumented procedures exist in people's heads. When people leave, knowledge leaves.

What

Document common procedures, troubleshooting steps, configurations, vendor contacts.

How

Create documentation repository (wiki, shared drive, documentation software).

Gradually document procedures throughout year.

Resolution 10: Review Vendor Security

Why

Your security depends on vendor security. Compromised vendors compromise you.

What

Review security of critical vendors: practice management software, cloud services, backup providers.

Request SOC 2 reports, security questionnaires, Business Associate Agreements.

How

Q1-Q2: Assess critical vendors.

Ongoing: Annual vendor security reviews.

Making Resolutions Stick

Prioritize

Don't try all 10 simultaneously. Pick top 3-5 for 2020.

Set Specific Goals

"Improve security" is vague. "Enable MFA on email by March 31" is specific.

Assign Responsibility

Who owns each resolution? When is deadline?

Track Progress

Monthly check-ins on resolution progress.

Get Help

IT support, managed services, consultants can help implement resolutions.

Our Top 5 for 2020

If choosing only 5:

1. Enable MFA everywhere
2. Implement cloud backup
3. Security awareness training
4. Upgrade to EDR
5. Keep systems updated

These provide most security improvement for effort.

Looking Ahead to 2020

2020 will bring continued cloud migration, increased security threats, and evolving compliance requirements.

Practices investing in security and cloud infrastructure now position themselves well.

We Can Help

At Robell Technologies, we help Arizona practices implement technology improvements:

• Cloud migration (email, files, applications)
• MFA implementation
• Backup solutions and testing
• Security awareness training
• EDR deployment
• Patch management
• Vendor security assessment

If you need help turning resolutions into reality, we can help.

Happy New Year 2020

Make 2020 the year your practice gets cloud and security right.

Choose achievable resolutions. Start with highest priorities. Get help where needed. Track progress.

Here's to secure 2020. May your systems stay current, your backups stay good, and your resolutions stick beyond February.