Blog
← Back to Blog
August 25, 2020 dental

Five IT Investments Every Practice Should Make Post-COVID

Business investment and technology planning

The pandemic stress-tested every practice's technology. Some passed. Many failed. Now that we're adapting to the new normal, it's time to make the investments that will prevent the next disruption from becoming a disaster.

These aren't aspirational. These are the five investments that separate practices that will thrive from practices that will struggle.

1. Cloud-Based Backup with Air-Gapped Copies ($100-300/month)

If COVID taught us one thing, it's that access to data from anywhere is critical. And if ransomware taught us another, it's that backups must be unreachable by attackers. Invest in a cloud backup solution that stores encrypted copies of your PMS database, imaging files, and documents in a location that ransomware can't touch. Test monthly.

2. Business-Grade Internet with Cellular Failover ($150-250/month)

Cloud PMS, VoIP phones, telehealth, online scheduling. Everything depends on internet connectivity. A consumer internet connection with no redundancy is a single point of failure. Invest in business-class internet with a cellular failover connection that activates automatically during outages.

3. Endpoint Detection and Response ($5-15/user/month)

Basic antivirus isn't sufficient anymore. EDR (Endpoint Detection and Response) platforms monitor for suspicious behavior, detect ransomware in progress, and can isolate compromised machines before the attack spreads. Products like SentinelOne, CrowdStrike, and Sophos Intercept X provide protection that traditional antivirus can't match.

4. Security Awareness Training ($300-1,000/year)

Phishing attacks are up 600% since the pandemic started. Your staff is the last line of defense. Invest in a platform that provides regular training and simulated phishing campaigns. KnowBe4, Proofpoint, and Ninjio are all viable options for small practices. The ROI is immediate: one prevented phishing attack pays for years of training.

5. Secure Remote Access Infrastructure ($50-200/month)

Remote work isn't going away. Whether it's the practice owner checking schedules from home, billing staff working remotely, or on-call access for emergencies, secure remote access is now a permanent requirement. Invest in a proper VPN or zero-trust remote access solution with mandatory 2FA.

The Math

Total investment: roughly $500-1,200/month for a typical practice. Annual cost: $6,000-14,000.

Compare that to:

  • Average ransomware recovery cost: $84,000-178,000
  • Average practice downtime from a cyberattack: 16 days
  • HIPAA violation penalty: $100-50,000 per violation
  • Patient trust lost: incalculable

The pandemic proved that technology resilience isn't optional. These five investments build that resilience. Make them before the next disruption, not during it.