Questions you should be asking yourself

Q: Do you meet with your IT provider on a regular basis? 

Why we are Asking: 

Your IT provider should be an integral part of your business operations. A regular scheduled meeting should include IT budgeting, strategic planning, and risks in your environment. Though it sounds counterproductive, it should NOT be very technical in nature, but concentrate on the business side of your IT systems. 


Q: Do you receive regular status reports on your IT monitoring and management? 

Why we are Asking: 

It’s important to verify the services you are paying for are being done. Weekly reports should list your servers and workstations, with check status(pass/fail). This is especially important for verifying if your computer backups are completing successfully without errors. A monthly executive report should be emailed grading your systems. 


Q: Do you receive or are offered regular training on IT security for your staff? 

Why we are Asking: 

The number one entry point for malware is through web browsing and emails. Cyber criminals are always one step ahead of the protection. Companies have found training employees on suspicious emails and what to click and not click on is every bit as important as software protection. There are services that send fake phishing emails to employees, which allows the employer to identify staff who need more security training and are a higher risk to the company. 


Q: Do you receive a response to your IT issues that you feel is acceptable and doesn’t affect business operations? 

Why we are Asking: 

The number one expense for most companies is payroll. An employee who is not productive due to a computer issue or slowness, costs the company money, and sometimes a customer. You should be receiving a response within 30 minutes of any IT requests from your provider. 


Q: Are your backups on-site and off-site with a minimum of 30-days retention? 

Why we are Asking: 

Everyone has read or heard about companies that have fallen victim to a ransomware attack. These attacks can cripple a company that doesn’t have secured backups. These backups should be encrypted both on-site and off-site, so are not vulnerable to crypto attacks. You also want a minimum of 30 days so you can recover files that have been deleted or mistakenly altered. 

Page Break 


Q: Does your IT provider tests your back up a minimum of once a month?  

Why we are Asking: 

As part of backup best practices, a test backup should be run monthly to confirm everything is working properly. The absolute worst time to find a backup problem is when you need a critical file, or your server has failed. 


Q: Do you have access to all your critical passwords without needed to contact your IT Provider? 

Why we are Asking: 

Hopefully, nothing bad happens to your IT person/company. One of the most serious risks a company can be exposed to is not having access to critical passwords. Companies have been held hostage by IT providers who won’t release this information, causing delays in transition.


If you are NOT asking yourself these questions - you probably should.


Call Tony at (716) 815-6821 for more information.

Follow Us
  • Facebook
  • Twitter
  • Instagram
  • LinkedIn

©2021 ASG 365, LLC. All Rights Reserved.

Privacy Policy

Contact Us

ASG 365, LLC

1763 Baseline Rd

Grand Island, NY 14072

Tel: 716-775-2211

Office Hours: Monday-Friday 8:30-5:00