RWK IT Services

RWK IT Services We provide managed IT services for companies with 10-300 computers.

04/25/2026

Every organization has a disaster recovery plan.​

​Some are just… less documented than others.​

“We’ll figure it out.”​

​In municipal environments, that usually means:​
Calling vendors ​
Trying to piece systems back together ​
Departments working around each other ​
Leadership asking for updates ​
No clear timeline ​

​The same thing happens in most organizations when recovery hasn’t been
planned or tested.​

That’s not a technology issue.​

​It's a planning and control issue.

04/23/2026

Most municipalities can answer this question:​
“Do we have backups?”​

Fewer can answer:​
“How long would it take us to recover?”​

​And almost no one has a clear answer to:​
“What happens to operations while we’re down?”​

In municipal environments, that quickly becomes:​
A public safety issue ​
A resident service issue ​
A payroll and finance issue ​
A leadership issue ​

The same is true in any organization that depends on systems to operate day to day.​

The risk isn’t whether data exists.​

It’s whether the organization can continue operating during recovery.​

​Backups don’t solve that.​

Recovery planning does.​

We wrote a short article this week on why backups and recovery are not the same thing, and why that gap matters more than most organizations realize.​
https://rwksolvesit.com/2026/04/20/backup-disaster-recovery-not-enough/

04/21/2026

We’re fine… we have backups.”​
That’s what most organizations say.​
Until they actually need them.​
Because the problem usually isn’t:​
whether backups exist.​

​It’s:​
how long recovery takes ​
what breaks during restore ​
what systems come back first ​
how the organization operates in the meantime ​

​Backups don’t keep you running.​
Recovery does.​

​We wrote a short article explaining why backup and disaster recovery planning matter more than most organizations realize.​

Read it here: https://rwksolvesit.com/2026/04/20/backup-disaster-recovery-not-enough/

“We’re fine… we have backups.”​​That’s what most organizations say.​Until they actually need them.​​Backups don’t fail w...
04/18/2026

“We’re fine… we have backups.”​

That’s what most organizations say.​

Until they actually need them.​

​Backups don’t fail when they’re running.​

They fail when you try to restore.

04/15/2026

AI doesn’t create most data risk.​
It exposes the access that already exists.​

​AI tools like Microsoft Copilot can only find information that users already have permission to access.​

In many organizations, Microsoft 365 permissions have never been formally reviewed after the initial setup. Access gets added over time, but rarely removed.​

​That means AI may be able to surface:​
Salary information ​
HR files ​
Contracts ​
Financial documents ​
Sensitive emails ​
Budget discussions ​

​Not because AI is doing anything wrong, but because the permissions already allowed it.​

AI is not just a technology project anymore.​

​It’s a data access, governance, and leadership issue.​

We wrote a short article explaining why organizations should review Microsoft 365 permissions and data access before rolling out AI tools like Copilot.​

​You can read it here: https://rwksolvesit.axionthemes.com/2026/03/31/ai-microsoft-365-permissions-risk/​

04/11/2026

The first 24 hours after a cyber incident determine the outcome.​

Not the firewall.​
Not the antivirus.​
Not the backup software.​

​The outcome is usually determined by:​
Whether there is an incident response plan ​
Whether roles and responsibilities are defined ​
Whether backups are tested ​
Whether leadership knows who to call ​
Whether vendors respond quickly ​
Whether cyber insurance requirements are followed ​
Whether communication is clear ​

​Slow response turns a bad incident into a disaster.​

​Fast, structured response turns a bad incident into a disruption.​

That difference is almost always planning, not technology.

04/09/2026

Your risk includes your vendors.​

If a vendor has access to your network, systems, or data, they are part of your risk.​

We’re seeing more incidents involving:​
Software vendors ​
Payroll providers ​
HVAC vendors ​
IT vendors ​
Cloud applications ​
Third-party support companies ​

But when we ask organizations for a list of vendors with access to their systems, many don’t have one.​

You can’t manage risk you can’t see.​

Vendor risk is now part of cybersecurity, compliance, and cyber insurance requirements.​

Especially in organizations where operations, public services, or financial systems
depend on third-party vendors.​


04/08/2026

When systems go down, it becomes:​
• A payroll problem​
• A public safety problem​
• A resident service problem​
• A finance problem​
• A board problem​
• A leadership problem​

That’s why IT is no longer just support.​

​IT is now:​
• Risk management​
• Operational continuity​
• Compliance​
• Public trust​

​But many organizations are still structured like IT is just helpdesk.​

That’s where the gaps start to show.​

​We wrote a short article explaining why this shift is happening and what municipal leaders should be paying attention to, especially as cyber insurance requirements, Microsoft 365 risk, and operational expectations continue to increase.​

Read it here → https://rwksolvesit.com/2026/03/30/when-systems-go-down-its-no-longer-an-it-problem-its-a-leadership-problem/​

04/04/2026

Most Microsoft 365 environments we review have: ​

• Too many global admins ​
• Everyone has access to everything ​
• Files shared with “Anyone with the link” ​
• Former employees still have access ​
• No regular access reviews ​

Most breaches don’t start with sophisticated attacks. ​

They start with: ​

• Compromised accounts ​
• Over-permissioned users ​
• Shared files ​
• Email access ​

​Access risk builds slowly, and quietly, over time.

04/02/2026

We review Microsoft 365 environments regularly, and over-
permissioned access is one of the most common risks we see.​

​Most of the time, it’s not intentional , it just happens over time as
people change roles, departments, and responsibilities.​

​Access control isn’t a one-time setup. It needs to be reviewed
regularly.

Address

9645 Lincolnway Lane, Suite 101
Frankfort, IL
60423

Opening Hours

Monday 8:30am - 5pm
Tuesday 8:30am - 5pm
Wednesday 8:30am - 5pm
Thursday 8:30am - 5pm
Friday 8:30am - 5pm

Telephone

+13125503883

Website

Alerts

Be the first to know and let us send you an email when RWK IT Services posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Shortcuts

Share

Category