The Hidden Cost of Waiting

Matt Goff • July 6, 2026

Share this article

The Hidden Cost of Waiting

A few weeks ago, I was asked to perform a technology assessment for a business.

As I walked through their office, nothing seemed out of place. People were working. Phones were ringing. Computers were doing what computers are supposed to do.

If you had asked anyone in the building how their technology was performing, I imagine most would have said, "Just fine."

Then I opened the server room.

The primary server had long since reached the point where I would have recommended replacing it.

The network equipment wasn't being managed, monitored, or maintained.

Their backup software wasn't successfully completing backups.

And the backup server… the device intended to save the business if something went wrong… was sitting in the very same room as the production server.

I stood there for a minute thinking about it.

If that room flooded...

If there was a fire...

If someone broke in...

If ransomware spread across the network...

There was a very real possibility that both the production environment and the backups would disappear together.

Here's the interesting part. None of this surprised the business.

They already knew. They knew the equipment was old.

They knew improvements needed to be made.

They simply weren't interested in spending the money right now.

And before anyone thinks this is going to become a lecture...

I understand.

Really, I do.

Every business has a limited budget, even mine.

Every dollar spent on technology is a dollar that can't be spent hiring another employee, purchasing inventory, expanding operations, or investing in marketing.Technology has to compete with every other priority in the business. That's reality. But over the years, I've noticed something. The businesses that struggle the most rarely make one terrible decision. Instead, they make dozens of reasonable decisions that all point in the same direction.

"We'll replace that next year."

"The server is still running."

"We've never had a problem before."

"The backups are probably fine."

"We'll deal with it when something breaks."

None of those decisions sound unreasonable by themselves.

Together, they create something that's easy to overlook.

Risk.

Technology has a way of accumulating risk quietly.

Unlike a leaking roof or a flat tire, most technology problems don't announce themselves.

A backup can fail for months without anyone noticing.

A server can continue running long after the manufacturer stops releasing security updates.

A firewall can quietly become outdated while still passing traffic every day.

Everything appears normal. Until the day it isn't.

One of my favorite sayings is this:

Technology rarely becomes expensive because it gets old. It becomes expensive because it fails at the worst possible moment.

I've never received a panicked phone call that began with,

"We finally decided to replace our server."

The calls usually sound more like this.

"The server won't turn on."

"Nobody can get into the system."

"We think we've been hit with ransomware."

"The backups aren't working."

At that point, the conversation changes.

We're no longer talking about planning.

We're talking about survival.

Unfortunately, those conversations are becoming more common across every industry. IBM's 2025 Cost of a Data Breach Report found that the average global cost of a data breach remains above $4.4 million, with business interruption, lost productivity, and recovery efforts making up a significant portion of that cost. Likewise, Sophos' ransomware research continues to show that recovering from ransomware often costs organizations well into seven figures—even before considering any ransom payment. Those are global averages that include organizations much larger than most of my clients, but they illustrate an important point: the hardware is rarely the most expensive part of an incident. The downtime is.

I don't share those numbers to scare anyone. I share them because they reinforce something I've seen firsthand. The most expensive server you'll ever buy is the one you have to replace during an emergency.

The most expensive backup is the one you discover doesn't work.

The most expensive cybersecurity plan is the one you start writing after an attack.

That's why I've never viewed proactive IT as "spending more money."

I view it as buying options. When your backups have been tested, you have options.

When your equipment is still supported, you have options.

When your network is monitored, you have options.

When you have a recovery plan, you have options.

Without those things, technology makes the decisions for you.

The server decides when you're replacing it.

The hard drive decides when you're closed for the day.

The ransomware decides when your employees stop working.

I'd much rather see a business owner make those decisions on a quiet Wednesday afternoon than at 7:30 on a Monday morning when fifty employees are standing around waiting to log in.

I don't believe every business needs the newest server.

I don't believe every office needs enterprise-grade hardware.

And I certainly don't believe technology should be replaced just because it's old.

But I do believe every business deserves a plan.

Because hope isn't a strategy. Preparation is.

If you own a business, I'll leave you with five questions.

  • Do you know your backups actually work, or do you hope they do?
  • If your primary server failed tomorrow, how long would it take to get everyone working again?
  • Is your network equipment still receiving security updates from the manufacturer?
  • Could you recover if ransomware encrypted every file on your server today?
  • Are you making technology decisions on your own schedule, or are you waiting for technology to make them for you?

Those questions have nothing to do with buying new equipment.

They have everything to do with protecting the business you've spent years building.

Recent Posts