A project manager from a Salt Lake-based commercial builder asked me the other day, “Austin, what are the biggest mistakes you see construction companies making when it comes to IT and cybersecurity?”
Buckle up. Because in this town—where job sites are scattered across the Wasatch Front and deadlines feel like jackhammers at your back—these mistakes aren't just common. They’re costly.
Mistake #1: Treating IT Like It’s a Punch List Item
I get it. You’ve got RFI logs to update, subcontractors to wrangle, and a superintendent blowing up your phone because the Procore login stopped working on the site trailer Wi-Fi. So it’s easy to treat IT like an afterthought—something you deal with once it breaks.
But here’s the hard truth: if you’re waiting until there’s a breach, outage, or ransomware scare to take IT seriously, you’re already behind. One construction firm in Utah recently lost three weeks of productivity across five active projects because a phishing email took down their entire server. They didn’t have a proper backup, and they had no idea the vulnerability existed. That’s the price of being reactive.
Mistake #2: Relying on Free or Consumer-Grade Tools
Let me ask you this: Would you build a medical center in South Jordan using tools from a big box retailer? Of course not. So why are some firms running $20 million job sites using free antivirus software, public cloud storage, or routers meant for home use?
Free software might save a few bucks short term, but when it opens the door to a data breach, a $200 savings can turn into a $200,000 disaster. Especially when you’re managing BIM models, proprietary bid data, and subcontractor payroll.
If you wouldn’t trust your framing to the lowest bidder, don’t trust your IT security to freeware.
Mistake #3: Underestimating Downtime
Most GCs I talk to think, "Yeah, if something breaks, we’ll deal with it. A couple hours won’t kill us."
Wrong.
When your VPN crashes or your document management system goes down mid-RFI, you’re not just losing time. You’re risking contract penalties, delaying inspections, and holding up everyone from the crane operator to the drywall crew. In this industry, delays ripple. And in Salt Lake City, where the construction boom is fierce, there’s always another contractor ready to take your place.
Reliable, proactively monitored IT systems are the backbone of your schedule. Without them? You’re flying blind.
Mistake #4: No Long-Term Cybersecurity Strategy
Here’s what I see way too often: construction firms buying whatever the last IT guy recommended five years ago and never updating it.
The problem? Cyber threats don’t stand still. Last year’s firewall won’t stop this year’s AI-powered phishing campaign. Your mobile workforce is growing, your data's in the cloud, and compliance demands are tightening.
Without a long-term, regularly reviewed cybersecurity strategy—backed by industry-specific expertise—you’re hoping luck protects your business.
Hope isn’t a strategy.
So What’s the Solution?
Let me level with you:
- Stop treating IT like a one-off project. Start treating it like the critical infrastructure it is.
- Invest in tools designed for high-stakes construction. Not consumer gadgets.
- Take cybersecurity seriously. Like, "our payroll and bid data could be ransomed" serious.
- Partner with a local IT provider who understands Salt Lake construction—not just IT in general.
If you’re tired of duct-taping your IT together and hoping it holds, let’s talk. Schedule a quick, no-pressure 15-minute Discovery Call or grab a complimentary Cybersecurity Assessment tailored to construction firms in Utah.
You’re building Salt Lake. We’re here to make sure your IT doesn’t bring it down.
