"Managed IT" is one of those terms that means everything and nothing at the same time. It shows up on websites ranging from a one-person shop who takes calls when things break to companies running 24/7 security operations centers with hundreds of engineers. The label doesn't tell you much. What's behind it tells you everything.
If you're evaluating IT providers — or wondering what you're actually getting from your current one — here's a framework for understanding what managed IT actually involves.
The Break/Fix Model (What Managed IT Is Replacing)
Before the managed services model became common, the dominant approach to small business IT was break/fix: something breaks, you call someone, they fix it, you pay an hourly rate or a flat fee per visit.
Break/fix still exists. Some businesses use it intentionally for genuinely occasional needs. Most businesses that are relying on it for primary IT support are doing so because they haven't thought carefully about the alternative — and they're absorbing a lot of hidden cost in downtime and reactive scrambling that they're not counting.
The core problem with break/fix is the incentive misalignment: your IT person gets paid when things break. Managed IT flips that — you pay a fixed monthly rate, and your provider's incentive is to prevent problems because more problems mean more work for the same revenue.
What the Term "Managed" Actually Implies
A legitimate managed IT service includes, at minimum, three things:
Proactive monitoring and maintenance. Your systems are being watched continuously — not just when you call. Disk health, backup status, service failures, patch compliance, performance metrics. Problems get identified and resolved before they become outages. This is the core of the "managed" part — it's not just reactive support, it's ongoing management of your environment.
A defined response commitment. You should know what happens when you submit a ticket. How long until someone acknowledges it? How long until it's resolved? These should be documented commitments — service level agreements — not optimistic estimates. Under 15 minutes for initial response is a reasonable standard for a business-grade MSP.
Fixed, predictable pricing. Per user per month, or per device per month — structured so you know your IT cost in advance and aren't getting surprised by hourly bills when something complex happens. The fixed rate also creates the right incentive structure: your provider benefits from resolving things efficiently, not from billing more hours.
What "Managed IT" Often Doesn't Include (But Should)
Here's where the differentiation matters. Many managed IT providers offer the basics above but are light on security — because security tools cost money, require expertise, and create work when they alert. In a market where price competition is heavy, security sometimes gets stripped out.
A managed IT contract for a business that handles customer data, has compliance obligations, or carries cyber insurance should include:
- Endpoint detection and response — not just antivirus. Behavioral detection that can catch threats that bypass signature-based tools.
- Email security — a dedicated filtering layer beyond what Microsoft or Google provide natively.
- Backup with tested restores — including for Microsoft 365 and Google Workspace data, which are not automatically backed up by the platforms.
- Dark web monitoring — alerts when your credentials appear in breach databases before an attacker uses them.
- MFA enforcement — not just available, actually configured and enforced.
If these things aren't in your current contract, ask specifically whether they're available and what they cost to add. Some providers offer security tools as add-ons. Some include them. Some don't offer them at all.
The Questions Worth Asking
When evaluating a managed IT provider — or auditing your current one — a few direct questions cut through the marketing:
- What is your documented response time SLA, and what are the consequences if you miss it?
- Is EDR included, or is it antivirus only? What product?
- Does the contract include Microsoft 365 / Google Workspace backup? What product and how often?
- How do you handle patch management? What's your schedule for critical security patches?
- What does your onboarding process look like? Do you document our environment?
- What's your process when an employee leaves — how quickly can you handle account deprovisioning?
A provider who hesitates on these or gives vague answers is telling you something. A provider who answers them specifically and in writing is worth talking to further.
What It Should Cost
Managed IT pricing varies significantly by region, scope, and provider maturity. As a rough benchmark for businesses with 10–100 employees: expect $100–200 per user per month for a fully managed service that includes security tooling. Lower than that and you're likely getting a lighter service. Higher without obvious justification deserves scrutiny.
The calculation to run: what is downtime worth to your business? If one day of complete IT failure costs your business more than several months of managed IT fees, the math is fairly clear. Most businesses that have run the comparison find managed IT cheaper than the reactive alternative once they count everything.
If you want a specific picture of what managed IT looks like for your environment and your employee count, we're happy to have that conversation. No pressure, no obligation — just an honest assessment.