What an MSP actually does, in plain English

If you have ever asked an MSP “what do you actually do for the monthly fee” and gotten a fog of jargon back, you are not the problem. The industry talks to itself in shorthand and forgets that the people writing the checks live in a different world. So here is the answer in operator language, written by someone who runs an MSP, for someone who runs a coffee shop or a fleet or a law firm.

A managed IT contract pays for someone to take responsibility for your technology so you do not have to. That responsibility breaks into roughly six categories.

1. The “the printer is not working” job

This is the helpdesk part. A staff person hits a problem (their email won’t send, the printer prints sideways, the spreadsheet won’t open the file the bookkeeper just sent) and they call. A real human picks up. The human fixes the problem, usually within minutes, usually remotely. If it cannot be fixed remotely, the human shows up at your office.

Most managed IT contracts include unlimited helpdesk during business hours. The fact that this is “unlimited” matters. Without it, the person doing the work will be incentivized to spend less time on each issue. With it, the incentive is to fix the issue completely so it does not come back.

2. The “make sure things don’t break” job

This is the proactive part. We monitor every server, every workstation, every firewall, every backup, every internet connection in your environment. When something is about to fail, we usually know about it before you do. We apply security patches and feature updates on a tested schedule, not whenever Microsoft decides to push them. We restart services that hang. We replace hard drives that are about to fail before they actually fail.

This is the part of managed IT you mostly do not see. It is also the part that produces the biggest difference between a well-run shop and a poorly-run shop. If your IT provider only shows up when something is broken, that is break-fix. That is not managed IT.

3. The “make sure you don’t get hacked” job

This is the security part. It includes the obvious stuff (antivirus, firewall, email filtering) and a lot of less-obvious stuff. Multi-factor authentication enforced on every account that touches sensitive data. Endpoint encryption so a stolen laptop is not also a data breach. Phishing simulation so your team learns to spot the bait. Modern endpoint detection (EDR) that catches the post-exploitation behavior antivirus from 2010 misses entirely. Identity hardening on Microsoft 365 and Google Workspace, because the most common attack on small businesses is now an account takeover, not a virus on a workstation.

A modern MSP rolls all of this into the monthly fee. If your existing provider is still selling you “antivirus” as a separate product, that is a 2010 model in 2026.

4. The “fix the dumb thing your last vendor did” job

Every new client we take on has at least one piece of infrastructure that is set up wrong. Sometimes it is the network we talked about in the coffee shop network post — a flat network with no segmentation. Sometimes it is a Microsoft 365 tenant where the previous admin enabled MFA but never enforced it. Sometimes it is a backup that has been “running” for two years but has never actually been tested. Sometimes it is a server in a closet running an end-of-life version of Windows Server 2012, which Microsoft stopped supporting in 2023.

The first quarter of a managed IT engagement is mostly cleanup. The MSP is finding the things the previous setup got wrong and fixing them. This is unglamorous, time-consuming, and the most valuable part of the relationship. It is also why the first quarterly business review is the most important one — it is when you find out what your environment actually looks like, as opposed to what you thought it looked like.

5. The “talk to the vendors so you don’t have to” job

Your internet provider is down. Your phone system vendor is unresponsive. Your accounting software is asking you to upgrade and you have no idea what to click. Your printer leasing company sent a bill that does not match the contract.

You should not be on hold with GCI for an hour. You should not be parsing a phone-system contract from 2019 to figure out whether you owe an extra $200 a month. That is what your MSP is for. Most managed contracts include vendor management, which means we sit on hold instead of you, and we read the contract instead of you, and we tell you in plain English what is actually going on.

6. The “tell us what’s coming” job

This is the strategy part. Once a quarter we sit down (in person if you are local, video otherwise) and look at what is coming up over the next 90 to 365 days. Aging hardware that needs replacement before it dies in the middle of tax season. License renewals that are about to auto-bill at a higher rate. Security gaps we should close before something forces us to. Capacity planning for growth. Budget recommendations.

The point of this is to get IT off your plate of things to think about. You should never be surprised by an IT problem you could have seen coming. The quarterly review is how that happens.

What it costs

Most managed IT contracts in Anchorage land somewhere between $100 and $250 per device per month, depending on what is included and how complex the environment is. A 12-person professional services firm with all-cloud workflows is on the lower end. A 30-person trucking operation with on-premises servers, fleet phones, and warehouse networking is on the higher end. Anyone who quotes you a number sight-unseen is making it up. Most reputable MSPs will give you a real range after a 30-minute conversation.

If you want a clear-eyed look at what an MSP would actually do for your business, the free 30-minute IT Health Check is the right starting point. We are not going to put you in a CRM and remarket you for a year. We will look at what you have, tell you what we would change, and write it down for you to keep. Whether you hire us is a separate conversation.