Not all IT providers are created equal. Here are the ten critical questions you should ask any managed service provider before committing.
Signing with an IT provider is a significant commitment — most contracts run 12-36 months, and the cost of a bad relationship extends well beyond the contract term. The right questions before signing reveal far more than a polished sales presentation.
Here are the ten questions that separate capable providers from those who will frustrate you.
1. What is your ideal client?
A provider who says “anyone with computers” has no specialisation and no defined service model. The best MSPs have a clear sweet spot — a specific business size range and often particular industries they understand deeply.
The right answer sounds like: “We work best with professional services businesses in Melbourne with 15 to 80 staff. We have a lot of experience with law firms and accounting practices.”
If the answer is vague or all-encompassing, keep looking.
2. What is your response time commitment for critical issues, and is it in the contract?
“Fast response” means nothing. Ask for the specific SLA: what constitutes a P1 (critical) incident, and what is the contractual response time? What happens if they miss it?
The right answer includes specific numbers (15-30 minutes for critical), covers what “response” means (acknowledgement vs active work vs resolution), and confirms these are contractual commitments — not aspirational.
3. How many clients does each technician manage?
High technician-to-client ratios mean technicians are spread too thin to provide proactive service. Ask directly: how many clients are on your helpdesk roster, and how many tickets does each technician handle per day?
A quality MSP monitors these metrics and can answer confidently. If they cannot answer, the number is probably too high.
4. What security tools do you deploy as standard for every client?
The answer should include, at minimum: endpoint detection and response (EDR), MFA enforcement, email filtering, patch management, and backup monitoring. If the answer is “antivirus and a firewall”, their security stack is a decade behind.
Ask what tools specifically — not just categories. “We use Microsoft Defender for Endpoint as our EDR, Microsoft Defender for Office 365 for email security, and Acronis for backup” is a confident, specific answer.
5. Do you have a 24/7 helpdesk or business hours only?
For businesses with staff who work outside 9-5, or with any after-hours operations, this matters. Know exactly what coverage you are getting and what the out-of-hours process is.
6. Who will be my named account manager, and how often do we meet?
A reactive helpdesk without a named account manager means no one is thinking proactively about your IT. Ask: who is my single point of contact for strategic conversations? How often do we meet? What does a typical quarterly business review cover?
If they cannot describe a structured review process, you are getting a break-fix relationship with a monthly fee attached.
7. What is your onboarding process?
The first 90 days with a new IT provider reveal their operational maturity. Ask for a walkthrough of their onboarding: what do they document, what tools do they deploy, what do they assess, and what deliverables do you receive at the end of onboarding?
A vague answer (“we’ll get to know your systems”) versus a structured process (“we deploy our RMM agent, conduct a security assessment, document your environment, and present a 90-day remediation plan”) tells you a lot.
8. Can you provide three client references in businesses similar to mine?
Reputable providers have clients who will speak enthusiastically about them. Ask for references from businesses of similar size in your industry. When you speak to them, ask about response times, major incidents, and whether they feel their IT is improving over time.
A provider who hedges, offers to send a generic testimonial document, or cannot produce references promptly is telling you something.
9. What happens if we want to leave?
Ask directly about exit: what is the notice period, what documentation do you provide on exit, and who holds the credentials for our systems? A confident, transparent answer (“30 days notice, you own all your data and documentation, we provide a full handover package”) distinguishes professional operators from those who create dependencies to prevent clients from leaving.
10. What does your pricing include, and what is excluded?
All-inclusive pricing (a flat per-user monthly fee covering everything) aligns incentives — the provider is financially motivated to prevent problems. Per-hour or hybrid pricing models mean the provider earns more when things break.
Ask specifically: what does the monthly fee include? What would generate an additional charge? Common exclusions in less transparent contracts include after-hours support, project work, hardware procurement, and certain security tools.
The Right Provider Answers These Confidently
A quality MSP welcomes these questions — they demonstrate that you are a thoughtful buyer who will be a good client. CX IT Services is happy to answer all ten in detail. Book a Right Fit Call to have the conversation.
