What managed IT services should include

6 min read · Updated February 06, 2026

A practical checklist of what “managed IT” should cover — and what to ask before you sign.

What “managed” should actually mean

Managed IT should be proactive: monitoring, patching, backups, and security baselines — not just answering tickets.

If it’s not documented and measured, it’s not truly managed.

• Monitoring + alerting for endpoints, servers, networks, and backups
• Patch management with clear maintenance windows
• Security basics: MFA, device hardening, EDR/AV, email protection
• Backups + restore testing with retention you can explain

Questions to ask any MSP

Use these questions to quickly separate “IT help” from a real managed program.

• What’s included vs. billed separately?
• How do you document networks and changes?
• Do you provide quarterly reviews and a roadmap?
• How do you handle admin credentials and offboarding?

Red flags

These aren’t always deal-breakers, but they should trigger a deeper conversation.

• No written onboarding process
• No ticket metrics or response targets
• Backups are “set and forget” with no test restores
• They won’t share diagrams, configs, or inventory

Want help applying this? Email info@1-1solutions.com with your user count, locations, and current platforms.

← Back to Blog