Compare providers on ownership, not slogans

Choosing a managed IT provider is not only a technology decision. It is an operating decision. The right partner should help employees get work done, keep systems documented, reduce avoidable risk, and give leadership a clear view of what needs attention.

This checklist gives business owners, office managers, operations leaders, and internal IT teams a practical way to compare providers before signing an agreement.

Service coverage

Start with the basic question: what does the provider actually own?

Ask each provider to define responsibility for:

• Employee help desk support
• Workstation setup and troubleshooting
• Microsoft 365 or Google Workspace administration
• Endpoint management and patching
• Email security and MFA
• Firewall, VPN, WiFi, and switch support
• Backup monitoring and restore testing
• Vendor coordination for internet, phones, printers, and business software
• On-site support for local offices
• Project work and after-hours work

If a provider says "we handle IT" but cannot explain the boundary, the agreement will be hard to manage.

Support process

The support process matters more than a promise of fast service. You need to know how a request moves from intake to resolution.

Ask:

• How do users submit requests?
• Who triages tickets?
• What happens when a ticket is urgent?
• How are recurring issues escalated?
• How are user-impacting changes communicated?
• What happens when remote support is not enough?
• Are on-site visits available in the city where your office operates?

For companies in the Seattle and Charlotte service areas, local support matters when a workstation, network room, cabling issue, printer, firewall, or physical device needs hands-on work.

Cybersecurity ownership

Cybersecurity should not be treated as a separate afterthought. A managed IT provider should be able to explain how daily support, account administration, endpoint management, and network operations reduce risk.

Compare providers on:

• MFA and conditional access configuration
• Email filtering and phishing protection
• Endpoint protection and patching
• Firewall and VPN management
• Administrative account controls
• Backup strategy and ransomware recovery planning
• Security monitoring and alert response
• Employee onboarding and offboarding
• Documentation and evidence for compliance requests

Ask what is included in the base service and what requires a separate security package.

Cloud and application administration

Most business IT work now lives in cloud systems. If your provider only fixes computers but does not manage the systems employees use every day, you may still have operational gaps.

Ask about support for:

• Microsoft 365 users, groups, licensing, Exchange, SharePoint, Teams, and security
• Azure identity, access policies, and cloud resources
• AWS infrastructure or vendor coordination where applicable
• Backup for cloud data
• SaaS application access and user lifecycle processes
• Role-based access for finance, legal, healthcare, construction, and professional services teams

The right provider should be able to connect cloud administration to employee support and security outcomes.

Documentation and offboarding

Documentation protects your business. It reduces support delays, makes projects easier, and prevents lock-in.

Ask providers how they document:

• Network diagrams
• Admin accounts and delegated access
• Firewall and WiFi configuration
• Vendor contacts
• Backup jobs and restore procedures
• Microsoft 365 tenant settings
• Device inventory
• Standard operating procedures

Also ask how documentation is returned if you leave. A provider that refuses to document or hand off basic information is creating business risk.

Contract review

Review the agreement carefully before signing.

Look for:

• Clear included services
• Clear excluded services
• Response and escalation language
• On-site support terms
• Project billing terms
• Security tool ownership
• Data ownership
• Term length and cancellation process
• Offboarding obligations

Avoid agreements where the provider controls the tools, passwords, and documentation but gives you no clear exit path.

Decision scorecard

Score each provider from 1 to 5 in these areas:

• Help desk process
• Security ownership
• Cloud administration
• Local on-site support
• Backup and recovery
• Documentation quality
• Project capability
• Industry fit
• Contract clarity
• Communication style

The highest score is not always the cheapest quote. It is the provider whose scope, process, and accountability best match how your business works.

Questions that reveal fit

After the first conversation, ask a few scenario-based questions. These are better than broad promises.

Ask how the provider would handle:

• A new employee starting Monday with no laptop ready.
• A mailbox compromise or suspicious forwarding rule.
• A conference room that fails before an executive meeting.
• A firewall outage at the start of the business day.
• A vendor blaming the network for an application issue.
• A departing employee with access to shared files and SaaS tools.
• A failed backup restore test.
• An office move with cabling, internet, WiFi, and phones.

The answers should be concrete. You should hear who owns the issue, what gets checked first, how communication works, and what documentation is updated afterward.

When to use this checklist

Use this checklist before a contract renewal, after repeated support frustration, before opening a second location, before a compliance review, or when the business has outgrown informal IT help. It is also useful when comparing a local provider against a remote-only help desk, because the questions separate ticket handling from ownership of the full environment.

Bring the checklist into provider conversations and ask for examples of how the process works in practice. A strong provider should be comfortable explaining scope, exclusions, escalation, documentation, tool ownership, and offboarding without turning the conversation into a sales script.

What to avoid

Avoid choosing a provider solely because the proposal is short, the price is low, or the first conversation sounded confident. A good managed IT relationship needs repeatable process, clear boundaries, and enough documentation to protect the business if staff or providers change.

Next step

Use this checklist before requesting a proposal or during a second conversation with a provider. If you want help reviewing your current support model, BCT can walk through your environment and identify the gaps that should be addressed first.

Useful next pages:

• IT service pricing and budget planning
• Business IT help desk in Charlotte
• Business IT help desk in Seattle
• Contact BCT