There is a lot of confusion about managed services, and what a managed services provider (MSP) does for your business. If you’re already over this learning curve, your next question is probably, “How do I trust an MSP?”
It’s a double-edged sword. Your current IT environment is clearly not meeting your business needs if you’re open to hearing a managed services sales pitch. Despite this pain point, though, you don’t know whether a potential MSP is trustworthy. We know it is intimidating to allow an outside party into your IT, which—in an increasingly remote world—could be the core of your business.
Thankfully, there are signs you can look for to determine whether you’ve found a trustworthy MSP, and we are here to walk you through them.
The Presales Process
Before you even agree to work with a managed services provider, there are signs to look for in the presales process. In initial meetings with a potential MSP, note how thoroughly they answer your questions. Are they giving detailed responses to ease your concerns, or are they dodging your questions and providing vague answers?
You should also pay attention to the direction of your conversations. Any presales interview should be a combination of both business and technical discussions. Do the questions asked by the provider reflect the desire to thoroughly understand your business needs? How many times do they need to come back to get “one more piece of information” from you? How involved do they want to be with your business?
The last presales sign is the length of time it takes a potential MSP to get you a proposal. Is it a couple of days, or is it weeks? A few days is acceptable. A few weeks is a red flag.
It’s reasonable to assume an MSP that leaves you with more questions than answers will also leave you in the dark once you’ve entered an agreement. If it feels like they’re simply following a generic guidebook on “how to sell managed services,” for example, and they’re not actually addressing your specific concerns, it’s wise to look elsewhere.
Of course, it’s also important to remember a managed services provider that passes the presale vet is not guaranteed to be a good fit for you. Before signing on the dotted line, you’re going to want to do a bit more digging, and it starts by reviewing the contract closely.
Once you’ve read through your potential MSP’s proposal and have reviewed the Managed Services Agreement, you should make sure you actually understand the terms. If you are left confused, it’s a red flag. If your potential MSP is unable to explain it to you, it’s an even bigger red flag. A trustworthy provider will distill their services into clear concepts that someone with less technical know-how can understand.
After reading the MSP sales pitch and associated contract, there are a few questions you should ask. Do you know what you’re getting? Do you know what you’re not? Do they provide the ability to customize services to fit your business? A provider with a “one size fits all” agreement is focused on their payday, not customer service.
It’s also worth noting that a provider with confidence in their services will not lock you into a long-term contract without some simple exit clauses. If you are unable to quit your contract during its term, or without substantial penalties, they might not be a provider you can trust. For example, PEI has a 30-day cancellation notice with no fees. Your contract should be equitably written with a balance of protections for both you and the provider.
Their Service Team
Part of your vetting process should include understanding the types of talent that will be working for your company. How many technical people will be working for you? Do they provide a champion that’s invested in being your primary point of contact? Do they have an efficient way to escalate complex issues to senior staff? You deserve to know who will be working with your company and what their processes are. This understanding will help build a level of trust between you and your managed services provider.
Customer service is key in developing trust, and it should be emphasized from the moment you first hear the provider’s managed services sales pitch. If the provider has long-term employees, they probably have a good sense about quality service. If your provider outsources part or all of their engineering talent, you will have to decide how comfortable you are with another outside party working on your systems. Ask your provider who you will be working with, their technical qualifications, years in the industry, and time with the organization. If those you’re going to be working with are the types of people you would hire, consider it a green flag. You need to trust your provider as a whole, which includes trusting them on an employee level.
If a provider has a lot of employee turnover, or if individuals don’t have a breadth of technical skills, you can be certain you’ll be bounced around, and issues will take a while to be resolved. This will only leave you questioning your trust in your MSP.
Tools and Documentation
Every managed services sales pitch should include a comprehensive overview of all the tools and documentation that your company will gain access to over the course of the contract. To confirm the specifics, ask your potential provider what these might include. You want to know your MSP is reliable and their processes will work to support your business. Do they provide a couple of ways to open a support ticket? Is there a portal or platform that allows you to see your open tickets and their status? Does the provider use a management platform that addresses incidents, proactive services, and automated repairs and patching? A trustworthy provider will document their work and will not close tickets without a successful resolution.
A quality organization will also help your business with projects and may offer vCIO services. They’ll have a team that specializes in architecture, design, and integration, and this department will work closely with the service and support team.
A trusted MSP should have a periodic process for a high-level review of your organization and the services that have been provided during that period, as well. A good MSP will also point out services you are paying for but not using. This reporting may take place in the form of a Quarterly Business Review.
Finally, an MSP should offer an avenue for feedback. Your potential MSP should poll for satisfaction and make it easy for clients to escalate concerns. By listening to customer feedback and establishing lines of communication with clients, reputable MSPs demonstrate their commitment to those they serve.
How can you trust a provider that does not prioritize your organization’s security? You can’t.
With the number of cyber attacks on the rise, your new service provider must have security at the top of their list, making it a core component of the MSP sales pitch. You need to be certain the tools and resources they use to connect to your organization are not going to serve as a conduit for an attack.
Confirm your potential provider has cyber insurance and can indemnify you should a breach come through their organization. This extra step to protect you and your business marks a trustworthy MSP. Any trustworthy provider is also going to have incident response plans to assist you should a cyber event arise, regardless of its origin.
With the prevalence of cyber events, almost every legitimate service provider has helped customers through difficult times. However, any provider that has already been a conduit for an attack on their customers needs to be scrutinized. It likely means they haven’t taken their own security seriously and have failed to invest in resources to secure their environment. How can you trust a provider to protect your IT environment if they cannot protect their own?
Aside from trusting an MSP to protect your business from cyber attacks, you will also need to trust them with your most important data. How can you trust your service provider with an admin password to your most important systems? How can you be sure your new service provider isn’t going to expose your sensitive information to the wrong people?
Take the time to understand how a potential provider will secure your passwords and data. The more you can learn about an MSP’s security practices during their managed services sales pitch, the more secure you will feel with them accessing your IT environment.
Ask your provider for specifics on their tools and policies. If the provider cannot clearly explain their security and demonstrate how it works, you should be hesitant to trust them with your IT. They should have formal policies that address what data they have access to, who has access to it, and how it’s secured. You should always know who can see your most important data.
Finally, ask your potential provider if their employees sign NDAs. If they do not, ask if they are willing to sign an NDA before entering into a business relationship with you. This added protection will demonstrate an MSP’s commitment to protecting your information and ensuring you feel secure in your IT environment.
Do your homework on a potential service provider, no matter how detailed their MSP sales pitch is. How long have they been in business? Can they provide references? How long do customers stay with them? If they have a lot of client turnover, it’s a telltale sign that their services are poor and they cannot be trusted.
Most of this research can be done online and through social media. Organizations unhappy with their MSP do not tend to be shy with their criticisms. Take the time to do your research. If a number of customers leave poor reviews—or you cannot find any reviews for your provider—consider it a red flag.
A good service provider with happy customers is going to have plenty to say about their successful mission. In the presales interview, look for a provider that stands behind the work they do.
Trust Is a Two-Way Street
We cannot promise that any managed services provider who meets the criteria above will be trustworthy, but if a potential provider does not meet these requirements, it’s a sign to run for the hills.
A good MSP will put forth the effort to make you feel comfortable bringing another party into your business and your IT environment. Your MSP should work to build trust, not just sell themselves to you with a convoluted managed services sales pitch.
Trust is a two-way street, so you and your MSP will need to work together to establish a relationship based on trust. Without it, you will not feel comfortable granting an outside organization access to your most vulnerable data. If you need to know what it means to work with a trustworthy MSP, PEI meets all the criteria in this article. Contact us today to get started!