Business IT Support: Why You Can No Longer Afford the “Ask a Friend” Approach

In an economy where 94% of Italian businesses depend on IT for daily operations (Anitec-Assinform data), an IT system outage is not an inconvenience — it is a business emergency. Yet, according to a Unioncamere survey, 45% of Italian SMEs do not have a structured IT support contract and rely on “call when it breaks” interventions or, worse, the proverbial friend-of-a-friend who “knows about computers”.

The result? Unpredictable response times, hidden costs, security risks, and lost productivity. A single day of IT downtime costs an average SME between €5,000 and €25,000 in lost productivity, depending on the sector (Gartner data). Multiply this by the 3–5 significant incidents a typical company experiences per year, and the bill adds up fast.

In this guide we explain how to structure your company’s IT support: from support tiers to SLAs, from helpdesk tools to the choice between in-house and outsourced support, through to security and monitoring best practices.

IT Support Tiers: L1, L2, L3

Tier 1 (L1) — First Contact and Basic Resolution

First-level support is the initial point of contact for any IT issue:

• Function: receive the request, log it in the ticketing system, initial diagnosis, resolution of standard issues
• Typical issues handled: password resets, Wi-Fi connection problems, email configuration on devices, standard software installation, printing issues, questions about business software usage
• Skills required: basic knowledge of operating systems (Windows, macOS), Office 365/Google Workspace, basic networking, excellent soft skills (patience, clear communication)
• Target resolution time: 15–30 minutes for standard issues
• Expected resolution rate: 60–70% of requests resolved at first level

Tier 2 (L2) — Specialist Technical Support

When L1 cannot resolve the issue, the ticket is escalated to second level:

• Function: in-depth diagnosis, resolution of complex problems, advanced configurations, server and network management
• Typical issues handled: complex software malfunctions, advanced network and connectivity problems, server configuration, backup management and recovery, data migration, performance issues
• Skills required: systems administration (Active Directory, Windows/Linux servers), advanced networking (firewalls, VPN, VLAN), databases, scripting, certifications (CompTIA, Microsoft, Cisco)
• Target resolution time: 2–8 hours for complex issues
• Expected resolution rate: 25–30% of total requests (those escalated from L1)

Tier 3 (L3) — Engineering and Development

Third level handles the most complex problems and project-level work:

• Function: software bug resolution, patch and workaround development, infrastructure design, security incident response
• Typical issues handled: bugs in custom applications, security vulnerabilities, design and implementation of new infrastructure, systems integration, disaster recovery
• Skills required: software development, cloud architecture, advanced cybersecurity, DevOps
• Resolution time: variable, from hours to weeks for architectural issues
• Intervention rate: 5–10% of total requests

SLAs: What They Are and How to Define Them

What Is an SLA

An SLA (Service Level Agreement) is a formal contract between the IT service provider and the client company that defines:

• Included services: what is covered and what is not
• Service levels: measurable quality metrics
• Response and resolution times: how quickly the provider must respond and resolve
• Availability: coverage hours (8×5, 12×5, 24×7)
• Escalation: procedures for handling critical issues
• Penalties: consequences for SLA non-compliance
• Reporting: frequency and content of performance reports

Key SLA Metrics

Ticket Priority Classification

Helpdesk Tools: Comparison for SMEs

The Best Platforms for SMEs

Freshdesk

The most popular choice for SMEs thanks to its generous free plan:

• Free plan: up to 10 agents, basic ticketing, knowledge base, email support
• Growth plan (€18/agent/month): automations, SLA management, reports, integrations
• Pro plan (€59/agent/month): round-robin routing, CSAT survey, custom reports, client portal
• Pros: intuitive interface, excellent quality-to-price ratio, good localisation
• Cons: advanced automations only on higher plans

Zendesk

The benchmark standard for customer service, also suitable for IT:

• Suite Team (€55/agent/month): ticketing, email, chat, social, knowledge base
• Suite Professional (€115/agent/month): SLAs, advanced analytics, community forum
• Pros: comprehensive features, vast app marketplace, excellent analytics
• Cons: expensive for small teams, learning curve

Odoo Helpdesk

Helpdesk module integrated into the Odoo ecosystem:

• Community (free): basic ticketing
• Enterprise (€24.90/user/month): SLAs, timesheets, knowledge base, customer portal, integration with all Odoo modules
• Pros: native integration with CRM, accounting, and project management; affordable; open-source
• Cons: fewer dedicated features compared with Freshdesk/Zendesk

GLPI + OCS Inventory

Open-source solution for IT asset management and helpdesk:

• Cost: free (open-source), hosting and customisation costs apply
• Features: ticketing, hardware/software inventory, knowledge base, SLA management
• Pros: completely free, excellent for IT asset management, customisable
• Cons: dated interface, requires technical expertise for installation and maintenance

Jira Service Management (Atlassian)

For tech-oriented companies with advanced ITSM needs:

• Free plan: up to 3 agents, basic ticketing
• Standard (€22/agent/month): SLAs, automations, knowledge base (Confluence), asset management
• Premium (€49/agent/month): advanced incident management, change management, postmortem
• Pros: excellent for technical teams, Jira Software integration, ITIL approach
• Cons: overkill for non-tech SMEs, complex interface for non-technical users

Outsourcing vs In-House: The Strategic Choice

In-House IT Support

Having a dedicated internal IT team:

• Annual cost: €35,000–€50,000 for an IT technician (gross salary), €50,000–€70,000 for a senior system administrator. Plus benefits, tools, and training: total budget €45,000–€90,000/year per person
• Pros: deep company knowledge, immediate availability, no external contractual constraints, data confidentiality
• Cons: fixed costs regardless of workload, skills limited to 1–2 people, continuity issues (holiday, illness, turnover), professional development at the company’s expense
• Ideal for: companies with 50+ workstations, complex IT needs, regulated sectors (healthcare, finance)

Outsourced IT Support (MSP)

Relying on an external Managed Service Provider:

• Annual cost: €200–€800/workstation/year for standard MSP contracts (for 30 workstations: €6,000–€24,000/year)
• Pros: predictable and proportional costs, team of specialists with diverse skills, extended coverage hours (up to 24×7), continuous technological updates, scalability
• Cons: less specific company knowledge (initially), response times dependent on contract, vendor lock-in risk
• Ideal for: SMEs with 10–50 workstations, companies without internal IT expertise, those who want predictable costs

Hybrid Model

The most common solution for structured SMEs: an internal IT point of contact (even part-time) who handles day-to-day operations, plus an external MSP for specialist support, projects, and out-of-hours coverage.

• Indicative cost: €25,000–€40,000/year (internal part-time/junior contact) + €5,000–€15,000/year (MSP contract)
• Pros: combines the advantages of both models
• Ideal for: SMEs with 20–100 workstations

Cost Per User: How Much to Budget

Recommended IT Budget for SMEs

According to Gartner, companies should invest between 3% and 8% of revenue in IT, depending on the sector:

Practical example: a professional services SME with €2 million in revenue should invest approximately €80,000–€120,000/year in IT, of which €20,000–€36,000 on support and assistance. This budget covers: MSP contract or part-time internal technician, helpdesk licences, monitoring tools, and basic user training.

Proactive Monitoring and IT Security

From Reactive to Proactive Support

The traditional IT support model is reactive: something breaks, you call the technician. The modern model is proactive: constant monitoring to prevent problems before they manifest.

Proactive monitoring tools for SMEs:

• RMM (Remote Monitoring and Management): software that continuously monitors servers, PCs, networks, and devices. Automatic alerts for anomalies (disk space running low, CPU at 100%, stopped services). E.g.: NinjaRMM, Datto RMM, ConnectWise Automate. Cost: €3–€8/device/month
• Network monitoring: monitoring of switches, routers, firewalls, access points. E.g.: PRTG (free up to 100 sensors), Zabbix (open-source), Nagios
• Backup monitoring: automatic verification that backups complete successfully every day. An unverified backup is as good as no backup
• Security monitoring: centralised antivirus (Bitdefender GravityZone, Sophos, ESET), EDR (Endpoint Detection and Response) for advanced threats, periodic vulnerability scanning

The 5 Most Common IT Threats for SMEs

1. Ransomware: 43% of Italian SMEs experienced a ransomware attempt in the past year. Average cost of a successful attack: €50,000–€200,000 including ransom, operational downtime, and recovery
2. Phishing: 91% of cyberattacks begin with a phishing email. User training is the most effective defence
3. Weak/reused passwords: 65% of users reuse the same password across multiple services. Implement MFA (Multi-Factor Authentication) everywhere
4. Unpatched software: 60% of exploited vulnerabilities had a patch available for months. Automate updates
5. Human error: accidental data deletion, sending confidential information to the wrong recipients, lost or stolen devices

Basic IT Security Plan for SMEs

Every SME should implement at minimum:

• Centralised antivirus/EDR on all devices (€200–€500/year for 30 workstations)
• Updated perimeter firewall (Fortinet, Sophos, pfSense). €500–€2,000 for hardware + configuration
• MFA on all critical services (email, CRM, remote access). Cost: often free (Google Authenticator, Microsoft Authenticator)
• 3-2-1 backup: 3 copies, 2 media, 1 off-site. Tested monthly. €100–€500/month for cloud backup
• Cybersecurity training for all employees: at least 2 sessions per year. €500–€2,000/year
• Documented security policy: passwords, BYOD, remote access, sensitive data handling
• Incident response plan: who to call, what to do, how to communicate in the event of an incident

Best Practices for Business IT Support

The 10 Golden Rules

1. Document everything: every configuration, every password (in a business password manager like 1Password Business or Bitwarden), every procedure. If the technician is off sick, someone else must be able to intervene
2. Standardise hardware: fewer different PC/printer models = fewer compatibility problems and simpler management
3. Always update: operating systems, software, network firmware. Automate where possible
4. Test backups: an untested backup is useless. Run a recovery test at least quarterly
5. Train users: the user is the first line of defence (and the primary cause of problems). Invest in continuous training
6. Monitor proactively: don’t wait for something to break. 24/7 monitoring with automatic alerts
7. Define clear SLAs: both with external suppliers and internally. “As soon as possible” is not an SLA
8. Manage the lifecycle: replace PCs every 4–5 years, servers every 5–7 years. Old hardware is unreliable and insecure
9. Centralise management: a single point of contact for all IT requests (helpdesk), not scattered emails to the technician
10. Plan for disaster recovery: how long can you afford to be down? Plan based on that time

UreTech: IT Support Services for SMEs

UreTech offers structured IT support services for SMEs, combining technical support, proactive monitoring, and strategic consultancy:

• Multichannel helpdesk: support via ticket, email, phone, and chat with guaranteed SLAs
• 24/7 proactive monitoring: RMM, network monitoring, backup verification
• Cybersecurity: managed antivirus, firewall management, vulnerability assessment, user training
• Infrastructure management: servers, networks, cloud, desktop management
• Strategic IT consultancy: IT budget planning, modernisation projects, cloud migration

Our plans are scalable and customisable to suit your company’s needs. Contact us for a free IT infrastructure assessment.

FAQ: Frequently Asked Questions About Business IT Support

How much does an IT support contract cost for an SME?

Costs vary based on the number of workstations and service level. For an SME with 20–30 workstations: a basic plan (reactive helpdesk, 8×5) costs €200–€400/workstation/year (€4,000–€12,000/year total); a standard plan (helpdesk + proactive monitoring + managed backup) costs €400–€600/workstation/year; a premium plan (all-inclusive + cybersecurity + consultancy) costs €600–€800/workstation/year. By comparison, a full-time internal IT technician costs €45,000–€65,000/year (employer cost).

What is an MSP and how does it work?

An MSP (Managed Service Provider) is a company that proactively manages the client’s IT infrastructure for a fixed monthly fee. Unlike “call when it breaks” (break-fix) support, the MSP continuously monitors systems, prevents problems, and resolves them before they impact users. The MSP model aligns interests: the fewer problems you have, the less work the MSP does, so they are incentivised to keep systems healthy.

What are SLAs and why are they important?

SLAs (Service Level Agreements) are contractual commitments to service quality, particularly around response and resolution times. They matter because they define clear expectations for both parties, provide measurable metrics for evaluating service quality, often include penalties for non-compliance (which incentivise the provider), and protect the business from excessive downtime.

How do I know if my current IT support is adequate?

Evaluate your current IT support on these dimensions: average response time to issues (acceptable: <4 hours for standard problems), frequency of recurring incidents (the same problem should not keep reappearing), system update status (Windows, antivirus, firmware up to date?), backup status (tested recently?), documentation (is there a hardware/software inventory? Are passwords managed securely?). If the answer to one or more of these questions is negative, it's time to better structure your support.

How can I reduce IT tickets in my company?

The most effective strategies for reducing ticket volume are: create an internal knowledge base (FAQs, how-to guides) where users can find answers independently (20–30% ticket reduction); regularly train users on business tools (15–20% reduction); standardise hardware and software (10–15% reduction in compatibility issues); implement proactive monitoring to prevent problems (25–35% incident reduction); and automate recurring requests (self-service password reset, automatic provisioning).

Is IT outsourcing safe for company data?

Yes, if the provider is reputable and the contract is well structured. Verify that: the provider holds security certifications (ideally ISO 27001), sign a GDPR-compliant DPA (Data Processing Agreement), clearly define who accesses what and how, the provider has privileged access management policies, and request references from clients in the same sector. A good MSP is often more secure than DIY: they have the expertise, tools, and procedures that an SME would struggle to replicate internally.

Conclusion

IT support is not a cost to minimise: it is an investment in your business’s continuity and security. A well-managed IT infrastructure is invisible: everything works, nobody notices the work behind the scenes. A poorly managed IT infrastructure is all too visible: systems crashing, data lost, productivity plummeting.

The key is to structure support proportionally to your needs: define clear SLAs, choose the right tools, invest in prevention (proactive monitoring and user training), and don’t wait for an emergency to think about disaster recovery.

Want to structure your company’s IT support with a reliable partner? Contact us for a free IT assessment: we will analyse your infrastructure, identify critical issues, and propose a tailored support plan for your needs and budget.