What does managed IT really cost? An honest overview for SMEs

The fundamental shift: Why traditional hourly IT billing is a conflict of interest

Many small and medium-sized businesses in Germany still rely on the classic break-fix model, where IT services are billed based on the actual time spent. At first glance this seems transparent: you only pay when something is done. On closer inspection, however, a deep conflict of interest emerges. An external provider that bills by the hour earns money precisely when problems, outages, or security incidents occur in your IT infrastructure. The more unstable your systems run and the longer the remediation takes, the higher the bill at the end of the month. From a purely commercial standpoint, the provider therefore has little genuine interest in lasting, proactive protection.

The financial realities: German hourly rates in focus

The financial impact of this model is considerable for the German Mittelstand. According to industry studies such as the IT service price index, the average hourly rate for IT services in Germany has now reached around 119 Euros^[1]. For specialized tasks such as programming or demanding support, this figure quickly climbs even higher^[2]. If a mid-sized company with, say, 50 employees is hit by a severe system outage, these hourly rates quickly add up to five-figure sums. In this scenario the financial risk lies entirely with the customer, while the provider profits commercially from the crisis.

To better gauge the implications of the different pricing models, it is worth taking a direct look at the underlying incentives side by side.

• Traditional hourly billing: The provider profits financially from errors, system outages, and lengthy repair times, since every hour worked is billed individually.
• Modern flat-rate model: The IT partner receives a fixed monthly amount. Its commercial goal is to prevent disruptions proactively in order to keep its own workload as low as possible.
• Risk distribution: While the financial risk of IT problems remains entirely with the mid-sized company under hourly billing, it shifts to the provider under a fixed price.
• Security level: Reactive support only patches problems after they occur. Flat-rate models, by contrast, rely on continuous monitoring and preventive updates so that outages do not arise in the first place.

This is exactly where the shift toward modern flat-rate models comes in. Instead of reacting to crises, advanced platforms like CAVRIX, operated by CITO GmbH in Hamburg, bundle all IT processes into a calculable fixed price. With the Managed IT service, companies receive comprehensive, proactive support that ranges from automated device provisioning to administration. Since the provider is liable here for lasting stability and security, the interests of both parties are perfectly aligned: both want an absolutely disruption-free IT infrastructure. This approach offers enormous relief, especially for managing directors and technical decision-makers struggling with limited internal resources. An honest overview shows that this predictability protects against hidden cost traps while paving the way for modern IT standards.

The dominant pricing models for managed IT: Per user vs. per device

Anyone who looks into the offerings of German IT providers quickly comes across two fundamentally different approaches to billing ongoing services. While traditional billing based on actual effort is becoming increasingly unattractive for small and medium-sized businesses due to the lack of cost certainty, fixed flat rates have become established in the managed services space. The two dominant pricing models on the market are per-user billing and per-device billing. Both approaches aim to make IT costs predictable for companies, but they differ significantly in their structure and in long-term cost development.

The per-user model: The user-oriented flat rate

With per-user billing, the company pays a fixed monthly flat rate for each employee who actively uses the IT infrastructure. In the German Mittelstand, this flat rate typically ranges between 55 and 85 Euros per user per month, depending on the exact scope of services and the included support hours^[3]. The decisive advantage of this model is absolute cost transparency and fairness for modern office workplaces. Since a modern employee usually does not work only at a desktop PC but also uses a notebook, a smartphone, and possibly a tablet, a true per-user flat rate covers all of that user's devices. This makes IT costs extremely scalable: new employees mean a fixed, calculable surcharge, regardless of how many devices they are ultimately equipped with.

The per-device model: Hardware-focused billing

By contrast, there is the device-based model, in which every single piece of hardware is billed separately. Here the prices for support usually range between 30 and 60 Euros per device per month. At first glance this model often appears cheaper, since the entry price per unit is lower. However, it carries considerable lack of transparency for growing companies. If a single employee is equipped with a laptop, a desktop PC in the home office, and a business smartphone, the costs quickly add up to three times the original entry price. In addition, this model leads to high administrative effort, since every decommissioning or new purchase of a device immediately changes the monthly billing amount.

For modern office environments, the per-user model is almost always the more economical and transparent choice, since it reflects employees' actual day-to-day work. IT system houses use these models to cover the ongoing effort for support, patch management, and monitoring. AI-native platforms like CAVRIX offer a contemporary alternative for the Mittelstand, enabling efficient management through automated processes. Via the Managed IT module, mid-sized companies receive transparent support that seamlessly connects administration, endpoint management, and the provisioning of systems. This modern approach helps avoid rigid, confusing billing structures while relieving the IT department at the same time.

Typical price ranges: What German SMEs should budget for in 2026

The question of realistic IT costs occupies almost every managing director and IT lead in the German Mittelstand planning for 2026. To avoid comparing apples and oranges, you must clearly distinguish whether hardware leasing is included in the price or whether it is a pure service flat rate. For professionally operated services without hardware, companies should budget for a monthly flat rate of 50 to 90 Euros per workstation^[4]. This range is regarded in the industry as the standard for proactive support that minimizes everyday outages and ensures basic security standards. Especially for managing directors who bear overall responsibility, this budgeting certainty provides a reliable basis for decisions.

The danger of bargain offers

Below this price range, that is for offers under 50 Euros per month, IT leads and managing directors should become alert. In practice, an extremely low price almost always means that critical security measures or support services are entirely missing. Either support is billed by the hour (the so-called break-and-fix model), which causes costs to explode when real problems arise, or proactive monitoring is lacking, so that security vulnerabilities are only discovered once the damage has already been done.

Modern, AI-native platforms like CAVRIX offer an innovative way out of the dilemma between high costs and inadequate protection. As a single point of contact, the platform from CITO GmbH in Hamburg combines the areas of Managed IT, Cybersecurity, and Compliance in one coordinated system. Through automated processes, such as automated device setup (device staging) and proactive monitoring, professional standards can be achieved without blowing the budget of mid-sized companies.

Cost drivers and obligations in 2026

When planning their budget for 2026, small and medium-sized businesses must take into account additional legal and regulatory requirements that directly affect the IT infrastructure. The days when a simple virus scanner was sufficient are definitively over. The following factors should be firmly planned into every IT budget:

• Modern security tools such as Endpoint Detection and Response (EDR) for detecting behavior-based threats
• Ongoing employee training to defend against phishing attacks and to raise security awareness
• Structured compliance processes to comply with legal requirements such as the NIS2 rules, which are becoming mandatory for many mid-sized businesses
• A central monitoring system such as the CAVRIX Command Center, which consolidates security data in real time and simplifies administrative interfaces

An honest look at IT budgets shows that cutting costs in the wrong place carries existence-threatening risks. The average cost of remediating a ransomware attack in the German Mittelstand exceeds the cost of preventive security measures many times over^[5]. A structured investment in a future-proof IT infrastructure not only protects the company against outages but also secures its long-term competitiveness.

Hidden cost traps: What is usually not included in the flat rate

In the market for IT services, many providers lure customers with supposedly straightforward flat-rate prices. For managing directors and IT managers in the Mittelstand, a fixed monthly fee sounds like perfect budgetability. But appearances are often deceptive, since many standard contracts contain far-reaching exclusions that lead to unforeseen bills in day-to-day operations. Anyone who wants to understand the actual managed IT costs must therefore examine closely which services lie outside the monthly flat rate and how they are billed.

The classic exceptions to the flat rate

The monthly fee usually only covers ongoing operations, proactive monitoring, and standard support. Larger changes or fundamental new setups are almost always billed separately by traditional providers as project work. The most common cost drivers include the initial setup of new hardware, comprehensive data migrations to the cloud, and the required software licenses.

• Initial hardware setup: Setting up and configuring new laptops, PCs, or servers for new employees is often charged based on effort or as a one-time flat fee.
• Major migration projects: Moving from local systems to the cloud or introducing entirely new software infrastructures almost never counts as ongoing operations.
• Software and cloud licenses: The fees for Microsoft 365, security licenses, or backup storage are usually excluded as third-party costs in traditional plans.
• On-site visits: When a technician has to physically appear at the office, many providers charge additional travel fees and hourly rates that are not covered by remote support.

Transparency through precise service level agreements

To avoid nasty surprises at the end of the month, all exclusions and special services must be precisely defined in the service level agreement (SLA). An honest provider discloses from the outset which activities are included in the price and which hourly or project terms apply to additional tasks. While traditional providers often charge opaque extra fees for routine tasks, CAVRIX takes a more transparent path with its AI-native Managed IT service. Here, key operational processes are already integrated through automation, which minimizes unpredictable additional costs.

The costs for IT services in the German Mittelstand typically range between 80 and 200 Euros per workstation per month, with the exact scope in the SLA making the difference between genuine predictability and a cost trap^[6]. Decision-makers should therefore never compare offers based on the monthly base fee alone, but should always consult the detailed service description and the hourly rates for additional services.

Beyond the support ticket: How cybersecurity and NIS2 compliance affect the price

Traditional IT support, which is primarily concerned with fixing acute problems and merely providing software, falls short in today's threat landscape. For German SMEs, the IT infrastructure is the backbone of all business processes, while regulatory requirements are rising massively at the same time. Simply working through support tickets without a strategic security focus leads to incalculable risks and unforeseen costs in the long run. Anyone investing in modern IT today must regard IT infrastructure, defensive mechanisms, and legal requirements as an inseparable unit.

The new European legislation in particular is putting mid-sized companies under pressure. A study from 2024 illustrates the problem: at that point, one third of companies had not yet taken any measures to prepare for the increased requirements of the European cybersecurity directive^[7]. Yet the topic of NIS2 affects far more companies than initially assumed. Those who delay implementation risk not only costly downtime after a security incident, but also painful fines. In addition, in the event of violations, the personal liability of management applies, which further increases the urgency at the executive level.

The cost advantage of integrated solutions from day one

Many managing directors face the question of how to introduce modern security standards in a budget-friendly way. A common mistake is to engage an existing IT provider for basic support, while a separate provider is brought in for security and a third consultant for legal audits. This multi-provider approach drives up operating costs through interface problems, duplicated coordination effort, and redundant licenses. The seamless interlocking of Managed IT with advanced cybersecurity prevents this costly additional effort from the outset. Especially for technical decision-makers such as the SME CTO, such a holistic approach offers maximum relief.

An integrated architecture ensures that the necessary evidence for NIS2 compliance is generated directly during ongoing operations, instead of having to be reconstructed afterwards through laborious manual work. Via the central Command Center, IT leads and managing directors retain full transparency at all times over the current security status and pending tasks, without having to fight their way through complex individual systems. By bundling Managed IT, cybersecurity, and compliance in a single platform, the total cost of ownership for company IT can be significantly reduced, while at the same time achieving a level of protection that easily withstands legal requirements.

The CAVRIX approach: Predictable managed IT, powered by AI

Small and medium-sized businesses in Germany today face a twofold challenge: while the demands on IT infrastructure and IT security are rising rapidly, the pricing of many traditional IT providers remains a confusing black box. Many providers work according to the outdated break-fix principle or bill complex, opaque hourly rates, where every small service request incurs additional costs. According to industry analyses of IT outsourcing models in the German Mittelstand, the monthly costs for operations and support often fluctuate considerably, which makes reliable budget planning for managing directors almost impossible^[6]. Headquartered in Hamburg, CITO GmbH offers a fundamentally different, transparent alternative for the Mittelstand with its CAVRIX platform.

The core of the CAVRIX approach lies in the intelligent linking of three essential pillars that otherwise usually have to be purchased and managed separately: Managed IT, Cybersecurity, and Compliance. Instead of signing various contracts with system houses, external security consultants, and compliance auditors, mid-sized companies receive all services from a single source with a fixed point of contact. This not only saves considerable coordination effort but also eliminates the typical mutual passing of responsibility in an emergency. Through the consistent use of modern, AI-native automation in the background processes, routine tasks can be handled extremely efficiently, which leads to consistently stable and calculable costs.

The Command Center as the central interface

A key driver of this high efficiency and cost transparency is the Command Center. This is an AI-native operating interface that integrates seamlessly into the communication tools already in use at the company, such as Microsoft Teams, Slack, or WhatsApp. Instead of writing lengthy support tickets by email or hanging on hold on the phone, IT managers and managing directors can simply submit administrative requests in natural language. Whether it is about activating new devices, querying the current security status, or generating NIS2-relevant reports: the system processes standard procedures in a highly automated way in the background. The experienced IT experts at CITO GmbH step in where human expertise and strategic advice are indispensable, which reduces expensive manual support hours to a minimum.