KEY TAKEAWAYS
- Break-fix bills hourly when something breaks. Managed services bill a flat monthly fee for proactive monitoring, patching, and an SLA.
- Cost parity hits around 12 to 15 users. Above that, break-fix becomes more expensive on a 24-month view once outages and rework are counted.
- The hidden costs that surface in year 2 of break-fix are unplanned outages, ransomware exposure, lost staff hours, and emergency rates.
- Break-fix still makes sense for micro-businesses under 5 users, single-site retail, or a project handoff to internal IT.
- For a 30 to 50 user Canadian SMB, FC builds a flat-rate managed plan with a 24×7 SOC, EDR, patching SLA, and a named virtual CIO.
Written by Mike Pearlstein, CISSP, CEO of Fusion Computing Limited. Helping Canadian businesses build and manage secure IT infrastructure since 2012 across Toronto, Hamilton, and Metro Vancouver.
Break-fix vs managed services is the IT support decision most Canadian SMBs revisit every renewal. Break-fix is reactive and hourly. Managed services is proactive, subscription-based, and tied to a written SLA. The right answer depends on user count, risk tolerance, and downtime cost. This guide compares them side by side, runs the numbers at four user tiers, and surfaces the hidden costs of break-fix.
If managed is already the answer, jump to managed IT services, the cost-by-province breakdown, or co-managed IT.
Break-fix vs managed services: snapshot at a glance
The two models differ on six dimensions: cost, SLA, monitoring, security, predictability, and best-fit profile. The table is the 30-second answer the rest of this guide unpacks.
| Dimension | Break-fix IT | Managed IT services |
|---|---|---|
| Cost model | Hourly, billed per incident | Flat monthly fee per user or device |
| SLA | None or best-effort | Contractual response and resolution targets |
| Monitoring | None. Issues found by users | 24×7 RMM, alerts, automated patching |
| Security | Reactive. Patching is ad-hoc | EDR, SOC, MFA, backup, awareness training included |
| Cost predictability | Spiky. One bad month doubles annual spend | Flat. Same line item every month |
| Best for | Under 5 users, project work, internal IT backstop | 10 plus users, regulated data, growth-stage SMBs |
What is break-fix IT?
Break-fix IT is a transactional support model. The provider does nothing until something fails, then bills hourly to fix it. No monitoring, no SLA, no scheduled patching, no security baseline. Canadian pricing typically runs CAD $125 to $225 an hour, with after-hours and emergency rates 1.5x to 2x standard.
The appeal is a zero IT line in months when nothing breaks. The risk is no visibility between visits. Drift, missed patches, expired certificates, and silent backup failures accumulate, and the eventual incident is larger than it would have been under active management. Break-fix providers also have no obligation to prioritize a returning customer over a new one.
What is managed IT services?
Managed IT services is a subscription model. The provider takes operational responsibility for an agreed scope, charges a flat monthly fee, and is contractually accountable to a written SLA. The fee covers helpdesk, 24×7 monitoring, patching, backup verification, security baseline, and a quarterly business review.
Canadian SMB pricing typically runs CAD $125 to $250 per user per month, depending on scope, security tier, and on-site coverage. Channel Futures MSP-501 data and CompTIA Channel Partner research both show this is now the SMB default. The structural difference is accountability: a managed provider absorbs the cost of slow response, a break-fix provider invoices for it.
Break-fix vs managed services: side-by-side cost comparison
The right comparison is total annual IT spend at a realistic incident rate. FC onboarding data puts the average Canadian SMB at 4 to 6 incident hours per user per year plus one or two larger outages. The table applies that benchmark across four user-count tiers.
| Users | Break-fix annual range (CAD) | Managed annual contract (CAD) | Cheaper at this size |
|---|---|---|---|
| 15 users | $18,000 to $32,000 | $27,000 to $45,000 | Break-fix on paper. Managed once outages count |
| 30 users | $42,000 to $78,000 | $54,000 to $90,000 | Roughly even. Managed wins on risk |
| 50 users | $78,000 to $145,000 | $90,000 to $150,000 | Managed |
| 100 users | $165,000 to $310,000 | $180,000 to $300,000 | Managed by a wide margin |
Break-fix wins the spreadsheet at 15 users in a calm year. It breaks at 30 plus users because every staff member adds incident hours, and a single ransomware event can erase a full year of savings. Cost parity sits at 12 to 15 users. Want a real number? Book an IT business assessment and we will run the math against your ticket history.
The hidden costs of break-fix that show up in year 2
The break-fix invoice is the smallest part of the total cost. Four hidden line items typically surface 12 to 18 months in, and they are what tip the model into the red.
- Unplanned downtime. A four-hour outage at a 30-user professional services firm at $80 per loaded staff hour is roughly $9,600 in lost productivity. One incident a quarter is $38,400 a year that never appears on the IT invoice.
- Emergency and after-hours rates. Most break-fix shops bill 1.5x to 2x for after-hours work, and the provider knows you have no alternative on a Sunday.
- Security incident exposure. The IBM 2025 Cost of a Data Breach Report puts the global average at USD 4.88M. Canadian SMB ransomware events of CAD $250K to $1.2M are routine in the FC portfolio. Break-fix environments carry materially more breach risk because patching is ad-hoc.
- Compliance gaps. Cyber insurers and frameworks (PIPEDA, PHIPA, Law 25, Bill C-8) increasingly require evidence of continuous monitoring, MFA, backup testing, and patch SLAs. Break-fix produces none of that.
The cost-of-failure picture. The IBM 2025 Cost of a Data Breach Report places the global average at USD 4.88M, with longer dwell time for organizations without 24×7 monitoring. Statistics Canada data shows roughly one in five Canadian businesses had a cyber incident last year. Canalys and Channel Futures MSP-501 data both point to managed services as the dominant SMB IT model in 2026. Sources: ibm.com, statcan.gc.ca, canalys.com, channelfutures.com.
Book an IT Business Assessment
When does break-fix actually make sense?
Break-fix is not always wrong. Three SMB profiles still get genuine value from it.
- Under 5 users with low IT dependence. A retail front, a single-site trades business, or a two-person professional firm on cloud-only workloads can run on break-fix because outage cost is bounded.
- Project work alongside internal IT. A capable internal IT lead may use a break-fix specialist for one-off projects: firewall migration, Entra ID cutover, data-center decommission. Internal handles day-to-day, contractor handles depth.
- Bridge before a managed cutover. Some SMBs use break-fix for 60 to 90 days while running a procurement process to select a managed provider.
Where break-fix stops working: any business above 10 users, any environment holding regulated data, and any company carrying cyber insurance whose renewal questionnaire asks about MFA, EDR, patch cadence, or 24×7 monitoring. For mid-sized SMBs, the more useful comparison is often co-managed vs fully managed.
Editorial pick: what FC would build for a 30-50 user Canadian SMB
Editorial pick from Mike
For a 30 to 50 user Canadian SMB on a single site or hub-and-spoke setup, I would build a flat-rate managed plan with five anchors: a 24×7 Canadian SOC with EDR, an aggressive patching SLA (critical inside 72 hours), MFA everywhere with conditional access, immutable backup tested quarterly, and a named virtual CIO running the QBR. Budget envelope CAD $5,000 to $9,500 a month all-in for a typical professional services or light-manufacturing profile.
Across Fusion Computing’s 80 plus Canadian SMB onboardings, this configuration cuts incident volume by roughly 60 percent in the first six months, and every cyber insurer in the FC book has accepted it at renewal without a rate hike.
Common misconceptions about the cost difference
Three myths drive bad procurement decisions here. Each survives because it is half-true in a narrow scenario and then gets generalized.
- Myth: managed is always more expensive. True at single-digit user counts in a calm year. False at 30 plus users on a 24-month view once outages, emergency rates, and breach exposure are priced in.
- Myth: break-fix means I only pay when I need help. True for the invoice. False for total cost, because unmonitored environments produce more incidents and each takes longer to resolve cold.
- Myth: managed providers nickel and dime on out-of-scope work. True for poorly scoped contracts. A defensible managed agreement covers everything inside the agreed environment with named exclusions listed up front.
The cleanest way to settle the debate is to compare last year’s break-fix invoices plus an outage-cost estimate against a quoted managed plan. See the managed IT cost guide for pricing detail.
Book an IT Business Assessment
Frequently asked questions
Is break-fix or managed IT cheaper for a Canadian SMB?
Break-fix is cheaper on the spreadsheet at under 10 users in a calm year. Managed services is cheaper on a 24-month view at 15 plus users once outages, emergency rates, and security incidents are priced in. The crossover is around 12 to 15 users for most Canadian SMBs.
What is the difference between break-fix and managed services?
Break-fix is reactive and hourly. The provider bills only when something breaks. Managed services is proactive and subscription-based. A flat monthly fee covers 24×7 monitoring, patching, helpdesk, security baseline, and a written SLA.
How much do managed IT services cost per user in Canada?
Canadian SMB pricing typically runs CAD $125 to $250 per user per month for a fully managed plan with helpdesk, monitoring, patching, EDR, MFA, and backup. Higher tiers with a virtual CIO, SOC, and on-site visits push toward the top of that range.
When does break-fix still make sense?
For micro-businesses under 5 users with low IT dependence, for project work alongside an internal IT team, or as a 60 to 90 day bridge before transitioning to a managed provider. Above 10 users with any regulated data, break-fix stops being defensible.
Can a business use both break-fix and managed services?
Yes. The hybrid model is co-managed IT, where the managed provider runs the security and monitoring stack while an internal team handles user support, and a break-fix specialist is brought in for project work. It is a common shape for 50 to 200 user organizations.
How long does it take to switch from break-fix to managed services?
A typical Canadian SMB onboarding runs 30 to 60 days. Week 1 to 2 is discovery and tooling deployment, week 3 to 6 is remediation of the inherited environment (patching backlog, MFA rollout, backup verification), and the SLA goes live at the end of the onboarding window.
