| Co-managed IT services is a partnership model where an external IT provider works alongside your internal IT team, supplying specialist skills, after-hours cover, and tools so your business gets enterprise-grade IT without growing headcount. |
Your internal IT person is drowning. Tickets keep stacking. Strategic projects keep slipping. Cyber risk keeps rising.
Most NZ businesses get to this point and assume the only option is to hire another full-time IT staff member or hand everything over to a managed service provider. There is a third option that fits the reality of most NZ SMEs far better.
That third option is co-managed IT services. It is a model that has matured quickly in NZ over the last few years, driven by the same forces putting pressure on every internal IT team: more cloud services to manage, more cyber security threats to defend against, more compliance to satisfy, and more strategic questions from leadership that need real answers.
This article explains what co-managed IT services are, how the model works in practice, what to look for in a partner, and how to tell whether your business is ready. By the end, you will know whether co-managed IT is the right next step for your team.
What Are Co-Managed IT Services?
Co-managed IT services is a shared-responsibility model where an external IT partner works alongside your internal IT staff rather than replacing them. Your in-house team keeps the relationships, context, and day-to-day knowledge of your business while the partner brings depth, tools, and after-hours capacity.
In traditional outsourced IT, the provider runs everything. In co-managed IT, responsibilities are split deliberately. The internal team might own user support, vendor relationships, and project delivery. The partner might own monitoring, patching, cyber security tooling, after-hours response, and strategic advisory.
The result is a stronger combined capability than either side could deliver alone. The internal person stops being a single point of failure. The business gets access to skills that would be impossible to hire for at SME scale.
The model has grown quickly in NZ over the last five years. Cyber security expectations, cloud sprawl, and the shift to hybrid work have all pushed internal IT workloads beyond what one or two people can reasonably hold. Rather than choose between hiring or outsourcing, more businesses are finding that a hybrid arrangement gives them the best of both.
How Co-Managed IT Differs From Fully Outsourced IT
With fully outsourced IT, the external provider owns the entire IT function. There is no internal IT presence. With co-managed IT, the internal team remains in control and the partner extends what they can deliver.
The choice usually comes down to scale and complexity. Businesses without any internal IT often start with fully outsourced support. Once they grow to the point of needing an internal IT lead, the conversation shifts to whether that person should work alone or work with a partner.
How Co-Managed IT Differs From Staff Augmentation
Staff augmentation typically means hiring contract resources to fill a gap. The contractor sits inside your structure and follows your direction. Co-managed IT is a partnership of two organisations, with the partner bringing their own systems, processes, escalation paths, and senior expertise that one contractor cannot match.
Continuity is the other difference. When a contractor leaves, their knowledge usually leaves with them. A co-managed partner builds institutional knowledge of your environment into shared documentation and a service team, so the support you rely on does not walk out the door with a single person.
Why Internal IT Teams Choose a Co-Managed Partner
Most internal IT teams choose a co-managed partner because they have run out of hours, skills, or coverage. The pressure usually comes from three directions at once: rising support volume, rising cyber security expectations, and rising demand for strategic IT input from leadership.
Hiring a second internal IT staff member can solve part of the load problem, but it rarely solves the skills problem. One person cannot be a senior cyber security specialist, a cloud architect, a Microsoft 365 expert, and a network engineer at the same time. A co-managed partner brings a team of specialists at a fraction of the cost of hiring them individually.
Coverage and After-Hours Response
A solo internal IT person is on call by default. Leave, illness, and holidays all create exposure. A co-managed partner provides documented after-hours and overflow cover, so your business is not held hostage by one person’s calendar.
Coverage matters most for incidents. Ransomware does not respect business hours. Cloud outages happen overnight. Knowing there is a 24/7 response capability behind your internal team is one of the strongest reasons businesses move to a co-managed model.
Coverage also matters for everyday continuity. When the internal IT person takes annual leave, staff still need helpdesk support, security alerts still need triaging, and patches still need verifying. Without backup, the business either runs at reduced capability for weeks at a time or the IT person ends up answering tickets from the campsite. Neither outcome is sustainable.
Access to Specialist Skills
Cyber security, cloud architecture, and compliance are now full-time disciplines in their own right. Expecting one generalist IT person to keep up across all of them is unrealistic. A co-managed partner provides on-demand access to specialists when they are needed, without the cost of permanent senior salaries.
The benefit is sharpest during projects. A cloud migration, a Microsoft 365 tenant restructure, or a security uplift each requires deep skills that the internal team only needs for a few weeks. A co-managed partner can drop those skills in when the project requires them and step back when it is done, leaving the internal team to operate the result.
Strategic and Advisory Capacity
Internal IT staff are usually pulled into operations. Strategic planning gets squeezed out. A co-managed partner provides IT consulting and roadmap input that gives leadership the longer view, without taking your IT person away from the work in front of them.
How Does a Co-Managed IT Engagement Actually Work?
A co-managed IT engagement starts with a clear split of responsibilities, agreed in writing, and supported by shared tools. The partner does not parachute in and take over. The internal team stays in charge of the relationships and the work they do well, while the partner picks up what makes the most sense to hand off.
Defining the Split of Responsibilities
Every co-managed engagement starts with a RACI conversation. Who is responsible for the helpdesk? Who is accountable for cyber security tooling? Who consults on strategic projects? Who is informed of incidents? Writing this down early prevents friction later.
A common split is for the internal team to own user support, vendor management, and project delivery, while the partner owns monitoring, patching, security tooling, backup verification, and after-hours response. The split should match the strengths of your internal team and the gaps you most need filled.
Shared Tools and Documentation
Co-managed IT only works if both sides see the same things. That means shared IT helpdesk ticketing, shared monitoring dashboards, shared documentation, and shared access to backup, security, and patching tools. Without shared visibility, the partner becomes another silo rather than a true extension of the team.
Escalation and Communication
A defined escalation path is essential. Internal IT handles tier 1 and tier 2 issues. The partner handles tier 3 and specialist escalations. Weekly stand-ups, monthly service reviews, and quarterly strategy sessions keep both sides aligned and stop small problems becoming big ones.
The strongest engagements also have named contacts on both sides. The internal IT lead works with a dedicated service manager at the partner, rather than a different person on every call. That continuity builds trust and makes the partner feel like an extension of the team rather than a faceless support queue.
What to Look For in a Co-Managed IT Partner
Not every IT provider is set up to deliver co-managed IT services well. Many are built for full outsourcing and treat co-managed engagements as a poor cousin. The right partner treats co-managed IT as a first-class offering with the people, processes, and tools to back it up.
Local Presence and Cultural Fit
Your partner needs to understand the NZ business environment, NZ vendors, and the realities of operating in the South Island. Local IT support Christchurch and Dunedin presence matters when on-site response is needed. Cultural fit with your internal team matters even more, because the two groups have to work together every day.
Transparent Tools and Documentation
A co-managed partner should give your internal team full visibility into the tools they bring. That means access to the monitoring platform, the ticketing system, the documentation library, and the security dashboards. A partner that locks you out of their tools is not a partner, they are a vendor.
Cyber Security Depth
Cyber security is usually the area where internal teams need the most help. Look for a partner with real depth in network security, endpoint protection, and incident response. Ask how they would handle a ransomware event on a Saturday night, and listen carefully to the answer.
Flexible Commercial Model
The pricing should reflect the shared model. Look for predictable monthly fees scoped to the services the partner is actually delivering, with clear scope, clear inclusions, and clear escalation rates. Avoid contracts that try to bundle in everything regardless of whether you need it.
Ask to see a sample monthly statement before signing. A good partner can show you exactly what their reporting looks like, how time is tracked against the agreement, and how out-of-scope work is approved and billed. If the commercial model is opaque at the start, it will only get harder once the relationship is live.
Is Your Business Ready for Co-Managed IT Services?
Co-managed IT works best when there is already an internal IT person or small team in place. If you have no internal IT presence at all, fully managed IT is usually the better starting point. The model also works well for businesses with 50 to 500 staff, where IT complexity has outgrown one person but does not yet justify a full internal team.
Signs You Are Ready
The clearest sign is a stressed internal IT person who is constantly fighting fires and never getting to strategic work. Other signs include rising cyber security pressure, growing compliance requirements, planned cloud migrations, or recent incidents that exposed coverage gaps.
If your IT person has handed in resignation or is showing signs of burnout, the urgency is higher. Co-managed support can stabilise the situation quickly and reduce the load while you regroup.
Signs You Are Not Ready
Co-managed IT does not fix poor internal documentation, unclear roles, or a business that has never invested in IT. If your environment has not been kept up to date and there are no records of what is in place, the first step is an IT assessment rather than a co-managed engagement. Once the environment is documented and stabilised, the co-managed model has something to build on.
Common Pitfalls to Avoid
The most common failure mode is treating the partner as just another vendor. When that happens, the internal team holds onto everything and the partner gets called in only when something is broken. The value of the model is lost because the specialist capability is never embedded into how IT runs day to day.
The other common pitfall is failing to review the split of responsibilities. Businesses change, internal teams change, and the workload shifts. A good engagement is reviewed every six to twelve months, with responsibilities adjusted as needed. Treat the agreement as a living document, not a contract that gets signed and filed.
Talk to a Co-Managed IT Partner
Exodesk has been supporting Christchurch and Dunedin businesses since 1989. We work with internal IT teams across the South Island as their co-managed partner, providing the specialist skills, tools, and after-hours cover that turn one stretched IT person into a confident, well-supported team.
Contact us today to discuss how we can help your business or connect with us on LinkedIn to stay updated with more insights.
Frequently Asked Questions
What are co-managed IT services?
Co-managed IT services is a model where an external IT provider works alongside your internal IT team rather than replacing it. The internal team keeps day-to-day responsibility while the partner provides specialist skills, tools, monitoring, and after-hours cover. It gives businesses enterprise-grade IT capability without growing internal headcount.
How is co-managed IT different from outsourced IT?
Outsourced IT means the external provider runs the entire IT function and there is usually no internal IT presence. Co-managed IT keeps the internal team in place and adds external capability on top, with responsibilities split by agreement. Co-managed IT suits businesses that have an internal IT lead but need depth, tools, or coverage they cannot provide alone.
How much do co-managed IT services cost in NZ?
Co-managed IT pricing in NZ usually follows a predictable monthly fee based on the scope of services, user count, and device count. Costs typically sit well below the cost of hiring an additional senior IT staff member, because the partner spreads specialist skills across many clients. Expect a fixed monthly fee plus clearly defined rates for project work and out-of-scope items.
Will a co-managed IT provider replace my internal IT person?
No. The whole point of co-managed IT is to support your internal IT person, not replace them. A good partner makes the internal role more enjoyable and more strategic by removing repetitive load, providing specialist backup, and giving the internal team people to escalate to. Internal IT retention usually improves once a co-managed partner is in place.
What does a co-managed IT partner typically take responsibility for?
A co-managed partner often takes on monitoring, patching, cyber security tooling, backup verification, after-hours support, and specialist escalations. The internal team usually keeps user support, vendor management, and project delivery. The exact split is agreed at the start of the engagement and is captured in writing, with regular reviews.
How long does it take to set up a co-managed IT engagement?
A typical co-managed IT engagement takes four to eight weeks from contract signing to full operation. This includes discovery, documentation, tool deployment, agreement on the responsibility split, and a handover period where both teams work together. Larger environments with more complex security requirements can take longer.
Is co-managed IT a good option for businesses in Christchurch or Dunedin?
Yes. Co-managed IT is a strong fit for Christchurch and Dunedin businesses with an internal IT lead but limited specialist depth. A local partner can provide on-site presence when needed, after-hours response, and access to skills that are hard to hire in the South Island market. The model is increasingly common across professional services, healthcare, and mid-sized commercial businesses in the region.
How do I avoid friction between my internal IT team and a co-managed partner?
Friction is avoided by setting clear responsibilities in writing, sharing tools and documentation from day one, and meeting regularly. The internal IT person should be involved in selecting the partner so they have ownership of the relationship. Treating the partner as a true extension of the team, rather than a vendor, is essential.
Does co-managed IT improve cyber security?
Yes, in most cases significantly. A co-managed partner usually brings enterprise-grade security tools, 24/7 monitoring, and specialist incident response capability that internal teams cannot match alone. This raises the security baseline for the business and reduces the risk of a successful attack going undetected, especially outside business hours.
How do I know if co-managed IT is right for my business?
Co-managed IT is usually the right fit if you already have an internal IT person who is stretched, you need deeper cyber security or strategic capability, and you want to avoid hiring an additional senior staff member. The simplest next step is an honest conversation with a provider about your current load, your gaps, and the responsibilities you would most like to share. A short assessment will quickly show whether the model fits.
