What is IT support?

If someone asks me what IT support is, my honest answer is usually a joke about turning it off and on again and kicking a printer. That's partly because it's actually true, but also because IT is a bit of an intangible thing that isn't necessarily easy to define. But I'll have a crack anyway.

What IT support does?

Put simply, IT support is the service that keeps an organisation's technology, computers, networks, software - and crucially, the people using them - working as it should. It covers everything from helping you reset your password to managing the systems an entire business depends on, usually delivered either by an in house team or an external provider.

Under the bonnet

In practice, IT support spans a wide range of activities and is typically structured in tiers.

First line handles the day to day stuff you probably think of when IT is mentioned: login issues, printer problems (again), software glitches, and of course turning your PC off and on again.

Second line picks up anything that needs more investigation or higher level access: diagnosing why a specific application keeps crashing on certain machines, configuring new user accounts and permissions across systems, and recovering data from failed drives.

Third line is the specialists: network engineers, systems admins, cybersecurity people. Handling the complex stuff most of the business will never see. Designing the network itself, managing firewalls and switches, overseeing cloud environments, investigating security incidents, and untangling deep rooted problems that span multiple systems. They're also the ones thinking two years ahead - capacity, migrations, the upgrades you'll need before you realise you need them - rather than just keeping today's systems running.

Some providers also have a fourth tier, which usually means going back to a vendor (like Microsoft, Cisco, etc.) for issues with their products.

There’s also split between reactive and proactive support. Reactive is the traditional 'something breaks, someone fixes it'. Proactive support, which has become the standard for serious providers, means monitoring systems constantly, applying patches before vulnerabilities are exploited, managing backups, and catching problems before users notice them.

Increasingly, IT support also overlaps with cybersecurity, cloud management, and compliance, because you can't really separate those things any more.

What it means for your business

This is where the printer joke falls apart. IT isn't a dark cupboard full of nerds, it's the spine of nearly every modern business. Email goes down, sales stop. The server fails, the warehouse can't dispatch. A ransomware attack hits, and you're not trading until it's resolved, which could be days or weeks.

Good IT support is business continuity. It's the difference between a minor inconvenience and a serious incident. The real value isn't in the tickets resolved, it's in the disasters that were avoided, the breaches that were blocked, and the hours of productivity that weren't lost.

It's fine until it isn't, then suddenly everyone needs IT because they're losing money. When IT works well, nobody thinks about it.

What most businesses underestimate

A few things tend to catch people off guard.

The first is the true cost of downtime. Most businesses dramatically underestimate what an hour offline actually costs them. For a small business, research puts the average somewhere between £10,000 and £20,000 per hour, and that's before you factor in reputational damage and customers who don't come back.

The second is compliance. Regulations like GDPR, and standards like Cyber Essentials or ISO 27001, aren't just paperwork, they have teeth. Good IT support keeps you on the right side of them without you having to think about it, and compliance and cybersecurity aren't separate conversations. A lot of what those frameworks ask for is because it makes you harder to attack.

The third is cybersecurity. Threats have moved on from just dodgy email attachments. Phishing is now more sophisticated, ransomware is industrialised, and small businesses are targeted precisely because they assume they're too small to be a target. And no system or software in the world can account for human nature, which is actually how most modern attacks happen. The biggest, most damaging breaches in recent UK history haven't been the result of unstoppable hacks. Businesses with multi million pound security budgets have been brought to a standstill for weeks because someone, somewhere, clicked the wrong link.

Increasingly, these major attacks don't start at the top, they start at the bottom, with a smaller supplier whose security was the weak link. If you're a supplier to a larger business, your cybersecurity is no longer just about protecting yourself, it's about whether your customer can trust you not to be the route in. Supply chain attacks are no longer the exception, they're often the easiest way in.

Modern IT support has to take all of this seriously as standard. Downtime prevention, compliance, security. They're not separate services you bolt on when something goes wrong. That's what IT support actually does.

More than turning it off and on

The businesses that get IT right aren't always the biggest ones, they're just the ones who realised that prevention is cheaper than recovery. Whether you've got an in house team or you outsource it, that calculation is the same.

Good IT support costs money. Bad IT costs more.

Written by Tom Mckeever

Date: 20/05/2026