Pricing — Rainier IT

Co-Managed

$99

per user / month · billed monthly

For businesses with internal IT — or a tech-savvy owner — who need 24/7 monitoring, a hardened security baseline, and helpdesk overflow. We cover the foundation; your team keeps the wheel.

Unlimited remote support · 30 min response
Monitoring & auto-patching (Action1 + TRMM)
Endpoint Hardened + Huntress 24/7 SOC
Defender CIS L1 + 16 ASR rules
BitLocker + RMM-escrowed keys
Daily encrypted backup (1 TB)
Shared admin access — your IT keeps the keys
Monthly health report · Email support 8am–6pm PT

Start Co-Managed

Managed Pro

$149

per user / month · billed monthly

Our most popular tier. Full managed IT plus 24/7 security operations and on-site visits when you need them.

Everything in Co-Managed, plus we drive — your team can step back
Huntress Managed ITDR for Microsoft 365 identities
DNS filtering (Cloudflare Gateway)
Quarterly disaster-recovery testing
Quarterly on-site visits (Pierce & King County) included — no T&M charges
Phone support 24/7 for severity-1 · Founder direct cell
vCIO strategy session quarterly

Get started

Enterprise

Custom

tailored to your environment

For organizations with regulated data, multi-site footprints, or specific compliance needs (HIPAA, CMMC, SOC 2).

Everything in Managed Pro, plus…
Cloud Hardened security tier included
M365 provisioning & management via our Pax8 channel
Conditional Access MFA + legacy auth block + geo-fence
Defender for Office 365 (Safe Links / Safe Attachments)
Dedicated account engineer · Compliance gap assessment
SIEM + audit log retention · Custom SLAs & named on-call
Quarterly executive reviews

Talk to us

Why this can't wait — the numbers

The threat landscape your business is actually in.

2025 industry data segmented to organizations your size. These are the numbers we hand to clients and their cyber-insurance carriers when we explain why every plan ships with a hardened security baseline and 24/7 SOC.

88%1

of breaches in 2025 involved ransomware (vs. 39% at large enterprises — SMBs disproportionately targeted)

$115K1

median ransom payment in 2025 — before recovery, downtime, or legal costs

1 in 52

ransomware victims need more than a month to fully recover (organizations 100–5,000 employees)

$1.53M2

average recovery cost per ransomware incident — before paying any ransom

76%3

of organizations had to upgrade their security just to qualify for a cyber-insurance policy

Verizon, 2025 Data Breach Investigations Report (Apr 2025) · verizon.com/business/resources/reports/dbir
Sophos, State of Ransomware 2025 (Jun 2025, n=3,400 IT/cybersecurity leaders, organizations 100–5,000 employees, 17 countries) · sophos.com/en-us/content/state-of-ransomware
Sophos, Cyber Insurance and Cyber Defenses 2024 (Jun 2024, n=5,000 IT/cybersecurity leaders, 14 countries) · sophos.com/en-us/press/press-releases/2024/06/76-companies-improved-their-cyber-defenses-qualify-cyber-insurance

Security tiers, explained

Two clear tiers. One clear winner: You.

We don't make security claims we can't back up. Every endpoint we manage gets the baseline. Microsoft 365 clients get the cloud layer on top.

Tier 1 Included on every plan

Endpoint Hardened

Defender CIS L1, 16 ASR rules, BitLocker, Windows LAPS, no standing local admin, Huntress 24/7 SOC. Pushed via TRMM + Action1, drift-corrected weekly, attestation in your portal. Works on any Windows endpoint — no Microsoft 365 required.

Learn more →

Tier 2 Requires M365 via Pax8

Cloud Hardened

Everything in Tier 1, plus Conditional Access MFA, blocked legacy auth, geo-fenced sign-in, Defender for Office 365, DMARC p=reject, and BitLocker keys dual-escrowed to Entra. Cloud controls that only exist when we run your M365 tenant.

Learn more →

Already on M365 with another reseller? We can transfer the tenant to our Pax8 channel — usually no downtime, no email interruption.

Add-ons

Things nobody else around here offers.

Stack any of these onto any plan. We built them in-house and run them for ourselves — so we know they work before we sell them. Most local MSPs can't match these because they don't have the engineering bench to build them.

AI from $249/mo

Percival AI Concierge

A private AI assistant trained on your runbooks, vendor list, password reset paths, and onboarding docs. Your staff ask it anything; it never leaks data to a public model. No other MSP in the region offers this.

Reliability from $99/mo

Self-Healing Stack

Auto-remediator that fixes common failures before you notice — restarts crashed services, rotates stuck queues, recovers downed VMs. Backed by a 99.9% uptime SLA. Included on Managed Pro+.

Transparency from $49/mo

Branded Status Page

A public status.yourcompany.com with real uptime, incident history, and scheduled-maintenance posts. Stop fielding "is the network down?" emails.

Knowledge from $99/mo

Private Knowledge Base

A Wiki.js instance on your domain, SSO-protected, for internal SOPs and onboarding docs. Stop archaeology-digging through Slack to find how something works. Hosted, backed up, and search-indexed.

Observability from $149/mo

Per-Client Dashboards

Grafana dashboards purpose-built for your environment — your line-of-business apps, your servers, your queues. See latency, error rates, and capacity in real time, not just a green/red ping.

Security per seat · quoted

Huntress Managed SAT

Security awareness training: monthly phishing simulations, role-based curriculum, and the metrics your cyber-insurer wants. Available as an add-on on any tier.

Custom Software Builds. We're an MSP and a small dev shop. AI integrations, internal tools, customer portals, glue between systems that won't talk. Fixed-price where the scope is clear; T&M only when it isn't.

Authorized technology partners

Real partnerships. Real accountability.

We don't just resell software — we're authorized partners with the vendors whose tools we deploy. That means direct support escalation, partner-only pricing we can pass through, and accountability when something breaks.

Frequently asked

Things people ask before signing.

Is there a long-term contract?

No. Every plan is month-to-month with 30 days' notice to cancel. If we're not earning your business every month, you should not be stuck with us.

What's a "user" in your pricing?

Anyone with a workstation, a laptop, or a primary mailbox we manage. Shared kiosks, conference rooms, or service accounts don't count.

Do you charge for onboarding?

No. We absorb the cost of getting you set up — agents installed, baseline applied, backups verified, your team trained on the portal — usually within two weeks.

What's the difference between Endpoint Hardened and Cloud Hardened?

Endpoint Hardened is everything we push to your Windows machines directly: Defender CIS L1, 16 ASR rules, BitLocker, LAPS, no local admin. It works on any device, with or without Microsoft 365. Cloud Hardened adds the identity-layer controls — Conditional Access MFA, legacy auth blocking, geo-fenced sign-ins, Defender for Office 365, DMARC enforcement — which only exist if there's an M365 tenant to apply them to. We provision M365 through our Pax8 channel; we don't sell licenses we can't manage.

Do I have to use your M365 to get Cloud Hardened?

Yes. We can only enforce the cloud-side controls on tenants we manage. If you're already on M365 with another reseller, we can transfer the tenant to our Pax8 channel — usually no downtime, no email interruption — and then enable Cloud Hardened.

What about server-side stuff (file servers, line-of-business apps)?

Servers are billed per-endpoint at $99/month and include the same monitoring, patching, backup, and recovery testing as workstations.

Do you do project work outside the monthly fee?

Yes — migrations, infrastructure builds, cloud lifts, AI integrations, and custom software. Always quoted up-front, fixed-price where possible, T&M only when the scope can't be defined yet.

Flat fees. No surprises.