What predictable per-user pricing actually means for gross margin

Most MSPs price security services based on what competitors charge or what feels acceptable to the client. Neither is a margin calculation. The question that matters is: what does this service cost per user per month, and what does the model produce at scale?

Per-user pricing maps cleanly to how MSPs already bill for most services. It removes the device-count variability that endpoint-based models introduce, where a client adding hardware changes the cost mid-contract. With a fixed per-user input, gross margin is calculable at any seat count.

What this means in practice is that an MSP pricing a managed security tier at $20 per user per month with a known per-user platform cost has a margin figure that holds at 50 seats and at 500. There is no re-modeling needed as the client base grows. The margin is predictable, which makes financial planning straightforward in a way that variable cost models do not allow.

The pattern you will see when you run this calculation is that most MSPs have been pricing below the sustainable margin threshold because they benchmarked against competitors rather than against their own cost base. The right price is the one that supports the practice, not the one that matches what someone else is charging.

The payback period calculation most MSPs never do

The payback period on a security platform investment is the onboarding cost divided by the monthly margin contribution. If onboarding costs $5,000 and the client contributes $400 per month in margin, the payback is 12.5 months. If onboarding is free, the payback period is zero. Month one is margin-positive.

enhanced.io charges nothing for onboarding. There is no implementation fee, no setup charge and no professional services cost to get a client live. The implication for cash flow planning is significant: every new client adds immediately to margin rather than creating a recovery period before contribution turns positive.

The calculation to run before committing to any platform is this: take your target client size, apply your expected per-user pricing, subtract platform cost and estimated delivery overhead, and multiply by expected client count at 12 months. That number is the annualized margin contribution of the security practice. Compare it against the total onboarding investment required to get there. If onboarding is free, the comparison is straightforward.

The reason most MSPs never do this calculation is that the variables feel uncertain. They are less uncertain than they appear. Platform cost is fixed. Delivery overhead is estimable from comparable services. The main variable is client count, and that is a sales execution question rather than a financial modeling question.

How enhanced.io's free onboarding changes the MRR model

When onboarding carries a cost, MSPs face three options on every new client: absorb it against first-month margin, pass it to the client and introduce sales friction, or amortize it across the contract term and accept below-target margin for the first few months. None of these is structurally clean. The result is that MSPs slow-walk onboarding decisions for smaller clients where the onboarding cost represents a significant proportion of near-term margin. 

Free onboarding removes this friction from the model entirely. A 30-user prospect and a 300-user prospect have the same onboarding economics: both are margin-positive from the first billing cycle. This means client size is not a barrier to onboarding, and the sales motion can be driven by fit rather than by whether the numbers work in the first three months.

The compound effect on MRR is meaningful. Each additional client adds to the run rate without an offsetting cost recovery period. At 10 clients with an average of 50 users and $20 per user per month, that is $10,000 in security MRR, all of it at the margin the model supports. Adding the 11th client does not change the economics of the first 10.

What the numbers look like at 50, 200 and 500 seats

The margin profile changes at different seat volumes, and the pattern is consistent: fixed costs spread across more revenue as volume grows, which means effective margin improves.

At 50 seats, the practice is in its early phase. Margin contribution is real but the main value at this stage is proving the delivery model and building the QBR evidence that drives renewals. The risk at 50 seats is underpricing before the model is tested.

At 200 seats, the delivery overhead is largely absorbed into existing operational capacity. The security practice is contributing meaningfully to monthly revenue. This is the point where pricing discipline from the early phase pays off: if the model was priced correctly at 50 seats, it runs at the right margin at 200 without re-negotiation.

At 500 seats, at $20 per user per month, the security MRR is $10,000 before tiered upsells or compliance add-ons. The margin at this volume, with enhanced.io's per-user cost structure, supports a well-run practice. The question at 500 seats is not whether the model works. It is how to move clients onto higher-value tiers.

The numbers vary by pricing strategy and client mix. The direction does not: margin improves with scale, and enhanced.io's pricing is built to support that trajectory rather than constrain it.

About enhanced.io

enhanced.io is a channel-only Open XDR SOCaaS built exclusively for MSPs, with 400+ integrations across endpoint, network, cloud, identity and IoT/OT. enhanced.io does not sell directly to end clients. The platform connects to the security tools MSPs already run, including SentinelOne, Fortinet, Microsoft 365, ConnectWise and N-able, and adds a vendor-agnostic Open XDR correlation layer above them. A human-led 24/7 SOC monitors, triages and escalates threats across all integrated surfaces. The delivery model is channel-only and white-label: MSP partners deliver enhanced.io’s capabilities under their own brand.

enhanced.io also provides Fractional Security Director services that help MSPs translate security operations into client-facing business narratives, compliance evidence and QBR content. enhanced.io serves MSPs and MSSPs working with organizations in the 10 to 1,000 employee range. The business was built channel-only from day one and has no direct sales motion to end clients.