Operational Control Plane for Managed IT

Stop paying people to do work that should happen automatically.

coreMSP is the playbook-driven orchestration layer that runs between your HR, identity, security, and productivity stack. Onboard in minutes. Offboard completely. Capture compliance evidence as a byproduct of everyday operations. Keep the tools you already trust.

See what coreMSP would save you.

Move the sliders. Watch the number. Every assumption is shown below.

Managed Clients50

The number of separate client organizations your MSP manages.

Total End Users2,000

Approximate active users across all managed clients. Not sure? Use a round number — the math is within 10% either way.

Blended Tech Rate ($/hr)$65

Fully loaded hourly cost of your technical staff. US average is $55-$85.

Compliance Client Mix40%

Share of your clients subject to CMMC, HIPAA, SOC 2, or similar frameworks.

Your Annual Labor Reclaim

$0

A 0x return on your coreMSP investment, with a payback period of 0 months.

Net Annual Savings

$0

Hours Reclaimed

0

FTE Equivalent

0

Where the savings come from

Recommended Tier

coreMSP Professional

$48,000

per year, all-in

The Dashboard

One control plane. Every workflow. Total audit trail.

Your team sees everything in one place: active playbooks, compliance posture across frameworks, user lifecycle events, and alerts that actually require a human. Everything else runs on its own.

Operations Overview

Wednesday, April 24 · All clients · Last 30 days

Playbook Runs

1,847

↑ 23% vs. last month

Hours Saved

412h

↑ $26,780 in reclaimed labor

Evidence Captured

3,204

Across 4 frameworks

Approvals Pending

3

2 aging > 4 hrs

Recent Playbook Activity

⊕

New Hire Onboarding — Full Stack

sarah.m@acmelogistics.com · 14 steps

Acme Logistics

Running

2 min ago

⋯

⊖

Termination and IAM Cleanup

jrodriguez@meridiancap.com · 11 steps

Meridian Capital

Complete

18 min ago

⋯

◑

Quarterly Access Review — Q2

All users · 47 flagged · 3 require review

BlueRidge Health

Partial

42 min ago

⋯

↑

Role Change — Promotion to Manager

tcooper@harboredge.io · 9 steps

Harbor Edge Tech

Complete

1 hr ago

⋯

◈

License Reconciliation — M365 and Duo

12 reclaimable seats identified

All clients

Complete

3 hr ago

⋯

Compliance Evidence — Auto-Captured

Evidence library →

CMMC

CMMC Level 2

112 of 130 controls · 8 clients

86%

HIPAA

HIPAA Security Rule

48 of 54 safeguards · 6 clients

89%

SOC 2

SOC 2 Type II

64 of 71 criteria · 12 clients

90%

NIST

NIST 800-171 Rev. 2

96 of 110 controls · 8 clients

87%

Today's Time Reclaimed

14.2h

equivalent to $923 in reclaimed labor today alone

Top Contributors

Onboarding orchestration5.1h

IAM cleanup on offboarding4.2h

Evidence capture3.4h

Access audit automation1.5h

Playbooks in Action

A new hire, onboarded in the time it takes to drink a coffee.

Every step is logged. Every failure is caught. Every piece of evidence is captured automatically — and mapped to the compliance controls it proves.

New Hire Onboarding — Full Stack

Sarah MitchellLogistics CoordinatorAcme LogisticsTriggered by BambooHR webhook

Running · 6/14

✓

Receive HRIS webhook — new hire event

BambooHR → coreMSP

00:00

✓

Create Microsoft 365 user and assign E3 license

graph.microsoft.com/users

00:08

✓

Add to security groups: Logistics, Standard Users

Entra ID groups

00:12

✓

Provision SentinelOne endpoint policy

sentinelone.net/api/v2

00:17

✓

Enroll in Duo MFA and send setup email

api.duosecurity.com

00:22

✓

Create ConnectWise Manage user record

cw.acme-logistics.net

00:26

7

Provision NetSuite access with Logistics role

netsuite.com/rest/platform

Running...

8

Assign Slack workspace and default channels

slack.com/api

Queued

9

Configure company laptop via Intune

Intune device enrollment

Queued

10

Send welcome email with login instructions

internal email service

Queued

Evidence Captured (Live)

Account ProvisioningLogged

New account created with role-based access and documented approval chain.

→ CMMC AC.L2-3.1.5 · NIST 800-171 3.1.5

MFA EnrollmentLogged

Multi-factor authentication enforced at account creation, not retroactively.

→ CMMC IA.L2-3.5.3 · SOC 2 CC6.1

Least Privilege AssignmentLogged

Role-mapped permissions only; elevated access requires separate approval playbook.

→ CMMC AC.L2-3.1.5 · NIST 800-171 3.1.5

Endpoint Protection DeployedLogged

SentinelOne policy active before user first login.

→ CMMC SI.L2-3.14.2 · HIPAA § 164.308(a)(5)

What coreMSP Does

Sixteen capabilities. Two architectural foundations. Zero overlap with the tools you trust.

Everything coreMSP does either extends the playbook orchestration engine or the compliance evidence capture layer. We don't rebuild your RMM, your GRC, your PSA, or your EDR. We make them dramatically more valuable.

01

User Provisioning Playbooks

Configurable sequences that create users across M365, Google Workspace, SentinelOne, Duo, Intune, and more.

Onboarding Team

02

Offboarding and IAM Cleanup

Complete reverse provisioning across every system, with documented timing for compliance windows.

Onboarding Team

03

Approval Workflow Engine

Route playbook executions through configurable approvers, with a complete record of every decision.

Service Desk

04

MFA Enrollment Orchestration

Automatic enrollment with escalation if not completed in defined time windows.

Onboarding Team

05

Compliance Evidence Library

Every playbook execution generates evidence, mapped to CMMC, HIPAA, SOC 2, and NIST automatically.

Compliance Team

06

Control Framework Mapping

Cross-framework mapping so the same evidence proves compliance with multiple standards.

Compliance Team

07

Quarterly Access Audits

Automated reconciliation across M365, HR system, and PSA with flagged discrepancies for review.

Compliance Team

08

Termination Timing Verification

Proof that access was revoked within required compliance windows, with timestamps.

Compliance Team

09

Vendor Access Tracking

Third-party account provisioning and deprovisioning with documented approvals.

Compliance Team

10

Ticket Triage and Routing

Auto-categorize inbound tickets and assign to the right queue before a human touches them.

Service Desk

11

Just-in-Time Admin Access

Request-approve-expire flows with automatic revocation and a complete audit record.

Service Desk

12

Patch Approval Workflow

Orchestrate approval, documentation, and audit trail around patching. Execution stays in your RMM.

Service Desk

13

License Reconciliation

Flag over-provisioned seats across M365, Duo, SentinelOne, and more — recover wasted spend monthly.

Finance Team

14

Endpoint Count Reconciliation

Reconcile RMM endpoint counts against PSA billing records. Stop underbilling your own clients.

Finance Team

15

Multi-Entity Allocation

License and usage pooling reports for MSPs serving umbrella parent-subsidiary client structures.

Finance Team

16

Complete Audit Trail

Every action, every actor, every integration call — stored indefinitely, queryable, exportable.

Compliance Team

Audit Trail

The record your auditor wishes you had.

Every action coreMSP takes is logged with who, what, when, and why. Export it for any audit, any client, any time range. No more reconstructing the past from ticket memory or tribal knowledge.

Activity Log — Last 24 hours

Showing 7 of 1,247 events · All clients

Apr 24, 14:23

⚙

coreMSP Agent

Provisioned new M365 E3 license

Playbook: New Hire Onboarding · Acme Logistics

sarah.m@acmelog.com

✓ Success

Apr 24, 13:45

JC

J. Chen

Approved admin access request

Duration: 4 hours · Reason: DB migration

Meridian Capital

✓ Approved

Apr 24, 13:12

⚙

coreMSP Agent

Revoked all access — employee offboarded

11 systems · Completed in 47 sec · 28 min before required window

jrodriguez@meridiancap.com

✓ Success

Apr 24, 12:40

⚙

coreMSP Agent

Captured evidence for CMMC AC.L2-3.1.5

Least privilege assignment documented across 7 playbooks

BlueRidge Health

✓ Captured

Apr 24, 11:58

MR

M. Rao

Reconciled license usage

12 unused M365 seats identified · $2,880/year recoverable

All clients

✓ Complete

Apr 24, 10:15

⚙

coreMSP Agent

Flagged compliance gap

2 accounts without MFA on SOC 2 client · Remediation queued

Harbor Edge Tech

! Flagged

Apr 24, 09:30

AK

A. Koon

Exported evidence package for Q2 audit

247 pieces of evidence · CMMC Level 2 · PDF + structured data

Advanced Business Sol.

✓ Exported

Integrations

We plug into the stack you already built.

coreMSP isn't trying to replace your RMM, your GRC, your PSA, or your EDR. It orchestrates work across them so your team stops being the glue between 20 different tools.

Microsoft 365

Identity

Google Workspace

Identity

Entra ID

Identity

Okta

Identity

Duo

MFA

SentinelOne

EDR

CrowdStrike

EDR

Intune

MDM

ConnectWise

PSA

Autotask

PSA

HaloPSA

PSA

Datto RMM

RMM

N-able

RMM

NinjaOne

RMM

BambooHR

HRIS

Rippling

HRIS

Workday

HRIS

Gusto

HRIS

Control Map

GRC

Vanta

GRC

Drata

GRC

KnowBe4

Awareness

Slack

Productivity

NetSuite

ERP

The work isn't going away. The labor can.

Let us run your numbers with your real data. In 30 minutes we'll show you exactly where your operational drag lives and what coreMSP would save your team in the first 12 months.

INTERACTIVE WIREFRAME · coreMSP CONCEPT