Partner Program
Grow your MSP withsecurity and compliance.
Become a RedTeamTrust partner. You refer clients to independent security assessments and resell compliance management as a monthly subscription. We provide the platform, the tooling, and the reports — you provide the relationship.
What you get as a partner
Operator console
Your dedicated MSSP account. Create organizations, generate assessment bundles, track scan status, manage compliance posture, and invite clients — all in one place.
Referral revenue
Earn a fee for every completed security assessment you refer. RedTeamTrust delivers and brands the reports. You're the trusted advisor who brought in the outside eyes.
Compliance subscription
Resell compliance management as a monthly service. After an assessment, findings automatically map to framework controls. You manage posture; clients get their own GRC portal.
Partner deliverables per assessment
Every completed assessment generates five outputs — four for the proposal meeting, one for your technicians.
Findings slide deck
Partner onlyPPTX — primary tool for the proposal meeting. Ranked findings, attack surface scorecard, real incident case studies, and managed service callouts.
Executive Summary PDF
Share with clientLeave-behind after the meeting. Risk score with band, section-by-section narrative, finding table — suitable for leadership and insurers.
MSSP Remediation PDF
Partner onlyInternal prep document. Step-by-step remediation for each finding organized by attack surface. Use to build the remediation proposal and create tickets.
Technical Detail PDF
Share with ITFull evidence inventory with raw findings, timestamps, and collector checklist. Hand to IT after the client commits.
Compliance gap report
Share with clientFramework-mapped control status after every assessment run. Select the relevant framework — or default to Cyber Insurance Readiness.
Built for your pipeline
Your best prospecting tool is a risk score.
Most SMBs don't know how exposed they are — and most MSPs struggle to make that real without seeming like they're fear-selling. An independent third-party assessment changes the conversation entirely. You're not telling them they have a problem. The data is.
Before they sign
Replace the pitch deck with a risk score
Send a prospect their actual endpoint risk score — a concrete 54/100 with 12 specific findings hits differently than any slide. The neutrality of a third-party report converts skeptics that a vendor conversation never would.
Baseline before you inherit liability
Run an assessment before onboarding any new client. Document their posture on day one with a timestamped, signed authorization record. You know exactly what you're taking on — and you have proof of what pre-existed your engagement.
Walk in with the meeting already structured
The findings slide deck runs a 30–45 minute proposal meeting without prep. Attack surface scorecard, ranked findings, real incident stories, and managed service callouts — built in. Use the MSSP Remediation PDF beforehand to identify which gaps you're already covering.
After they sign
Every finding is a billable conversation
No EDR? Sell EDR. BitLocker off across the fleet? Sell device management. Logging gaps? Sell SIEM. The assessment report isn't a deliverable — it's a structured list of things your clients need that you can provide.
Close compliance as a recurring line
After the assessment, findings auto-map to CIS v8 controls. Show clients their compliance gap report and close them on monthly managed compliance. Assessment becomes the top of a funnel, not a one-time engagement.
Re-assess to demonstrate ROI
Run the assessment again after remediation. Show the risk score improvement — 54 → 81. That before/after story is exactly what clients need to justify continued spend and what you need to justify renewal.
The revenue math
One assessment opens three revenue conversations: the referral fee, a remediation project, and a compliance subscription. A client that starts as a one-time assessment can become an ongoing managed compliance account within the same sales cycle.
Assessment referral
One-time fee
Per completed engagement
Remediation project
Your rates
Scoped from the technical PDF
Compliance subscription
Monthly recurring
Per org, per framework
How the client workflow works
From prospect to managed compliance client in four steps — all initiated from your console.
- 1
Add the organization
Create the client as an organization in your partner console. Set up their ingest configuration.
- 2
Send the assessment bundle
Generate the assessment agent. The client runs it on their endpoint — it collects structured telemetry and sends results back. Written authorization is required before bundle download.
- 3
Present findings and sell remediation
Download the findings slide deck for the proposal meeting and the MSSP Remediation PDF for your internal prep. After the meeting, email the executive PDF as the leave-behind. Use the compliance gap report to close the client on monthly managed compliance.
- 4
Invite the client to their portal
From the org workspace, send an invite link to your client's compliance contact. They click the link, set a password, and access their own GRC portal — a read-only compliance dashboard where they can view control status and upload evidence for manual controls.
Your clients get their own portal
When you're ready to bring a client into compliance management, you send them an invite link from the org workspace. They click it, set up their login, and immediately access a clean GRC dashboard showing their compliance posture across all mapped frameworks.
- ✓Invite link generated in one click from your console
- ✓Client sets their own password — no admin intervention needed
- ✓Read-only compliance dashboard — they see their posture, not yours
- ✓Evidence upload for manual and hybrid controls
- ✓Separate login from your operator console — fully isolated
- ✓You control which frameworks are visible to each client
Ready to get started?
Contact us to apply. We'll set up your partner account and walk you through the console before your first engagement.