aa
Back to Insights
IT Strategy

Do you actually need an IT director?

A plain English answer for UK business owners who are not sure what they are missing.

Dave Lane·6 min read·May 2025

Most UK SMEs fall into one of two camps. Either they have no one looking after IT strategy at all, relying on their IT support company to flag anything important. Or they have grown to a point where IT keeps appearing in management meetings, and nobody is quite sure whose job it is.

The honest answer to "do I need an IT director?" depends on where you are. Here is how to think about it.

Signs you probably do not need one yet

If your business has fewer than 15 staff, IT is stable, and your costs are predictable, the overhead of a dedicated IT director is likely not justified. A good IT support company and a finance director who keeps an eye on the bills may be enough.

The same applies if you have no growth plans, no sensitive data, no regulatory pressure, and no meaningful cyber risk. Some businesses genuinely fit this description. If that is you, keep things simple.

Signs you probably do need one

  • IT keeps coming up in leadership meetings, but no one can give a confident answer to the questions being raised.
  • Your IT costs have grown steadily, but you cannot clearly articulate what you are getting for the increase. You trust that the bills are legitimate, but you have not actually reviewed the contracts in detail.
  • You have had a security incident, or a near miss, and you are not confident that the root cause was properly understood and fixed.
  • You are growing, winning larger clients, or entering sectors where clients ask about your cyber security posture. The question comes up in procurement, in tenders, in board conversations. You do not have a good answer.
  • You rely on one or two IT support contacts, and you have started to wonder what happens if they leave, or if they are not as good as you assumed.
  • You are making significant IT decisions — cloud migrations, new software platforms, changing suppliers — and no one in the business has the experience to validate whether those decisions are the right ones.

The question most businesses get wrong

Most MDs frame the question as: "Do I need to hire an IT director?" That framing leads them to conclude no, because a £100,000 salary is hard to justify.

The better question is: "Is there someone with the right experience and the right independence looking at my IT from a strategic level?"

In most SMEs, the answer is no. The IT support company looks at support. The MD looks at costs. Nobody is looking at the whole picture.

What "strategic oversight" actually means

It means someone asking the questions that do not get asked in a support ticket. Are your suppliers contractually accountable for their performance? Do you know what your actual cyber risk exposure is, not the version your IT company presented to you, but an independent assessment? Is your IT spend aligned with your business priorities, or has it grown because of inertia and upselling?

It also means someone being present when you need them. When a supplier is underperforming. When a contract is up for renewal. When you are considering a significant technology change and you want a second opinion that has nothing to do with what gets sold to you.

The fractional model

A fractional IT director works with you part-time. Usually a fixed number of days per month, structured around your board cycle and your supplier relationships.

The cost is a fraction of a full-time hire, because you are paying for oversight, not presence. A business with 30 or 50 staff does not need 40 hours of IT direction per week. It needs a few hours of the right thinking at the right moments.

The model works well for businesses at inflection points. Growing quickly. Facing increased regulatory or cyber pressure. Entering new markets. Dealing with a supplier relationship that has started to feel uncertain.

The independence question

If you decide to engage a fractional IT director, independence matters more than credentials.

A fractional IT director who is also connected to a managed IT provider, or who earns commissions on what you buy, is not independent. They are an extension of the commercial relationship you are already trying to get outside perspective on.

Independence means their income comes from the quality of their advice, not from what they recommend you spend. That is the only structure that gives you genuinely neutral oversight.

A simple test

Ask yourself this: if something went wrong with your IT tomorrow, a data breach, a ransomware attack, a supplier failure, is there someone in your corner who would give you an honest assessment of what happened and why?

If the only people you could call are the suppliers involved in the incident, you do not have independent oversight. You have a commercial relationship hoping for the best.

That gap is what an IT director fills. Not every business needs one immediately. But most businesses that are growing, or carrying real cyber risk, or spending significant money on IT without clear accountability, will benefit from it.

If you are not sure which category you fall into, a short conversation is usually enough to find out.

Dave Lane

Dave Lane

Fractional IT Director

25 years working across IT infrastructure, cyber security, risk, and governance. I work with business owners and MDs as their independent IT director. No vendor commissions. No managed services to sell.

Keep reading

IT Strategy

What does an outsourced IT director actually do?

Read IT Strategy

Why your IT support company can't be your IT director

Read

Sound familiar?

If any of this resonates, let's have a conversation. No sales process. Just an honest conversation about what you're dealing with.