Getting Started
Quick Start Architecture
AI Agents
MSP Hunter Threat Researcher Tech Support Compliance Agent Account Manager Onboarding Agent
Compliance
HIPAA SOC 2 PCI-DSS NIST
Guides
First 30 Days Scaling
API
Overview Endpoints

MSP Hunter

AI-Powered Lead Generation & Pipeline Intelligence

What It Does

MSP Hunter is Gridlock's AI lead generation engine. It finds businesses that need managed security services, scores them on likelihood to buy, and drafts personalized outreach campaigns โ€” all without any manual prospecting work from your team. Feed it a target vertical or geography and it returns a prioritized list of prospects with contact intelligence, firmographic data, and suggested outreach copy ready to send.

Unlike generic sales tools, MSP Hunter understands the MSP buying context: companies that just suffered a breach, firms in regulated industries approaching a compliance deadline, businesses that recently hired a new IT director, and organizations running outdated infrastructure are all surfaced and scored accordingly.

What This Agent Replaces

MSP Hunter replaces cold list purchasing, manual LinkedIn prospecting, and spray-and-pray email campaigns. The average Gridlock MSP partner reports saving 12+ hours per week on prospecting after enabling this agent.

How It Works

The agent runs a five-stage pipeline every time you trigger a hunt. You can run it on demand from the dashboard or schedule it on a recurring cadence (daily, weekly, or monthly by vertical).

๐ŸŽฏ Target

Define vertical, region, company size

๐Ÿ” Discover

Surface matching companies

๐Ÿ“Š Score

CVSS-style 0โ€“100 lead score

โœ๏ธ Draft

A/B outreach variants

๐Ÿ“ฅ Pipeline

Push to CRM or CSV

Target Verticals

MSP Hunter maintains intent signals and firmographic data across the highest-value verticals for managed security services. Each vertical has pre-tuned scoring weights reflecting how MSP services are bought in that sector.

Vertical Primary Driver Avg. Deal Size Typical Timeline
Healthcare / Medical Practices HIPAA compliance deadline or audit $2,800 โ€“ $6,500 / mo 30 โ€“ 60 days
Legal Firms Client data confidentiality obligations $1,500 โ€“ $4,200 / mo 45 โ€“ 90 days
Financial Services / CPA FTC Safeguards Rule, SOC 2 $2,200 โ€“ $5,800 / mo 30 โ€“ 75 days
Manufacturing OT/IT convergence, ransomware exposure $3,500 โ€“ $9,000 / mo 60 โ€“ 120 days
Education (K-12 / Higher Ed) FERPA, rising ransomware targeting $1,800 โ€“ $5,000 / mo 45 โ€“ 90 days
Professional Services Cyber insurance requirements $1,200 โ€“ $3,600 / mo 30 โ€“ 60 days
Government / Municipal CISA directives, budget cycles $4,000 โ€“ $12,000 / mo 90 โ€“ 180 days

Lead Scoring Algorithm

Every prospect receives a composite score from 0 to 100, modeled after CVSS (Common Vulnerability Scoring System) severity math. The score combines four independently weighted dimensions. A score above 75 is considered hot โ€” prioritize these for same-week outreach.

Scoring Dimensions

Dimension Weight What It Measures High-Score Signals
Budget Fit 25% Ability and propensity to pay MSP retainers 50+ employees, $5M+ revenue, prior IT spend detected
Need Urgency 35% Active security pain signals in public data Recent breach news, CVE exposure, compliance deadline within 90 days
Decision Timeline 20% How quickly they can sign a contract New IT director hire, open RFP, fiscal year end within 60 days
Competitive Landscape 20% How easy it is to displace their current provider No current MSP, MSP in unrelated vertical, bad review signals

Score Bands

75โ€“100   HOT   Engage within 48 hours. High urgency + budget fit. Prioritize phone outreach first, email second.

50โ€“74   WARM   Add to a drip sequence. Good fit but longer timeline or moderate urgency. Re-score in 30 days.

0โ€“49   COLD   Not ready now. Archive or place in a 90-day nurture track. Do not spend manual sales effort here.

Score Drift

Lead scores are recalculated automatically every 7 days. A COLD lead can flip HOT overnight if a breach is disclosed, a compliance deadline passes, or new contact data surfaces. Enable score-change alerts in your dashboard notification settings to catch these moments.

Sample Lead Profile

This is what a scored lead looks like in the dashboard and in CSV export.

Cascade Orthopedics & Spine
Healthcare  ยท  Portland, OR  ยท  87 employees
84
Lead Score
Budget Fit โ€” 22/25
Need Urgency โ€” 32/35
Decision Timeline โ€” 16/20
Competitive Landscape โ€” 14/20

Intelligence: HIPAA Security Rule compliance audit due Q3 2026. No dedicated security MSP โ€” currently handled by an internal IT generalist (2 staff). Three unpatched Windows Server 2019 systems detected via Shodan. New Practice Administrator (decision-maker) started February 2026. Cyber insurance renewal in August.

A/B Email Variant Generation

For every qualified lead, MSP Hunter drafts two outreach variants. Run both variants to a split of your list and let the response rate data guide which angle you scale.

Variant A: Pain-Focused

Leads with the pain-focused approach by surfacing a specific, real vulnerability or compliance risk tied to the prospect. Uses factual signals pulled from open sources (Shodan, breach databases, regulatory filings) to create a credible "I did my homework" impression. Converts well with technical buyers (IT directors, CTOs).

Subject: Cascade Orthopedics โ€” 3 exposed systems I noticed this morning

Hi [First Name], I was doing some routine threat surface research on healthcare providers in Portland and noticed Cascade Orthopedics has three Windows Server systems reachable on the open internet without proper hardening. With your HIPAA audit coming up in Q3, that's exactly the kind of finding that creates real exposure โ€” both technically and for your organization's liability. We help medical practices like yours get audit-ready and stay protected. Worth a 15-minute call?

Variant B: ROI-Focused

Opens with the cost of inaction โ€” breach costs, downtime, regulatory fines โ€” framed against the predictable monthly cost of managed protection. Converts well with business decision-makers (practice owners, CFOs, operations managers) who respond to financial framing.

Subject: What a healthcare breach actually costs in Oregon (numbers might surprise you)

Hi [First Name], the average ransomware attack on a medical practice in 2025 cost $312,000 in recovery โ€” that's before HIPAA penalties, which averaged $1.2M for practices under 100 employees. For less than the cost of a single part-time IT hire, Gridlock gives Cascade Orthopedics enterprise-grade protection and handles your HIPAA compliance documentation automatically. I'd love to show you the numbers. Can we find 15 minutes this week?
Best Performing Subject Lines

Analysis across Gridlock partner campaigns shows subject lines that reference a specific company name + a concrete finding outperform generic cybersecurity subject lines by 4.2x on open rate. Always personalize the subject โ€” MSP Hunter does this automatically when sufficient lead intelligence exists.

Campaign Management

Campaigns let you organize hunts by vertical, region, or any combination. A campaign runs continuously in the background and surfaces new leads as they meet your scoring threshold.

Creating a Campaign

  1. Navigate to Agents โ†’ MSP Hunter โ†’ New Campaign in the dashboard.
  2. Set your Target Vertical (single vertical or "All Verticals").
  3. Set your Geography โ€” state, metro area, or radius from a zip code.
  4. Set the Minimum Score Threshold (default: 60). Leads below this score are silently discarded and never appear in your pipeline.
  5. Choose your Outreach Variant โ€” Pain, ROI, or A/B Split.
  6. Set your Cadence โ€” how often to re-run the hunt (daily, weekly, monthly).
  7. Activate. The first results typically appear within 2โ€“4 hours.

Campaign Filters

Advanced filters let you narrow results:

CRM & Lead Pipeline

Every lead generated by MSP Hunter flows into the built-in pipeline. The pipeline tracks each lead through six statuses from initial discovery to close.

New Contacted Responded Qualified Won Lost
Status Definition Recommended Action
New Lead discovered and scored, no outreach yet Review the intelligence summary. Send Variant A or B, or both if A/B split is enabled.
Contacted At least one outreach touch sent Wait 3 business days. If no response, send a follow-up. MSP Hunter suggests follow-up copy.
Responded Prospect replied to any touch Route to a human rep immediately. Time-to-response here is the #1 close rate factor.
Qualified Discovery call completed; confirmed budget, need, authority, and timeline Prepare a custom security assessment or proposal using the Threat Researcher agent output.
Won Contract signed Trigger the Onboarding Agent to begin the client setup flow.
Lost Prospect declined or went dark after qualification Add to a 6-month re-score queue. Circumstances change. Score again in 180 days.

Competitive Analysis

Before you pitch a prospect, MSP Hunter can generate a competitive brief covering who their current security provider is (if any), what gaps that provider likely has, and how to position Gridlock against them. This brief is attached to every qualified lead automatically when the data is available.

What the Competitive Brief Includes

Ethical Use of Competitive Intelligence

All competitive intelligence is sourced from public data only โ€” breach disclosures, regulatory filings, job postings, and published reviews. MSP Hunter never uses deceptive research methods. Do not represent unverified intelligence as confirmed facts in sales conversations.

CSV Export & CRM Integration

Export your pipeline at any time from Agents โ†’ MSP Hunter โ†’ Export. The CSV includes all scored fields, contact data, intelligence summaries, and generated email copy.

CSV Column Reference

Column Description
lead_idUnique identifier for deduplication on re-import
company_nameLegal entity name
verticalIndustry vertical assigned by the agent
employee_countEstimated headcount
city, statePrimary business location
lead_scoreComposite score 0โ€“100
score_budgetBudget Fit sub-score (0โ€“25)
score_urgencyNeed Urgency sub-score (0โ€“35)
score_timelineDecision Timeline sub-score (0โ€“20)
score_competitiveCompetitive Landscape sub-score (0โ€“20)
contact_namePrimary decision-maker name (when available)
contact_titleDecision-maker title
contact_emailBest available email (verified where possible)
contact_linkedinLinkedIn profile URL
intelligence_summaryPlain-text intelligence brief (1โ€“3 sentences)
email_variant_aPain-focused email body text
email_variant_bROI-focused email body text
pipeline_statusCurrent CRM status
scored_atISO 8601 timestamp of most recent scoring

Outreach Best Practices for MSPs

Sequence Structure That Works

  1. Day 1: Send personalized email (MSP Hunter Variant A โ€” pain-focused). Keep it under 120 words. One specific finding. One clear CTA (15-minute call).
  2. Day 4: Follow-up email โ€” restate the risk, add social proof (similar client in same vertical). MSP Hunter generates this automatically.
  3. Day 8: LinkedIn connection request with a brief, non-salesy note referencing the same specific finding.
  4. Day 12: Final email โ€” "closing the loop." Offer a free, no-obligation security assessment. This converts a meaningful portion of non-responders.
  5. Day 30+: Archive to nurture. Re-score at 90 days.

Rules That Improve Reply Rates

FAQ

How many leads does MSP Hunter generate per campaign run?

Volume depends on your target vertical, geography, and minimum score threshold. A regional healthcare campaign (single metro, 50+ employees, score >= 60) typically returns 15โ€“40 leads per weekly run. Widening to a full state or lowering the score threshold increases volume but decreases average lead quality. We recommend starting with a tighter filter and score threshold โ‰ฅ 65, then loosening as you build capacity to work the leads.

What plan do I need to use MSP Hunter?

MSP Hunter is included on Pro ($299/mo) and Ultimate ($499/mo) plans. Starter includes the Threat Researcher and Tech Support agents but not MSP Hunter. If you're on Starter and want access, you can upgrade from the Billing section of your dashboard without losing any existing data.

Are the generated emails compliant with CAN-SPAM and GDPR?

MSP Hunter generates copy that is CAN-SPAM compliant by default (clear sender identification, physical address included, unsubscribe mechanism). For GDPR compliance, you are responsible for ensuring a legitimate interest basis for B2B outreach in EU jurisdictions. We recommend consulting your legal counsel before running campaigns targeting EU-domiciled companies. MSP Hunter adds a note to each lead flagged as EU-based to remind you.

Can I import my own prospect list and have MSP Hunter score it?

Yes. Use the Import CSV option under Agents โ†’ MSP Hunter. Upload a file with at minimum a company name and state column. MSP Hunter will enrich each record with intelligence data and score every company in your list, then add them to your pipeline. Enrichment typically completes within 30 minutes for lists under 500 companies.