Modal Title
Cloud Native Ecosystem Containers Edge Computing Microservices Networking Serverless Storage
How GitHub Uses GitHub to Be Productive and Secure
May 31st 2023 10:30am, by Loraine Lawson
Top 3 Application Security Must-Haves
May 26th 2023 7:59am, by Guilherme (Gui) Alvarenga
Cloud Native Skill Gaps are Killing Your Gains 
May 22nd 2023 7:15am, by Victoria Wright
A Boring Kubernetes Release
May 19th 2023 12:23pm, by Alex Williams
Why Upgrade to Observability from Application Monitoring?
May 19th 2023 11:49am, by George Hamilton
Chainguard Improves Security for Its Container Image Registry
May 31st 2023 6:30am, by Steven J. Vaughan-Nichols
How to Protect Containerized Workloads at Runtime
May 30th 2023 4:00am, by Kevin Casey
How to Containerize a Python Application with Paketo Buildpacks
May 29th 2023 5:00am, by Sylvain Kalache
Can Rancher Deliver on Making Kubernetes Easy?
May 27th 2023 7:00am, by Jack Wallen
Red Hat Podman Container Engine Gets a Desktop Interface
May 23rd 2023 7:30am, by Joab Jackson
Dell Intros New Edge, Generative AI, Cloud, Zero Trust Prods
May 31st 2023 11:00am, by Chris J. Preimesberger
Gothenburg, Sweden Used Open Source IoT to Drastically Cut Water Waste
May 23rd 2023 6:58am, by Alex Handy
Building a Plant Monitoring Tool with IoT
May 8th 2023 9:27am, by Zoe Steinkamp
How to Choose and Model Time Series Databases
Apr 28th 2023 3:00am, by Robert Kimani
How to Optimize Queries for Time Series Data
Apr 27th 2023 12:00pm, by Robert Kimani
Case Study: A WebAssembly Failure, and Lessons Learned
May 25th 2023 7:00am, by Susan Hall
RabbitMQ Is Boring, and I Love It
May 15th 2023 6:30am, by Josh Long
How OpenSearch Visualizes Jaeger's Distributed Tracing
May 11th 2023 10:00am, by Derek Ho and Jonah Kowall
Spring Cloud Gateway: The Swiss Army Knife of Cloud Development
May 8th 2023 6:47am, by Juergen Sussner
Return of the Monolith: Amazon Dumps Microservices for Video Monitoring
May 4th 2023 7:23am, by Joab Jackson
WithSecure Pours Energy into Making Software More Efficient
Jun 1st 2023 7:14am, by Joe Fay
Don't Force Containers and Disrupt Workflows
May 25th 2023 3:10pm, by Alex Williams
How to Decide Between a Layer 2 or Layer 3 Network
Apr 25th 2023 10:00am, by Gino Dion
Linkerd Service Mesh Update Addresses More Demanding User Base
Apr 11th 2023 6:17am, by Joab Jackson
Wireshark Celebrates 25th Anniversary with a New Foundation
Mar 28th 2023 5:00am, by Joab Jackson
Microsoft Fabric Defragments Analytics, Enters Public Preview
May 23rd 2023 8:00am, by Andrew Brust
Forrester on WebAssembly for Developers: Frontend to Backend
May 17th 2023 6:00am, by Loraine Lawson
Return of the Monolith: Amazon Dumps Microservices for Video Monitoring
May 4th 2023 7:23am, by Joab Jackson
IBM's Quiet Approach to AI, Wasm and Serverless
May 4th 2023 6:00am, by Loraine Lawson
Cloud Control Planes for All: Implement Internal Platforms with Crossplane
Apr 13th 2023 10:00am, by Bassam Tabbara
The Architect’s Guide to Storage for AI
Jun 1st 2023 7:44am, by Keith Pijanowski
8 Real-Time Data Best Practices
Jun 1st 2023 5:00am, by Jennifer Riggins
Raft Native: The Foundation for Streaming Data’s Best Future
May 30th 2023 9:44am, by Doug Flora
Why the Document Model Is More Cost-Efficient Than RDBMS
May 25th 2023 9:24am, by Rick Houlihan
Amazon Aurora vs. Redshift: What You Need to Know
May 25th 2023 6:27am, by Casey Samulski
Frontend Development Software Development Typescript WebAssembly Cloud Services Data Machine Learning Security
Bluesky vs. Nostr — Which Should Developers Care About More?
May 30th 2023 7:51am, by
Bad by Design: The World of Intentionally Awful User Interfaces
May 28th 2023 6:00am, by
Dev News: New Microsoft Edge Tools and Goodbye Node.js 16
May 27th 2023 6:00am, by
4 Anti-Patterns That Microsoft Recommends Web Devs Avoid
May 26th 2023 6:56am, by
New Image Trends Frontend Developers Should Support
May 25th 2023 6:00am, by
The Architect’s Guide to Storage for AI
Jun 1st 2023 7:44am, by
WithSecure Pours Energy into Making Software More Efficient
Jun 1st 2023 7:14am, by
How GitHub Uses GitHub to Be Productive and Secure
May 31st 2023 10:30am, by
Crisis-Driven Development: How to Use Instability for Growth
May 31st 2023 9:53am, by
How to Improve Operational Maturity in an Economic Downturn
May 31st 2023 8:30am, by
Dev News: New Microsoft Edge Tools and Goodbye Node.js 16
May 27th 2023 6:00am, by
Dev News: Angular v16, plus Node.js and TypeScript Updates
Apr 22nd 2023 4:00am, by
This Week in Computing: Malware Gone Wild
Mar 25th 2023 7:10am, by
TypeScript 5.0: New Decorators Standard, Smaller npm
Mar 24th 2023 11:25am, by
JavaScript or WebAssembly: Which Is More Energy Efficient and Faster?
Jan 30th 2023 9:51am, by
Case Study: A WebAssembly Failure, and Lessons Learned
May 25th 2023 7:00am, by
New Image Trends Frontend Developers Should Support
May 25th 2023 6:00am, by
Could WebAssembly Be the Key to Decreasing Kubernetes Use?
May 22nd 2023 6:00am, by
Forrester on WebAssembly for Developers: Frontend to Backend
May 17th 2023 6:00am, by
Dev News: Dart 3 Meets Wasm, Flutter 3.10, and Qwik ‘Streamable JavaScript’
May 13th 2023 9:00am, by
Dell Intros New Edge, Generative AI, Cloud, Zero Trust Prods
May 31st 2023 11:00am, by
Cloud Dependencies Need to Stop F---ing Us When They Go Down
May 25th 2023 10:00am, by
Microsoft Fabric Defragments Analytics, Enters Public Preview
May 23rd 2023 8:00am, by
A Boring Kubernetes Release
May 19th 2023 12:23pm, by
Optimizing Mastodon Performance with Sidekiq and Redis Enterprise
May 18th 2023 10:30am, by and
Bringing AI to the Data Center 
Jun 1st 2023 6:13am, by
8 Real-Time Data Best Practices
Jun 1st 2023 5:00am, by
MongoDB vs. PostgreSQL vs. ScyllaDB: Tractian’s Experience
May 31st 2023 6:10am, by and
Oracle Support for MySQL 5.7 Ends Soon, Key Upgrades in 8.0
May 30th 2023 10:35am, by
Raft Native: The Foundation for Streaming Data’s Best Future
May 30th 2023 9:44am, by
Maker Builds a ChatGPT DOS Client for a 1984 Computer
May 31st 2023 11:04am, by
Google’s Generative AI Stack: An In-Depth Analysis
May 31st 2023 7:59am, by
MongoDB vs. PostgreSQL vs. ScyllaDB: Tractian’s Experience
May 31st 2023 6:10am, by and
Alteryx Announces AiDIN for AI-Powered Features
May 26th 2023 8:06am, by
Proprietary AI Models Are Dead. Long Live Proprietary AI Models 
May 26th 2023 6:13am, by
Chainguard Improves Security for Its Container Image Registry
May 31st 2023 6:30am, by
How to Integrate OpenShift with Keycloak
May 30th 2023 11:00am, by
Cloud Security: Don’t Confuse Vendor and Tool Consolidation
May 30th 2023 6:24am, by
How to Protect Containerized Workloads at Runtime
May 30th 2023 4:00am, by
Top 3 Application Security Must-Haves
May 26th 2023 7:59am, by
Platform Engineering Operations CI/CD Tech Life DevOps Kubernetes Observability Service Mesh
How to Host Your Own Platform as a Product Workshop
May 31st 2023 9:09am, by Jennifer Riggins
Take a Platform Engineering Deep Dive at PlatformCon 2023
May 26th 2023 10:00am, by Carrie Tang
Developer Platforms: Key Findings from a Forrester Snapshot
May 19th 2023 10:52am, by Aeris Stewart
How Otomi Helped the City of Utrecht Move to Kubernetes
May 15th 2023 10:00am, by Sander Rodenhuis
IBM Cloud CTO: Pros Outweigh the Cons with Platform Engineering
May 5th 2023 6:00am, by Loraine Lawson
How to Improve Operational Maturity in an Economic Downturn
May 31st 2023 8:30am, by Jonathan Rende
MongoDB vs. PostgreSQL vs. ScyllaDB: Tractian’s Experience
May 31st 2023 6:10am, by Joao Pedro Voltani and Joao Granzotti
How to Protect Containerized Workloads at Runtime
May 30th 2023 4:00am, by Kevin Casey
Meet The Hobbyists Building Their Own DIY Cyberpunk Devices
May 29th 2023 6:00am, by David Cassel
Cloud Dependencies Need to Stop F---ing Us When They Go Down
May 25th 2023 10:00am, by Jeff Martens
Is DevOps Tool Complexity Slowing Down Developer Velocity?
May 17th 2023 6:29am, by Heather Joslyn and Lawrence E Hecht
AI Has Become Integral to the Software Delivery Lifecycle
May 12th 2023 11:01am, by Richard MacManus
4 Core Principles of GitOps
May 11th 2023 2:17pm, by Alex Williams
5 Version-Control Tools Game Developers Should Know About
May 9th 2023 10:00am, by Sharone Zitzman
Mitigate Risk Beyond the Supply Chain with Runtime Monitoring
May 8th 2023 10:00am, by Mike Long
Maker Builds a ChatGPT DOS Client for a 1984 Computer
May 31st 2023 11:04am, by David Cassel
Crisis-Driven Development: How to Use Instability for Growth
May 31st 2023 9:53am, by Ivan Letenko
Bluesky vs. Nostr — Which Should Developers Care About More?
May 30th 2023 7:51am, by Richard MacManus
Meet The Hobbyists Building Their Own DIY Cyberpunk Devices
May 29th 2023 6:00am, by David Cassel
Bad by Design: The World of Intentionally Awful User Interfaces
May 28th 2023 6:00am, by David Cassel
Cloud Security: Don’t Confuse Vendor and Tool Consolidation
May 30th 2023 6:24am, by Rani Osnat
Take a Platform Engineering Deep Dive at PlatformCon 2023
May 26th 2023 10:00am, by Carrie Tang
Developer Guide: A New Way to Build on the Slack Platform
May 26th 2023 8:30am, by Lauren Gil
Better Security with ChatGPT: Using AI's Defensive Strengths
May 26th 2023 6:00am, by Jeff Goldman
Is Open Source the Original Product-Led Growth?
May 25th 2023 7:32am, by Kim McMahon
How to Protect Containerized Workloads at Runtime
May 30th 2023 4:00am, by Kevin Casey
Can Rancher Deliver on Making Kubernetes Easy?
May 27th 2023 7:00am, by Jack Wallen
Don't Force Containers and Disrupt Workflows
May 25th 2023 3:10pm, by Alex Williams
Overcoming the Kubernetes Skills Gap with ChatGPT Assistance
May 23rd 2023 11:00am, by Dev Nag
Could WebAssembly Be the Key to Decreasing Kubernetes Use?
May 22nd 2023 6:00am, by Loraine Lawson
Red Hat Ansible Gets Event-Triggered Automation, AI Assist on Playbooks
May 24th 2023 6:22am, by Joab Jackson
Observability: Working with Metrics, Logs and Traces
May 22nd 2023 8:23am, by Jessica Wachtel
Why Upgrade to Observability from Application Monitoring?
May 19th 2023 11:49am, by George Hamilton
Datadog’s $65M Bill and Why Developers Should Care
May 17th 2023 10:56am, by Loraine Lawson
How OpenSearch Visualizes Jaeger's Distributed Tracing
May 11th 2023 10:00am, by Derek Ho and Jonah Kowall
Don't Force Containers and Disrupt Workflows
May 25th 2023 3:10pm, by Alex Williams
Linkerd Service Mesh Update Addresses More Demanding User Base
Apr 11th 2023 6:17am, by Joab Jackson
How to Create Zero Trust Architecture for Service Mesh
Mar 27th 2023 7:00am, by Joe Fay
Ambient Mesh: Sidestepping the Sidecar
Mar 1st 2023 8:44am, by Jeff Goldman
Service Mesh Demand for Kubernetes Shifts to Security
Oct 27th 2022 11:04am, by B. Cameron Gain
Observability / Security

Better Incident Management Requires More than Just Data

You should expect your company's number of incidents to increase, as you begin to embrace a culture of failure and learning.
Sep 22nd, 2021 10:00am by
Featued image for: Better Incident Management Requires More than Just Data
Feature image via Pixabay.

Cole Potrocky
Cole Potrocky is the co-founder and CTO of Kintaba and was a founding engineer on the Facebook Workplace team.

It’s 1900, and the cobra population is out of control in Delhi. The British Government, outsiders by any definition, brainstorm ways to deal with the issue. They stumble upon an obvious, if macabre, answer: pay people for each cobra head they bring to the crown. Everything goes swimmingly for a while: the cobra population is going down and people are getting paid well for facilitating the decline, perhaps too well. People start breeding cobras to collect a higher bounty. The cobra population explodes. The problem is now worse than ever.

The British Government got caught in a perverse incentive: they started rewarding people to make their problem worse. Perverse incentives are everywhere today, and they happen because of a lack of understanding of a problem. One must ask: how do incentives distort the problem I’m trying to solve?

“There is a quality even meaner than outright ugliness or disorder, and this meaner quality is the dishonest mask of pretended order, achieved by ignoring or suppressing the real order that is struggling to exist and to be served.”

— Jane Jacobs, The Death and Life of Great American Cities

To the uninitiated, all complexity looks like chaos. Real order requires understanding.  Real understanding requires context. I’ve seen teams all over the tech world abuse data and metrics because they don’t relate it to its larger context: what are we trying to solve and how might we be fooling ourselves to reinforce our own biases?

In no place is this more true in the world of incident management. Things go wrong in businesses, large and small, every single day. Those failures often go unreported, as most people see failure through the lens of blame, and no one wants to admit they made a mistake.

Because of that fact, site reliability engineering (SRE) teams establishing their own incident management process often invest in the wrong initial metrics. Many teams are overly concerned with reducing MTTR: mean time to resolution. Like the British government, those teams are overly relying on their metrics and not considering the larger context. Incidents are almost always going to be underreported initially: people don’t want to admit things are going wrong. If people are judged on their ability to close incidents quickly, they’ll close incidents too early, or declare them too late.

Companies just adopting an incident response strategy should focus on metrics to help normalize failure as a regular component of doing business. Incident count is one of those metrics: paradoxically you should expect your company’s number of incidents to increase, as you begin to embrace a culture of failure and learning.

Three Ways to Actually Improve Incident Response

  • Embrace Failure. Early on you need to normalize failure, so looking at increasing incidents is important. Once you have a track record of actively recording incidents, you can consider measuring MTTR because you’ll have a proper baseline. And you’ll have created a culture where, if a major incident requires a lot of time to reach a resolution, you won’t be so influenced by measuring MTTR that you take a counter-productive action like closing out the incident early.
  • Work to understand the context. No metric works without understanding of the larger context. C-suite should practice scuttlebutt and watch incidents take place (or even participate) to understand the pain points of day-to-day incidents, and to understand how metrics rarely show the full picture. As an executive, if your level of involvement is just wanting to see a report each month with metrics like MTTR decreasing — you’ll never actually create a resilient culture.
  • Don’t suffocate the process. When your product isn’t working, it can be tempting to push your responders to fix things quicker. Build trust with your teams, and acknowledge that they’re composed of human beings who need time and space to solve difficult issues. Micromanaging or over-optimizing during active incidents just increases stress and paradoxically will reduce your teams’ ability to respond effectively.

No combination of metrics can help you determine your company’s effectiveness at incident response. Data is just the starting point: it informs a hypothesis that company leaders need to confirm by using their eyes and ears. All of this together will help you build a realistic view of your company’s incident response. Remember: your goal as a company isn’t to reduce mean-time-to-recovery, it’s to learn from failure and build a more resilient organization.

Group Created with Sketch.
SHARE THIS STORY
RELATED STORIES
Kubernetes Troubleshooting Primer Red Hat Ansible Gets Event-Triggered Automation, AI Assist on Playbooks Why Sumo Logic Embraced the OpenTelemetry Standard FAQ: PagerDuty on How to Make AIOps More Efficient 3 Observability Best Practices for Cloud Native App Security
TNS owner Insight Partners is an investor in: Real.
RELATED STORIES
Kubernetes Troubleshooting Primer Reframing Kubernetes Observability with a Graph Maximizing Kubernetes Efficiency with OpenTelemetry Tracing Usenix: Continuous Integration Is Just SRE Alerting 'Shifted Left' Distributed Tracing Is Failing. How Can We Save It?
THE NEW STACK UPDATE A newsletter digest of the week’s most important stories & analyses.