Devops teams exist to make the answers to the following questions a resounding "Absolutely!". If there is any question in this list that you're not 110% confident in the "Absolutely!", then that's the next thing to work on. And, yes, this list is ordered from most important to least important.
- Can we confidently rebuild our production environment from source control and backups of data?
- In under an hour?
- Including all monitoring, alerting, and metrics gathering?
- Can we confidently terminate one person's access?
- In under 10 minutes?
- With one command?
- Can we confidently create a instance of the application?
- That is a structural clone of production?
- With reasonable fake data?
- In one command?
- On a laptop?
- Can we confidently turn off any one server in production at any time?
- With zero impact or visibility to users?
- Including your:
- database master?
- session store?
- Can we confidently tell anyone to take 3 months leave to care for a sick family member?
- Without ever calling them once?
- Can we confidently hire into any spot and have that person fully authenticated and authorized?
- With nothing missing?
- In their first hour?
- Before they even show up?
- Can we confidently hire someone into IT and have them make a change to production?
- In their first week?
- In their first day?
- Can we confidently say that what is reviewed in QA is EXACTLY what can go to production?
- Can we confidently let anyone promote from one environment to the next?
- With a button?
- Showing them exactly what will be promoted?
- As issue numbers linked from your issue tracker?
- With rollbacks?
- Do you have tests of your infrastructure?
- Including monitoring, alerting, and metrics gathering?
- Including external interfaces?
- Run as part of a CI service?
- With automated coverage statistics?
- Over 90%?
Implicit in every question is the follow-up "How do you know?" If you ask yourself these questions and cannot point to where you did that yesterday (or the last time, in the case of authn/z changes), then you're treating your infrastructure as magic.
Next post discusses where to start.
Next post discusses where to start.
No comments:
Post a Comment