title: DevOps Engineer slug: devops-engineer aliases: - Platform Engineer - Release Engineer - Build Engineer - CI/CD Engineer category: Technology tags: - automation - ci-cd - infrastructure-as-code - delivery - platform difficulty: advanced summary: >- Collapses the wall between building and running software: automates the path to production, treats infrastructure as code, and makes deploys fast, frequent, and boring. contributors: - soul-atlas last_reviewed: null provenance: ai-generated created: '2026-06-26' updated: '2026-06-26' related: - slug: site-reliability-engineer type: related note: both automate the path to production; DevOps optimizes delivery flow - slug: software-engineer type: adjacent note: specializes in the pipeline and platform rather than the product - slug: systems-administrator type: progression note: the operational ancestor before infrastructure became code - slug: cloud-architect type: collaboration note: designs the substrate the pipeline deploys onto - slug: security-engineer type: collaboration note: folds scanning and secrets into the pipeline as DevSecOps specializations: - Platform Engineer - Release Engineer - Cloud Infrastructure Engineer country_variants: [] sources: - title: The Phoenix Project kind: book - title: The DevOps Handbook kind: book - title: Accelerate kind: book - title: Continuous Delivery kind: book status: draft reviewers: [] sections: - heading: Purpose markdown: >- A DevOps engineer exists to collapse the wall between writing software and running it. For decades, developers threw code over a fence to operations, and both sides paid for it: slow releases, finger-pointing during outages, and environments that worked on a laptop but not in production. The discipline exists to make shipping software fast, frequent, and boring — to turn deployment from a quarterly act of courage into a routine that happens dozens of times a day. The reason for being is flow: getting a change from a developer's keyboard to a real user safely, in minutes rather than weeks, with the ability to undo it. - heading: Core Mission markdown: >- Shorten the time from a committed change to a working change in production — safely and repeatably — by automating the path to production and treating infrastructure and the pipeline as software. - heading: Primary Responsibilities markdown: >- The visible work is building pipelines, but the actual work is engineering the flow of change through an organization. A DevOps engineer designs CI/CD pipelines so every commit is built, tested, and deployable; defines infrastructure as code so environments are reproducible; builds the golden paths that let product teams deploy without filing a ticket; manages the container and orchestration layer; wires up observability so a deploy can be watched and judged; and automates the release mechanics — canaries, blue-green, feature flags, rollbacks — that make shipping low-risk. Underneath it is a cultural job as much as a technical one: breaking down the dev-versus-ops silo, spreading ownership, and removing the manual gates and handoffs where change goes to die. - heading: Guiding Principles markdown: >- - **Automate everything you do twice.** Manual steps are slow, unrepeatable, and the source of most production surprises. If a human does it by hand, it's a bug waiting to happen. - **Infrastructure is code.** Servers, networks, and config are defined in version-controlled files, reviewed and tested like any code — never clicked into existence in a console. - **Build it, run it.** The team that writes the service should be able to deploy and operate it. DevOps builds the road; it doesn't carry everyone's car. - **Fast feedback wins.** Catch problems in seconds in CI, not days in production. - **Make the easy path the right path.** A golden path faster than doing it wrong is how you get adoption without mandates. - **Small batches, frequent releases.** Tiny, frequent changes are easier to test, safer to deploy, and trivial to roll back. Big-bang releases hide big-bang failures. - **You build it, you can roll it back.** Every deploy must be reversible in one move, or it isn't ready to ship. - heading: Mental Models markdown: >- - **The deployment pipeline as a value stream.** Code flows through stages — build, test, stage, release — and your job is to maximize throughput and minimize lead time while keeping the change failure rate low. Find the bottleneck stage and widen it. - **The DORA four key metrics.** Deployment frequency, lead time for changes, change failure rate, time to restore service. High performers deploy often *and* fail rarely; speed and stability rise together when flow is healthy. - **Cattle, not pets.** Servers are interchangeable, provisioned and destroyed by code, never named and nursed. If you can't recreate it from a repo, you don't control it. - **Immutable infrastructure.** You don't patch a running server; you build a new image and replace it. Drift — the slow divergence of reality from config — is the enemy, and immutability kills it. - **The three ways (from The Phoenix Project).** Flow (left to right, fast), feedback (right to left, fast), and a culture of continual experimentation and learning. - **Theory of constraints.** A system is only as fast as its bottleneck. Optimizing anything but the constraint is wasted effort. - heading: First Principles markdown: >- - A process that depends on a human remembering the steps will eventually be done wrong. - Anything not in version control does not exist and cannot be trusted. - The cost of a change rises with the time since it was written; ship small and often. - Reproducibility is the foundation of reliability — if you can't rebuild it, you can't fix it. - Speed and safety are not opposites; the automation that makes you fast makes you safe. - heading: Questions Experts Constantly Ask markdown: >- - How long does it take to get one line of code safely into production? - If this deploy is bad, how fast and how cleanly can we roll it back? - Is this environment reproducible from code, or is there hidden manual state? - Where's the bottleneck in our pipeline, and what's it costing us in lead time? - What manual step is the team quietly doing that should be automated? - Can a developer ship this themselves, or do they file a ticket and wait? - What's our change failure rate, and is it trending the right way? - heading: Decision Frameworks markdown: >- - **Deployment strategy by risk.** Stateless, low-risk service → rolling update. Higher risk → canary with automated rollback on metric breach. Need instant cutover → blue-green. Match the mechanism to the cost of failure. - **Build vs. buy for platform.** Use the cloud provider's managed primitive (managed Kubernetes, managed CI) unless the platform is your differentiator; owning the control plane is a permanent cost. - **Pipeline gate triage.** Every gate must catch a real, likely failure cheaply. A slow flaky test that blocks every deploy costs more than the bugs it catches — fix it or cut it. - **Golden path vs. flexibility.** Provide a paved road that handles 80% of cases perfectly; allow escape hatches for the 20%, but make the road so good few want off it. - heading: Workflow markdown: >- 1. **Map the flow.** Trace how a change actually gets to production today; find the manual steps, waits, and handoffs. The bottleneck is rarely where people think. 2. **Codify infrastructure.** Define environments in Terraform / config so they're reproducible, reviewable, and rebuildable from scratch. 3. **Build the pipeline.** Commit triggers build, runs tests, produces an immutable artifact, and promotes it through environments automatically. 4. **Automate the release.** Wire up canary or blue-green deploys, feature flags, and one-command rollback so shipping is low-stakes. 5. **Instrument.** Make every deploy observable so its effect is visible within minutes and a bad release auto-rolls-back. 6. **Pave the road.** Turn the working setup into a self-service golden path so product teams deploy without you in the loop. 7. **Measure and improve.** Watch the DORA metrics; attack the worst one. 8. **Spread ownership.** Hand operability back to the teams; document the runbook; make sure the bus factor isn't one. - heading: Common Tradeoffs markdown: >- - **Speed vs. stability.** The false dichotomy of the field — good automation delivers both, but cutting the wrong corner (skipping tests, no rollback) buys speed by borrowing against an outage. - **Standardization vs. autonomy.** A single golden path reduces variance and cognitive load but frustrates teams with genuinely different needs. Pave the common road, allow exits. - **Managed services vs. control.** Managed platforms save enormous toil but lock you in; self-hosting gives control at the cost of becoming the on-call for your own platform. - **Pipeline thoroughness vs. speed.** More gates catch more bugs but slow every deploy and tempt people to bypass them. Tune for the change failure rate, not zero. - heading: Rules of Thumb markdown: >- - A deploy you can't roll back in one command is not a deploy, it's a gamble. - Pin versions; "latest" is how you get a different build every time. - Keep the pipeline green; a normally-red build trains everyone to ignore it. - Smaller pull requests deploy more safely than big ones. - Inject secrets at runtime, never into images or version control. - Measure lead time and change failure rate before you "improve" anything. - heading: Failure Modes markdown: >- - **Snowflake environments.** Hand-tuned servers that drift until staging no longer predicts production and nobody dares touch them. - **The fragile pipeline.** A CI/CD setup so brittle that the pipeline itself is the most common cause of failed deploys. - **Automating chaos.** Automating a broken process lets you make the same mistake faster, at scale. - **DevOps as a silo.** A "DevOps team" that becomes the new ops fence everyone throws work over — the wall the movement existed to remove. - **Tool obsession.** Adopting Kubernetes and a dozen CNCF tools for a problem a single VM and a script would solve. - **No rollback path.** Deploying changes — especially schema migrations — that can't be undone, so a bad release means an outage. - heading: Anti-patterns markdown: >- - **ClickOps** — provisioning infrastructure by hand in a web console, leaving no reproducible record. - **`latest` tags everywhere** — unpinned dependencies producing irreproducible builds. - **Big-bang deploys** — shipping everything at once to 100% with no canary. - **Secrets in the repo** — credentials committed to git "temporarily." - **The wall renamed** — a DevOps team that just relocates the dev/ops handoff. - heading: Vocabulary markdown: >- - **CI/CD** — continuous integration (merge and test often) / continuous delivery or deployment (automatically release). - **Infrastructure as Code (IaC)** — defining infra in version-controlled, declarative files. - **Immutable infrastructure** — replacing components instead of modifying them in place. - **Canary / blue-green** — release strategies that limit blast radius and enable instant rollback. - **GitOps** — using a git repo as the single source of truth that reconciles into the running system. - **DORA metrics** — deployment frequency, lead time, change failure rate, MTTR. - heading: Tools markdown: >- - **Version control and CI** — Git, GitHub Actions / GitLab CI / Jenkins to build and test on every commit. - **Infrastructure as code** — Terraform, Pulumi, CloudFormation. - **Containers and orchestration** — Docker, Kubernetes, Helm to package and run workloads as cattle. - **Config and GitOps** — Ansible for config management; Argo CD / Flux for git-driven reconciliation. - **Observability** — Prometheus, Grafana, OpenTelemetry to watch deploys land. - **Secrets and registries** — Vault, cloud KMS, and artifact/container registries. - heading: Collaboration markdown: >- DevOps is a connective role, and the connecting is most of the value. With software engineers, the DevOps engineer provides the pipeline and golden path and pushes operability concerns left into how services are built. With SREs, they share the automation craft — DevOps tends to own the delivery pipeline while SRE owns SLO-driven operation, and the line blurs by company. With security engineers, they bake scanning and secrets management into the pipeline (DevSecOps). With leadership, they translate flow improvements into business terms. The recurring failure is becoming a ticket-driven bottleneck; the healthiest model is platform-as-product, serving internal teams with self-service tooling rather than doing their deploys for them. - heading: Ethics markdown: >- DevOps engineers hold the keys to production: the pipeline that ships every change and the credentials that reach every system. The duties follow from that leverage: treat the deploy path as safety-critical, because a careless pipeline can take down a hospital or a payment system as surely as a bad commit; never build a deploy mechanism without a rollback; protect the secrets and access the pipeline concentrates, since a compromised CI server compromises everything it can deploy; and resist the pressure to remove a safety gate just to hit a date. The power to deploy fast is also the power to break fast, so the discipline is building the brakes before you press the accelerator. - heading: Scenarios markdown: >- **A team deploys once a quarter and dreads it.** Every release is a weekend event with a runbook of manual steps and a rollback plan nobody trusts. The DevOps engineer doesn't start by buying Kubernetes; they map the value stream and find the real bottleneck — a manual QA sign-off that takes days and a deploy done by hand by one person. They automate the test suite into CI, codify the environment so staging matches production, and build a one-command rollback. The first win isn't daily deploys; it's making the quarterly deploy boring, after which frequency rises on its own. **A 3 a.m. deploy goes bad.** A canary release shows error rates climbing in the 5% slice it was sent to. Because the pipeline watches the golden signals and the deploy was a canary, the automated rollback triggers before the change ever reaches the other 95% — most users never noticed. The on-call wakes to an alert that says "auto-rolled-back," not "outage." The follow-up isn't heroics; it's checking why the bad change passed CI and adding the test that would have caught it, tightening the left side of the pipeline. **Pressure to skip the gates for a launch.** A product manager wants to push a launch straight to production, bypassing the canary, to hit a marketing date. The DevOps engineer reframes it: the canary doesn't slow the launch, it caps the downside if the launch is broken. Instead of removing the gate, they speed it up — shorter bake time, tighter auto-rollback threshold. The date holds, and the brakes stay on. - heading: Related Occupations markdown: >- A DevOps engineer overlaps heavily with the site reliability engineer — both automate the path to production — but DevOps is defined by optimizing delivery flow while SRE is defined by SLO-driven operation. A DevOps engineer is a software engineer who specializes in the pipeline and platform rather than the product. Systems administrators are the operational ancestor, before infrastructure became code. Cloud architects design the substrate the pipeline deploys onto. Security engineers partner to fold scanning and secrets into the pipeline as DevSecOps. - heading: References markdown: |- - *The Phoenix Project* — Kim, Behr, Spafford - *The DevOps Handbook* — Kim, Humble, Debois, Willis - *Accelerate* — Forsgren, Humble, Kim - *Continuous Delivery* — Humble & Farley - *Infrastructure as Code* — Kief Morris - DORA State of DevOps reports