Professional Documents
Culture Documents
John Allspaw
Adaptive Capacity Labs
The Main Gist
• Current and typical approaches to “learning from incidents” have very little
to do with actual learning.
💥
ACTION
ITEMS
a postmortem (maybe)
incident (maybe)
meeting, where (maybe) someone FINALLY!
happens… someone
you fill out some template… compiles a report…
preps a timeline…
• What is learned, who learns, when they learn, and how they learn depends
on how well practices are set up to support it.
Reality
Different people will have varying understandings
before and after an incident, and what mysteries
remain for them cannot be captured or addressed in
a “one size fits all” package.
* we tend to say “share” when typically we mean “make available to others” what they actually remember!
if you can’t remember something,
you can’t say you’ve learned it
when we ask people about incidents
• they include elements of surprise (“what we didn’t know at the time was…”)
• they set some context (“now remember, this is the day we did our IPO…”)
Compelling incident analysis documents get read and shared with others.
Uninteresting documents…don’t.
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“this is how it
all works”
“oh…I thought it
did X nightly, “wait - I thought everyone
not weekly…” knew that Y was an issue…
only I knew that?”
“I didn’t know M
could break silently “ok, got it - A feeds B,
like that…” but C also feeds B…”
Fine Goals For A Post-Incident Meeting
• Capture things that were done after the incident but before the group meeting in the
document
• Give write-ups to brand new engineers and ask them to record any and all
questions they have after reading it