The most common question we hear after a prospect decides to move forward isn't about pricing. It's: "What actually happens next?"
Fair question. The handoff from "we signed" to "we're running faster" involves real work on both sides, and the sooner you know what to expect, the smoother it goes. So here's an honest walkthrough of what the first 30 days look like — not in marketing terms, but in actual days and deliverables.
Before we start: the 48-hour setup list
We send this the day the engagement kicks off. It's designed to take less than two hours on your end and deliberately starts with read-only access — we look before we touch anything.
- AWS, GCP, or Azure read-only access (we'll request write access per change, with your sign-off)
- Kubernetes cluster access at the
viewrole — enough to describe everything, touch nothing - CI/CD read access: GitLab, GitHub Actions, or whatever you're using
- Monitoring access if it exists — Datadog, Grafana, CloudWatch, all of it
- Slack or Teams invite into your engineering channel
- A standing 30-minute weekly sync, same time each week
That's it. No onboarding doc required, no architecture handoff session needed. We'll learn the stack ourselves and come to you with specific questions — not the other way around.
Week one: the assessment
We don't make any changes in week one. This surprises some clients who expect us to start shipping immediately. The reason: an infrastructure change made without understanding the full picture is how you cause an outage on day three of a new engagement. We've seen it happen. It won't happen here.
What we're reading in week one:
- The Dockerfile and build process — what base images, what layers, where the inefficiencies are
- The CI/CD pipeline — every job, every step, how long deploys take and what breaks them
- The Helm charts or Terraform — what's actually in production vs. what the README says
- The monitoring setup — what's instrumented, what's dark, where the alert gaps are
- The deploy history — recent failures, rollbacks, anything flagged as a known issue
We're specifically looking for four things:
- Single points of failure. One database with no replica. One availability zone. One engineer who knows how the deploy works.
- Manual steps in the deploy path. Anything that requires a human to SSH somewhere, run a script, or click a button. These are future incidents.
- Secrets management gaps. Credentials in environment variables, hardcoded in configs, or shared in Slack. This shows up in about 70% of first assessments.
- Monitoring blind spots. Services that have no health checks, pods running with no resource limits, alerts that exist but fire to a Slack channel nobody watches.
By end of week one, you get a written assessment: every finding ranked by risk, with our recommended fix and effort estimate for each. This document becomes the working backlog for the engagement.
Weeks two and three: quick wins
These are the changes that improve life immediately and have low blast radius — nothing that requires a maintenance window or coordination across teams. We pick the highest-impact, lowest-risk items from the assessment and ship them.
Common quick wins from recent engagements:
- Adding liveness and readiness probes to every pod (eliminates the "pod is running but not serving traffic" class of incident)
- Setting resource requests and limits — stops one misbehaving pod from starving the node
- Fixing a slow CI pipeline: caching
node_modulesor Docker layers that were being rebuilt from scratch on every run - Eliminating a manual deploy step — usually moving a shell script into the CI pipeline so deploys are one-click
- Creating a staging environment that mirrors production (not a different k8s version, not different resource classes — actually mirrors it)
By end of week three, most clients have had 3–5 improvements land. The deploy is usually faster. At least one class of recurring incident is gone. And the team has a sense of what the engagement rhythm looks like day-to-day.
"We had a change that cut deploy time by 60% before our first monthly review. I didn't expect to see ROI that fast."
Weeks three and four: the roadmap
Once we have a clear picture of the stack and the quick wins are landing, we build the 90-day roadmap together. This is a real prioritization exercise — we bring our recommendations, you bring your business context, and we align on what matters most.
We prioritize in this order:
- Risk reduction first. The things that will cause an outage or a data incident if we don't address them. These aren't optional and they go to the top of the list.
- Developer productivity second. Slow pipelines, painful deploy processes, missing tooling. These have direct impact on engineering velocity and are usually quick to fix.
- Cost. Once the risk and productivity work is done, we'll typically run a cost audit. Most teams are carrying 20–40% of cloud spend that isn't doing useful work.
- New capabilities last. Multi-region, auto-scaling, blue-green deploys — only after the foundation is solid.
A typical 90-day backlog after a first assessment looks like: 2 weeks of risk mitigation (RBAC, secrets management, monitoring gaps), 3 weeks of CI/CD improvement, then a cost optimization pass, then longer-horizon infrastructure work. Your stack will be different, but the shape is usually similar.
What surprises people
Clients who've worked with us before know what to expect. Clients in their first fractional engagement are usually surprised by a few things:
The speed of the assessment. Three engineers who've done this 50+ times across different stacks move through an assessment fast. What would take an internal engineer two weeks to document, we've usually read and mapped in three or four days. Not because we're faster readers — because we've seen the same patterns dozens of times and know exactly where to look.
The tribal knowledge that surfaces. The assessment almost always uncovers things the team knew but hadn't written down — and sometimes things nobody knew. A database that was supposed to be backed up but wasn't. A production secret that was also in the staging config. A Kubernetes version running 14 months past end-of-life. This isn't an indictment of the team; it's a natural consequence of moving fast. Fresh eyes catch what familiarity misses.
The ongoing cadence. After the first 30 days, the engagement settles into a rhythm that most clients describe as "a colleague who's always in the background." The weekly sync is 30 minutes. Work happens async. Changes are communicated in the engineering Slack channel. Within 6 weeks, most teams stop thinking of it as an "external engagement" and start thinking of it as part of how they operate.
What you need to bring
The engagement works best when there's an internal point of contact — usually a senior engineer, VP of Engineering, or CTO — who can answer questions quickly and has the authority to approve changes. You don't need to be deeply involved day-to-day. But someone needs to be available for a quick Slack message when we need context or sign-off on a change with higher blast radius.
The teams that get the most out of the first 30 days are the ones who give us honest context about what's painful. The assessment will find the technical issues — but "our Friday deploys are always stressful" or "we've had three incidents involving the billing service this quarter" points us toward the problems that matter most to the business. That context shapes the roadmap.
It takes about three months to fully understand a stack. The first month is the sharpest learning curve — for us and for you. After that, the work accelerates.