$30 off During Our Annual Pro Sale. View Details »

Warning: This Talk Contains Content Known to the State of California to Reduce Alert Fatigue

Aditya Mukerjee
June 04, 2018
Technology
2
400

Warning: This Talk Contains Content Known to the State of California to Reduce Alert Fatigue

With information bombarding us every minute of our lives, it can be tough to know what warrants triggering a page. Alert fatigue is a real danger, but ignoring real problems is dangerous too. What lessons can we learn from other fields - such as public policy, public health, or clinical medicine - to reduce the risk of alert fatigue while also keeping our systems as healthy as possible?

With the STAT framework - Supported, Trustworthy, Actionable, and Triaged - we have a rapid diagnostic test we can use to identify the portions of our alerting systems that cause alert fatigue, and some strategies for reducing it.

Aditya Mukerjee

June 04, 2018
Tweet

More Decks by Aditya Mukerjee

See All by Aditya Mukerjee
করো: Translating Go to Other (Human) Languages, and Back Again (GopherCon 2020)
chimeracoder
1
54
Building Stripe’s Remote Hub: Scaling Distributed Teams
chimeracoder
1
110
করো: Translating Code to Other (Human) Languages and Back Again
chimeracoder
1
83
করো: Translating Go to Other (Human) Languages, and Back Again (GopherCon Vietnam)
chimeracoder
1
47
Observability from the Panopticon: Measuring What Matters
chimeracoder
1
210
করো: Translating Code to Other (Human) Languages, and Back Again
chimeracoder
1
1.7k
Building Resilient Services in Go
chimeracoder
3
590
Observing Your Go Services
chimeracoder
1
150
You Might Be a Go Contributor Already and Not Know It
chimeracoder
2
350

Other Decks in Technology

See All in Technology
機械学習システム構築実践ガイド
shibuiwilliam
0
300
SmartHRのマルチプロダクト戦略実行の苦悩と挑戦
h1kita
5
3.4k
Repro の開発組織体制の変遷そして Platform Engineering / Platform Engineering Meetup #6
a_bicky
3
650
Making your Kubernetes-based log collection reliable & durable with Vector
palark
0
430
device mapperによるディスクI/O障害のエミュレーション
sat
PRO
7
2.3k
エンタープライズSaaSへの挑戦〜顧客の事業を成長させるプロダクトマネジメントとは?〜 / pmconf2023
route06
2
1k
231116 あつまれ入力デバイスの沼 Ryu.Cyberさん
comucal
PRO
0
230
VS CodeとPostmanを活用した効率的なAPI開発 / Efficient API development using VS Code and Postman
yokawasa
3
330
SIEMを用いて、セキュリティログ分析の可視化と分析を実現し、PDCAサイクルを回してみた
coconala_engineer
1
210
APIシナリオテストツールとしてのrunn / 4 API testing tools
k1low
1
480
トヨタの社内コミュニティについて色々聞いちゃおう ~たった4年の奇跡の軌跡~
taichinakamura
0
160
CircleCIの高速化🚀 / CircleCI faster
sinsoku
1
160

Featured

See All Featured
Art Directing for the Web. Five minutes with CSS Template Areas
malarkey
197
11k
Mobile First: as difficult as doing things right
swwweet
214
8.3k
Statistics for Hackers
jakevdp
788
220k
The MySQL Ecosystem @ GitHub 2015
samlambert
241
11k
Optimizing for Happiness
mojombo
368
68k
Automating Front-end Workflow
addyosmani
1354
200k
Adopting Sorbet at Scale
ufuk
66
8.2k
What the flash - Photography Introduction
edds
64
11k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
500
140k
Fireside Chat
paigeccino
18
2.3k
Producing Creativity
orderedlist
PRO
335
38k
Building Effective Engineering Teams - LeadDev
addyosmani
22
1.2k

Transcript

  1. Warning: This Talk Contains Content
    Known to the State of California to Reduce
    Alert Fatigue
    Aditya Mukerjee
    Observability Engineer at Stripe
    @chimeracoder

    View Slide

  2. @chimeracoder

    View Slide

  3. Why we can learn from clinical healthcare
    •Direct personal contact
    •Visibly high-stakes
    •Systems which are difficult to control
    @chimeracoder

    View Slide

  4. Alert Fatigue and Decision Fatigue
    @chimeracoder

    View Slide

  5. When the frequency or severity of alerts causes the responder
    either to ignore important alerts or make mistakes more frequently
    @chimeracoder
    Alert Fatigue

    View Slide

  6. When the frequency or complexity of decision points causes a
    person to avoid decisions or make mistakes more frequently.
    @chimeracoder
    Decision Fatigue

    View Slide

  7. Alert Fatigue deals with the observability of systems
    @chimeracoder
    Decision Fatigue deals with the controllability of systems

    View Slide

  8. 72-99% of clinical alarms are false positives
    @chimeracoder
    …but certain patterns of alerts and decisions contribute
    disproportionately to fatigue!

    View Slide

  9. Four Steps to Reducing Alert Fatigue: STAT
    @chimeracoder
    (Supported, Trustworthy, Actionable, Triaged)

    View Slide

  10. Supported
    •Who owns this monitor?
    •Who has the right or authority to change it?
    @chimeracoder

    View Slide

  11. @chimeracoder
    An alerting system includes the people who participate in
    responding to alerts, not just the software that generates alerts

    View Slide

  12. The person responding to an alert always has the right to
    change it, whether we realize it or not
    @chimeracoder

    View Slide

  13. Responders must feel ownership over the end result
    @chimeracoder

    View Slide

  14. Trustworthy
    • Do I trust this alert to notify me when a problem happens?
    • Do I trust this alert to stay silent when all is well?
    • Do I trust this alert to give me sufficient information to diagnose problems?
    @chimeracoder

    View Slide

  15. Anomaly detection and opaque algorithms
    If you don’t understand why an alert is firing, you don’t understand
    whether it’s real or not
    @chimeracoder

    View Slide

  16. When to use modeling for monitors
    •Does the model represent the interconnectedness of your systems?
    •Can the thresholds be adjusted?
    •Are the model parameters and outputs human-interpretable?
    @chimeracoder

    View Slide

  17. Actionable
    •At most one decision required to respond
    •Alerts that are difficult to action become alerts that are ignored
    @chimeracoder

    View Slide

  18. Making alerts more actionable
    “investigate”, “something”, “somewhere”, “someone”
    @chimeracoder
    Decision trees, interactive tooling, making the alerts specific

    View Slide

  19. If it’s unclear who should be taking action, the alert is not actionable
    @chimeracoder

    View Slide

  20. Triaged
    •Meticulously triage alerts
    •Alert type should reflect urgency
    •Urgency of alerts can change
    @chimeracoder

    View Slide

  21. Steps for triaging
    • Commonly-understood tiers
    • Regular, periodic re-evaluation process
    @chimeracoder

    View Slide

  22. What’s wrong with Prop 65 warnings?
    @chimeracoder

    View Slide

  23. STAT is just the beginning
    @chimeracoder

    View Slide

  24. Takeaways
    •Alert fatigue and decision fatigue deplete executive function
    •Tackle alert fatigue and decision fatigue in tandem
    •Use STAT as a quick check to evaluate alerting systems
    •Regularly re-evaluate your alerts and alerting systems
    @chimeracoder

    View Slide

  25. Thank you!
    Aditya Mukerjee
    @chimeracoder

    View Slide