Systems engineering and security¶

Infrastructure and deployment work intersects with security at every layer: the pipeline that builds and ships code, the access controls that govern who can change what, the observability that makes the state of the environment legible. Each of these is also a change management problem. Introducing them into an organisation that has been running on informal arrangements requires navigating the same Satir arc that any significant change does, resistance, chaos, integration, new status quo, with the added complication that the systems themselves keep running while the change is in progress.

The pages in this section apply the foundations to infrastructure and deployment work: what the models predict, where the friction tends to appear, and what determines whether the change reaches the integration phase or stalls in the chaos phase and quietly reverts.

Introducing a proper pipeline