STAR: Handling a Production Incident

Structure

Situation — Context: scope, severity, who was impacted, blast radius. Task — Your specific role and what success looked like. Action — Decisions, comms, mitigation, rollback. Highlight tradeoffs you weighed. Result — Time to mitigate, customer impact, what changed permanently.

What interviewers listen for

• Did you stabilize before investigating?
• Were comms proportional (status page, exec brief)?
• Did the retro produce a systemic fix, not just "we'll be more careful"?
• Could you articulate what you'd do differently?

"During a deploy at 14:00, our checkout service started returning 503 to ~40% of traffic. I declared a Sev-2, rolled back the deploy within 3 minutes — that was the call: stabilize first, root-cause later. I assigned an incident commander role to a peer so I could focus on the technical mitigation. We posted a status update at 14:08. Postmortem found the new build had a misconfigured connection pool. We added: pre-deploy contract tests for pool sizing, automated canary analysis on 503 rate, and a runbook for connection-pool incidents. Three months later, an almost identical pattern was caught automatically in canary, never reached users."