Download  PNG

Light
Dark

Download  SVG

Light
Dark
Download all assets
Log in
Book a demo
burger menu iconburger menu icon_close
Product
Changelog
Mar 6, 2026
The Rootly Edge Connector

The Rootly Edge Connector

Solutions
How Upstart uses Rootly to create an incident response system that grows with them.
How Achievers productized reliability on Microsoft Teams with Rootly AI.
How ROLLER scales globally while keeping a lean SRE team.
How Momentum minimizes the number of engineers on-call with Rootly AI.
How Motive achieves 99.99% reliability with Rootly.
How Clay uses Rootly to streamline incident management.
How Webflow uses Rootly to build a proactive reliability culture.
How Wealthsimple uses Rootly to create a culture of wellness and psychological safety for incident commanders.
How Lucidworks uses Rootly to create bespoke incident management for their distinct product offering.
How Rootly helps Replit make better business decisions after incidents.
KnowBe4 turns Incident Response into a repeatable, predictable system with Rootly.
Customers
Resources
Latest Blog
Feb 25, 2026
The Unofficial KubeCon EU '26 SRE Track

The Unofficial KubeCon EU '26 SRE Track

Pricing
Log in
Book a demo
No items found.

AI SRE maturity is not a measure of how much AI you bought. It is a measure of how reliably your incident workflow can turn telemetry, change context, and operational knowledge into verified decisions and controlled actions while humans remain accountable.

This model focuses on real adoption constraints: evidence quality, verification loops, governance, and the ability to execute safely under pressure. If your AI outputs are fluent but ungrounded, maturity does not increase. If your automation is fast but uncontrolled, reliability risk increases.

Key Takeaways

  • AI SRE maturity increases when time-to-context drops and evidence trails become reviewable by default.
  • Level 1 is where trust is earned: read-only copilots that assemble context and produce testable hypotheses.
  • Level 2 is the control-plane inflection: approvals, RBAC, audit logs, action allowlists, and rollback requirements.
  • Level 3 autonomy is narrow by design: reversible runbooks, clear stop conditions, and continuous verification.
  • The quickest path upward is better change data, ownership hygiene, and trusted runbooks, not bigger models.

The AI SRE Maturity Ladder

How to Use This Model

This maturity model is designed to be operational, not aspirational. Each level describes what your incident system can produce consistently during real incidents, not in demos.

The four maturity signals

Use these to assess where you are today and what must be true to move up.

  1. Time-to-context performance

How fast responders can confidently answer: what is failing, what changed, what is impacted, and what to verify next.

  1. Evidence quality

Whether claims are tied to artifacts like metric windows, log clusters, trace exemplars, deploy events, config diffs, or runbook steps.

  1. Execution control

Whether actions are enforced by workflow controls such as RBAC, approvals, audit logs, blast radius limits, and rollback readiness.

  1. Learning capture

Whether timelines, decision logs, and postmortem-ready artifacts are created as a byproduct of response, not a separate cleanup project.

What “moving up a level” requires

A level change is earned when you can demonstrate all three outcomes in production incidents:

  • A capability gain (faster context, better routing, safer actions)
  • A safety gain (fewer risky changes, fewer comms errors, stronger rollback discipline)
  • A workflow gain (less toil per incident, less reconstruction after)

Level 0: Manual Reliability Operations

Level 0 teams can ship software and keep systems up, but incident response is still powered by human context assembly. Most of the first critical minutes go into hunting: dashboards, logs, traces, deploy timelines, tickets, runbooks, and chat threads.

What Level 0 looks like in real incidents

  • Responders assemble context by hand across multiple tools and tabs
  • Early narratives diverge because dashboards disagree and time windows do not line up
  • Paging is often broad or misrouted because ownership mapping is incomplete
  • The team spends time aligning on what is happening before verifying anything

Level 0 outputs

  • Human-written summary with missing evidence links
  • Partial timeline that depends on memory
  • Mitigations executed informally with limited traceability

Common Level 0 failure modes

  • Time-to-context dominates MTTR
  • Misroutes and repeated paging extend the incident
  • Teams lock into a single story early, then verify late
  • Postmortems become reconstruction exercises rather than improvement engines

Minimum foundation to exit Level 0

You do not need perfect data, but you need enough structure to make incident context computable.

  • Consistent service identifiers and environment tags across telemetry, deploys, and incidents
  • Change tracking for deploys, config changes, and feature flags
  • A service catalog with ownership that is accurate enough to route on-call reliably

Level 1: Read-Only AI SRE, Evidence-First Copilot

Level 1 is the trust-building stage. AI helps responders move from alerts to a coherent incident picture faster, but it does not execute changes. The value is time-to-context and a cleaner evidence trail, not autonomy.

The core capability

A Level 1 system produces a structured context packet and ranked hypotheses that are verifiable, with links to evidence.

What Level 1 automates safely

  • Alert clustering into a single incident candidate
  • Change snapshot within the suspected blast radius (deploys, flags, configs)
  • Top signal summary across logs, metrics, and traces anchored to a time window
  • Ownership suggestion via service catalog and on-call mapping
  • Drafted internal updates generated from incident state
  • Live timeline capture as the incident evolves

Guardrails required at Level 1

  • Evidence-linked claims only

Every claim should map to an artifact: a deploy ID, metric window, log pattern, trace exemplar, or config diff.

  • Explicit unknowns

If evidence is missing, the system should say so instead of smoothing over gaps.

  • Permission-aware retrieval

Runbooks, tickets, and incident history retrieval must respect access controls.

  • Read-only tool allowlists and auditing

Every query and retrieved artifact should be auditable.

Metrics that prove Level 1 is working

  • Time to context (median and p90)
  • Misroute rate and handoff count
  • Alert dedupe ratio and false page rate
  • Time to first internal stakeholder update

Exit criteria to Level 2

  • Responders routinely start from the context packet instead of rebuilding it
  • Hypotheses include differentiating checks, not just narratives
  • Evidence trails are reviewable by any on-call engineer without extra hunting

Level 2: Assisted Actions With Approvals, Control Plane Maturity

Level 2 is where AI SRE becomes operationally consequential. The system can initiate actions, but only through a workflow engine that enforces controls. This is the maturity jump where speed stops being risky because governance and verification are part of the product.

The core capability

AI can propose and run approved actions with verification gates, rollback readiness, and full auditability.

What changes from Level 1

  • From suggestions to controlled execution rails
  • From policy remembered to policy enforced
  • From best-effort notes to audit-grade incident records

Action tiers that work in practice

Define tiers so your system knows what it is allowed to do.

  • Tier A: Read-only checks

No approval required, always evidence-producing.

  • Tier B: Low-blast reversible actions

Approval required, verification after every step.

  • Tier C: High-impact actions

Multi-approval, stricter gates, and narrower execution scopes.

Safe assisted actions that fit Level 2

These actions have a proven track record as bounded and reversible when implemented with care.

  • Roll back a single deploy with clear preconditions
  • Flip a feature flag with health gating
  • Scale within pre-approved limits
  • Restart a single stateless instance with rate limits
  • Run an allowlisted runbook step with explicit stop conditions

Non-negotiables at Level 2

If these are not real, you are still at Level 1 with extra risk.

  • RBAC aligned to services, environments, and team ownership
  • Approvals captured in the incident timeline, not in side conversations
  • Verification gates after every action with clear success signals
  • Canary-first execution where possible to constrain blast radius
  • Rollback defined before execution, not after a bad outcome
  • Immutable audit logs for access, recommendations, approvals, and actions

Control plane: Identity, RBAC, approvals, audit logs, policy-as-code

Safety plane: Verification gates, canary scope, rollback, stop conditions, rate limits

Metrics that prove Level 2 is working

  • Assisted action success rate (actions that measurably improve verification signals)
  • Rollback rate and rollback time
  • Policy block rate (unsafe actions prevented by guardrails)
  • Approval latency by tier (how fast humans can approve safely)

Exit criteria to Level 3

  • Assisted actions succeed reliably for a defined incident class
  • Rollback and stop conditions are used consistently, not optionally
  • Governance reviews become accelerators because evidence and auditing are built in

Level 3: Guardrailed Autonomy for Narrow, Reversible Failure Modes

Level 3 is not “AI resolves incidents.” It is “AI resolves a small number of repeatable incidents safely.” Autonomy is earned when your system can prove it can act within bounds, verify outcomes continuously, and stop safely when conditions are not met.

The core capability

AI can execute specific, allowlisted runbooks automatically when preconditions are satisfied, while monitoring success signals and triggering rollback or escalation when needed.

What qualifies for Level 3 autonomy

Autonomy candidates share five properties:

  • Narrow scope and bounded blast radius
  • Reversible actions with fast rollback paths
  • Clear success signals and explicit stop conditions
  • Repeat incidence patterns with consistent signatures
  • Strong instrumentation and reliable change context

What Level 3 does not mean

  • Unbounded tool access
  • Broad fixes across multiple services
  • Autonomous external communications
  • Guess-based remediation without verification

Reference patterns that work at Level 3

  • Signature-based trigger

Only execute when the symptom cluster plus change context matches a known failure mode.

  • Canary first, then expand

Start in the smallest scope and expand only if verification passes.

  • Confidence and safety degradation

When uncertainty rises, the system should narrow scope, ask for approval, or escalate.

  • Full action trace by default

Every step, gate, and outcome is written into the incident record.

Metrics that prove Level 3 is working

  • Autonomous resolution rate for the allowlisted class
  • Human takeover rate and reasons for takeover
  • Time-to-mitigation for eligible incidents
  • Safety outcomes, including stop-condition activations and prevented harm events

Risks to call out explicitly

  • Silent suppression without audit trails undermines trust and creates hidden failure modes
  • Automation that outpaces observability can turn minor incidents into major ones
  • Policy drift expands allowlists without evidence, increasing blast radius exposure
  • Runbook rot breaks autonomous flows unless owners and reviews are enforced

Adoption Roadmap From Level 0 to Level 3 (90-Day Practical Plan)

Days 0–30: Reach Level 1

  • Standardise service identifiers and environment tags
  • Integrate deploy, config, and flag change events into incident context
  • Create a small trusted runbook set with owners and review dates
  • Ship a context packet that includes evidence links and differentiating checks
  • Measure time-to-context, misroutes, and alert dedupe improvements

Days 31–60: Enter Level 2

  • Implement RBAC aligned to services and environments
  • Add approval workflows and audit logging inside the incident tool
  • Define action tiers and allowlists per service
  • Add verification gates and rollback requirements for every assisted action
  • Track assisted action success rate and rollback time

Days 61–90: Pilot Level 3 for one failure mode

  • Choose one frequent, low-blast incident type with clear signatures
  • Automate one reversible runbook with canary scope and stop conditions
  • Instrument success signals and publish takeover triggers
  • Review outcomes weekly and expand only after sustained safe performance

Common Anti-Patterns That Stall Maturity

  • Autonomy first, trust later

This usually ends with a single bad action that freezes adoption for months.

  • Fluent summaries without evidence links

Teams stop trusting AI when it cannot show receipts during pressure.

  • Missing change data, then blaming the model

Without deploy and config context, hypotheses become guesswork.

  • Actions executed outside the workflow engine

If execution is not enforced by policy and logged, governance breaks down.

  • Measuring only MTTR

MTTR is a trailing signal. Early wins show up first in time-to-context, routing accuracy, and reduced toil.

FAQ

What does this AI SRE maturity model measure?

It measures how consistently your incident workflow produces verified context, testable hypotheses, controlled actions, and reusable learning artifacts under governance.

What is the fastest way to move from Level 0 to Level 1?

Fix ownership and change context first. A strong service catalog and reliable deploy and flag events often improve time-to-context more than any model choice.

When should teams allow AI to run actions?

Only after Level 2 controls are proven in production: approvals, RBAC, audit logs, verification gates, rollback readiness, and an allowlist approach.

How do you prevent hallucinations from becoming incidents?

Bind claims to evidence, force explicit unknowns, restrict tools, use confidence thresholds, and gate execution and external comms with approvals and policy checks.

Which incident types are best for Level 3 pilots?

High-frequency, low-blast, reversible failure modes with clear signatures and strong instrumentation. Avoid anything that risks data integrity, security posture, or wide customer impact.

Putting the Model Into Practice

A mature AI SRE program looks calm in the first ten minutes of an incident. Context is assembled automatically, hypotheses are presented with differentiating checks, and actions are executed only through controlled rails with verification and rollback. The maturity path is predictable: earn trust with read-only copilots, operationalize governance with assisted actions, and reserve autonomy for narrow, reversible scenarios where the system can prove safety.

At Rootly, we help SRE and platform teams move through these levels inside the incident workflow, so AI assistance stays evidence-driven, verifiable, and governed. If you want a practical rollout that matches your tooling, approvals model, and risk tolerance, book a demo and we will map your current state to a Level 1–3 adoption plan.

©Rootly 2025. All rights reserved.
Privacy policy
·
Terms of use