Amazon SageMaker is AWS's managed ML platform — training, experimentation, model hosting, pipelines, feature stores, and monitoring in one integrated service. The getting-started experience is genuinely smooth. The production operating experience is significantly more complex, and most of the complexity is in areas the documentation underemphasizes: resource management, cost control, endpoint reliability, and the organizational patterns that make ML infrastructure sustainable at scale.
This is the operational guide for SREs who inherit or build out SageMaker infrastructure.
The SageMaker Resource Model
SageMaker exposes resources at several layers, and understanding which layer a problem lives in determines where to look when things go wrong.
Training jobs are ephemeral compute jobs that run on managed instances. They start, train, and terminate. Cost is time × instance type. Failures are isolated — a training job failure doesn't affect other training jobs or inference endpoints.
Processing jobs are the data preparation equivalent of training jobs: run a script, produce output, terminate. Used for feature engineering, model evaluation, and data quality checks.
Endpoints are long-running inference services. A SageMaker endpoint consists of one or more endpoint configurations, each running one or more production variants (model versions) on one or more instances. Endpoints are persistent and continuously incurring cost — unlike training jobs, they don't terminate when not in use.
SageMaker Pipelines are DAGs of training, processing, and evaluation steps. They're the orchestration layer for end-to-end ML workflows: ingest → featurize → train → evaluate → register → deploy.
The operational categories map differently to each resource type. Training job failures are debugging problems. Endpoint failures are availability problems. Pipeline failures are workflow reliability problems.
Endpoint Reliability
Production inference endpoints have standard availability requirements, but the operational model is different from web services.
Instance type selection is a reliability decision. GPU instances (p3, p4, g4dn, g5) are required for large model inference. GPU availability in AWS regions is not uniform — some instance types in some regions have chronic availability issues, meaning endpoint replacements (for hardware failures, scaling events) may queue while waiting for a GPU instance to become available. For production endpoints, use instance types with reliable availability in your region, and test the instance type availability in your primary and failover regions.
Multi-model endpoints for efficient GPU utilization. A single GPU instance hosting a single small model wastes most of its capacity. SageMaker Multi-Model Endpoints load multiple models onto a single instance, with models loaded on demand and evicted when memory pressure is high. For teams with many models that aren't all active simultaneously, multi-model endpoints reduce cost significantly — but the model loading latency (1-5 seconds for a cold model) is a reliability consideration for latency-sensitive paths.
Endpoint auto-scaling requires careful configuration:
import boto3
sagemaker_auto_scaling = boto3.client('application-autoscaling')
# Register the endpoint variant as a scalable target
sagemaker_auto_scaling.register_scalable_target(
ServiceNamespace='sagemaker',
ResourceId=f'endpoint/{endpoint_name}/variant/AllTraffic',
ScalableDimension='sagemaker:variant:DesiredInstanceCount',
MinCapacity=2, # Minimum 2 for availability
MaxCapacity=20
)
# Target tracking: scale to maintain 70% GPU utilization
sagemaker_auto_scaling.put_scaling_policy(
PolicyName=f'{endpoint_name}-gpu-utilization-policy',
ServiceNamespace='sagemaker',
ResourceId=f'endpoint/{endpoint_name}/variant/AllTraffic',
ScalableDimension='sagemaker:variant:DesiredInstanceCount',
PolicyType='TargetTrackingScaling',
TargetTrackingScalingPolicyConfiguration={
'TargetValue': 70.0,
'CustomizedMetricSpecification': {
'MetricName': 'GPUUtilization',
'Namespace': '/aws/sagemaker/Endpoints',
'Dimensions': [
{'Name': 'EndpointName', 'Value': endpoint_name},
{'Name': 'VariantName', 'Value': 'AllTraffic'}
],
'Statistic': 'Average',
'Unit': 'Percent'
},
'ScaleInCooldown': 600, # 10 min cooldown — GPU instances take time to warm
'ScaleOutCooldown': 60
}
)The scale-in cooldown is important: GPU instances take time to provision and load models. If you scale in aggressively and then have a traffic spike, you'll be waiting for new instances while your remaining instances are overloaded.
Shadow testing for model updates. Before promoting a new model version to production traffic, run it as a shadow variant that receives copies of production traffic without serving the responses:
# Shadow variant receives 0% of routed traffic but gets traffic mirrored to it
endpoint_config = {
'EndpointConfigName': 'my-endpoint-shadow-test',
'ProductionVariants': [
{
'VariantName': 'Current',
'ModelName': 'my-model-v1',
'InstanceType': 'ml.g5.2xlarge',
'InitialInstanceCount': 2,
'InitialVariantWeight': 1.0
},
{
'VariantName': 'Shadow',
'ModelName': 'my-model-v2',
'InstanceType': 'ml.g5.2xlarge',
'InitialInstanceCount': 1,
'InitialVariantWeight': 0 # No routed traffic
}
],
'ShadowProductionVariants': [
{
'VariantName': 'Shadow',
'SamplingPercentage': 100 # Mirror 100% of requests to shadow
}
]
}Compare shadow variant latency, error rate, and output quality against the current variant before promoting.
Training Cost Control
Training jobs are the most common source of SageMaker cost surprises. A few patterns that prevent runaway costs:
Spot instances for training. SageMaker managed Spot training uses Spot instances (up to 90% cheaper than on-demand) with automatic checkpointing and restart when instances are reclaimed. For most training jobs, the interruptions are acceptable — the job pauses, resumes from the last checkpoint when a Spot instance is available, and completes. Enable managed Spot training by default for any training job where a few hours of additional runtime is acceptable.
estimator = sagemaker.estimator.Estimator(
image_uri=training_image,
role=sagemaker_role,
instance_count=4,
instance_type='ml.p3.8xlarge',
use_spot_instances=True,
max_wait=86400, # Max 24 hours including interruptions
max_run=43200, # Max 12 hours of actual compute time
checkpoint_s3_uri=f's3://{bucket}/checkpoints/{job_name}/'
)Job duration limits. A training job that runs indefinitely (because the model isn't converging, because a bug causes infinite iteration) is expensive. Set max_run on every training job. Legitimate jobs should complete well within the limit; runaway jobs are terminated.
Training job cost tagging. Every training job should be tagged with the team, experiment, and purpose. This enables cost attribution and lets you see which experiments are consuming the most resources.
SageMaker Feature Store Reliability
SageMaker Feature Store is a managed feature repository for ML features — values computed offline and served online to models during inference. It has two storage modes:
Online store: Low-latency key-value storage for serving features at inference time. Sub-millisecond reads. Costs scale with storage and read throughput.
Offline store: S3-based historical feature storage for training. High throughput, cheap, queried with Athena or Spark.
The reliability consideration: your inference endpoint depends on the online store for features. If the online feature store is unavailable, your inference endpoint either returns errors (if features are mandatory) or falls back to defaults (if you've designed for feature unavailability). Design for feature unavailability explicitly — what should your model do if it can't retrieve the user's historical purchase count? Return a default, return an error, or use a stale cached value?
The ML Reliability Postmortem Template
ML incidents have specific failure modes that standard SRE postmortem templates don't capture. When an ML system fails:
## ML Incident Postmortem Template
### Model Context
- Model name and version at time of incident
- Training data cutoff date
- Last model evaluation metrics (accuracy, latency, drift scores)
### What Changed
- Any model updates in the 7 days before the incident?
- Any training data pipeline changes?
- Any feature store updates?
- Any inference infrastructure changes (instance type, configuration)?
### Failure Mode Classification
[ ] Training failure (job crashed, didn't complete)
[ ] Inference latency degradation (model is slow)
[ ] Model quality regression (outputs are wrong or degraded)
[ ] Feature pipeline failure (features stale or missing)
[ ] Infrastructure failure (endpoint down, OOM, instance failure)
### Data Quality Analysis
- Were there any anomalies in the input data distribution at time of failure?
- Did any feature values drift significantly from training distribution?
### Actions
- Immediate: [What was done to restore service]
- Short-term: [Monitoring/alerting improvements to detect faster next time]
- Long-term: [Architectural changes to prevent recurrence]The data quality and feature distribution sections are specific to ML — they don't appear in SRE postmortems for conventional services, but they're essential for ML system failures.
*Zak Hassan is a Staff SRE specializing in ML infrastructure reliability, AI-powered operations, and data platform engineering. Find him at zakhassan.com or on LinkedIn.*
Topic Paths