Loading Now
How To , ,

Legacy Platforms Are Not the Enemy

Cloud Platform Confusion
Almost every platform engineer has a similar experience when they join a company with an established cloud platform.
You access the repository.
You delve into the Terraform code.
You examine the CI/CD pipelines.
And suddenly… confusion sets in.
b2637feb-8f99-42e6-aefe-ff7138ceaebf_orig Legacy Platforms Are Not the Enemy

Your initial thought—particularly if you’ve participated in courses, studied reference architectures, or attended cloud conferences—is often the same:

“This definitely needs a complete overhaul. A fresh landing zone. Streamlined Terraform structure. Up-to-date pipelines. Best practices all around.”

It appears wise. It seems professional. Yet, it’s one of the riskiest choices a platform engineer can make.

Why the “Just Rewrite It” Approach Can Be Misleading

The platform that’s causing you frustration isn’t merely theoretical. It has been operational, managing real production workloads for months, sometimes years. It has weathered:

  • Incidents and outages
  • Compliance audits
  • Security exceptions
  • Scaling challenges
  • Real customer pressures

Every awkward conditional, peculiar module boundary, or makeshift pipeline trick likely has a backstory, rooted in past issues. This very platform enables applications to deploy, teams to deliver features, and the business to generate revenue.

Destroying it without proper context is not a display of engineering excellence—it’s a significant risk.

Engineering Maturity Begins with Respect

When I guide platform engineers grappling with legacy Infrastructure as Code (IaC) or DevOps setups, I focus on curbing their misguided enthusiasm. Not because improvement is inherently bad—but because hasty improvements can be costly.

Anyone can create an ideal landing zone on a whiteboard.
Real skill lies in enhancing an active platform without jeopardising the business.

The Fallacy of the “Big Rewrite”

A complete rewrite presumes you can:

  • Uncover years of hidden business rules
  • Pause feature delivery without affecting the business
  • Prevent overlooking edge cases learned the hard way
  • Deliver something significantly better—not merely aesthetically pleasing

In reality, extensive rewrites often lead to loss of functionality, new security vulnerabilities, more incidents, and—most painfully—eroded trust from stakeholders.

From management’s perspective, you don’t appear to be a hero. You represent a source of risk.

How Competent Platform Engineers Approach Legacy Platforms

STEP 1

Understand Before Judging – Chesterton’s Fence

Prior to removing anything, ask yourself why it exists. That peculiar Terraform condition or pipeline exception likely has a purpose:

  • A regulatory scenario someone negotiated under duress
  • A workaround for a pivotal enterprise customer
  • A remnant from a past incident that caused major disruptions

Removing it without understanding its context may disrupt something crucial yet invisible.

STEP 2

Implement the Strangler Pattern for Platforms

You can’t reconstruct a landing zone overnight. Instead:

  • Introduce new, well-designed Terraform modules alongside the existing ones
  • Create new pipelines aligned with superior standards for new workloads
  • Encourage new workloads to adopt updated patterns from day one

Gradually, you will isolate outdated components, replace legacy modules, and minimise risk. The business remains unaffected.

STEP 3

Adhere to the Boy Scout Rule in IaC

“Leave the code better than you found it.”

Whenever you interact with the platform—even for minor fixes—make an improvement:

  • Refine a variable name
  • Extract a reusable module
  • Eliminate duplication
  • Add a missing comment or update the README entry

Small, consistent enhancements accumulate over time. You don’t require a drastic overhaul to advance.

STEP 4

Establish Safety Measures Before Refactoring

In platform engineering, safety measures are essential before making any changes:

  • terraform plan validations in each pipeline
  • Policy-as-Code to identify drift and violations
  • Drift detection within live environments
  • Integration and canary environments to validate changes safely

You should never refactor infrastructure without safeguards. Ensure behaviour is protected first, then enhance the structure.

The Key Takeaway

Engineering maturity is not about disliking legacy platforms. It’s about acknowledging what has sustained the company and evolving it thoughtfully.

This mindset shift represents one of the most challenging lessons in platform engineering:

From “I understand best practices” → To “I know how to implement them in a production environment.”

That transition differentiates engineers who can design platforms from those who can manage and evolve them responsibly. And this is the essence of true Platform Engineering.

Share this content:

Tag

Related Posts