Gaps Analysis
Gaps Analysis
An honest assessment of competency gaps at the subdomain level. Organized by severity relative to career trajectory. Coverage = personal skills / BoK topics.
Target Roles
| Role | Current Readiness | Timeline |
|---|---|---|
Senior Network Security Engineer |
~80% domain-specific — ISE Expert, CCNP Security, 802.1X production experience |
Ready now; CISSP completion solidifies |
DevSecOps Engineer |
~35% — strong secrets management, missing SAST/DAST, CI/CD ownership, container scanning |
12-18 months with targeted investment |
Infrastructure / Cloud Architect |
~25% — strong on-prem, zero cloud hands-on; Terraform and AWS/Azure required |
18-24 months; cloud certifications needed |
AI/ML Engineer |
~5% — API consumer only; no ML model training, no MLOps, no mathematical ML foundations |
24-36 months; requires math + CS foundations first |
Critical Gaps
Subdomains with 0% coverage in career-critical areas. These block advancement to target roles.
AI/ML — All 8 Subdomains (0% coverage)
| Subdomain | BoK Topics | Remediation Path |
|---|---|---|
~10 |
3Blue1Brown neural networks; fast.ai Practical Deep Learning |
|
~13 |
Andrew Ng ML Specialization; scikit-learn hands-on |
|
~10 |
Build LangChain/LlamaIndex projects; study transformer architecture |
|
~10 |
fast.ai + PyTorch; train basic classification models |
|
~12 |
Build multi-agent systems with tool use; study ReAct patterns |
|
~10 |
HuggingFace NLP course; tokenization and embeddings |
|
~12 |
OpenCV fundamentals; basic image classification project |
|
~12 |
MLflow, DVC; model serving patterns; production ML pipelines |
Software Architecture — All 5 Subdomains (0% coverage)
| Subdomain | BoK Topics | Remediation Path |
|---|---|---|
~12 |
Designing Data-Intensive Applications (Kleppmann); system design interviews |
|
~13 |
MIT 6.824 Distributed Systems; Raft/Paxos consensus; CAP theorem hands-on |
|
~12 |
GoF patterns with Python examples; refactor domus-api to apply patterns |
|
~13 |
Event-driven architecture; message queues (RabbitMQ/Kafka); gRPC |
|
~12 |
Lambda/Kappa architecture; data warehouse vs data lake; schema design |
Databases — 4/5 Subdomains Near 0%
| Subdomain | BoK Topics | Coverage | Remediation Path |
|---|---|---|---|
~10 |
0% |
PostgreSQL fundamentals; SQL joins, indexes, transactions, EXPLAIN ANALYZE |
|
~9 |
0% |
MongoDB or Redis hands-on; document vs key-value vs column-family |
|
~8 |
~3% |
Neo4j + Cypher (partial via association-engine); deepen graph query patterns |
|
~10 |
0% |
SQLAlchemy with domus-api Phase 6; migration tooling (Alembic) |
|
~10 |
~2% |
PostgreSQL DBA fundamentals; backup, replication, connection pooling |
Automation — 3/4 Subdomains Low Coverage
| Subdomain | BoK Topics | Coverage | Remediation Path |
|---|---|---|---|
~9 |
0% |
Ansible fundamentals; playbooks for lab server fleet (Vault, BIND, k3s) |
|
~12 |
0% |
Terraform for home lab VMs (libvirt provider); then cloud infrastructure |
|
~9 |
~5% |
Systemd timers, make targets, GitHub Actions; event-driven automation |
|
~12 |
~10% |
Partial coverage via netapi; extend to Nornir + NAPALM patterns |
Observability — 3/4 Subdomains Near 0%
| Subdomain | BoK Topics | Coverage | Remediation Path |
|---|---|---|---|
~9 |
0% |
Prometheus + Grafana stack; instrument domus-api with metrics |
|
~10 |
0% |
Loki + Promtail; structured logging; log aggregation pipeline |
|
~9 |
0% |
OpenTelemetry basics; distributed tracing with Jaeger |
|
~10 |
~5% |
Partial via Wazuh; add SNMP polling, flow analysis, alerting |
Low Coverage Domains
Domains under 10% overall coverage — important but not all blocking.
| Domain | Coverage | Personal Skills | Priority Action |
|---|---|---|---|
Databases |
2% |
1 |
PostgreSQL fundamentals — start with relational; blocks backend and data roles |
Automation |
3% |
1 |
Ansible for lab fleet — most transferable automation skill |
Observability |
3% |
1 |
Prometheus + Grafana — required for any production operations role |
Programming Languages |
5% |
5 |
Python depth first (already Intermediate); then Go for infrastructure tooling |
Professional |
5% |
2 |
Project management and communication skills — undervalued; blocks leadership roles |
Domain Gap Summary
All 20 domains sorted by coverage (ascending).
| Domain | Coverage % | Personal Skills | BoK Topics |
|---|---|---|---|
AI/ML |
0% |
0 |
81 |
Software Architecture |
0% |
0 |
58 |
Databases |
2% |
1 |
47 |
Automation |
3% |
1 |
38 |
Observability |
3% |
1 |
37 |
Programming Languages |
5% |
5 |
103 |
Professional |
5% |
2 |
37 |
Software Engineering |
12% |
8 |
68 |
Cloud |
14% |
10 |
72 |
Security |
15% |
18 |
118 |
Data Engineering |
16% |
9 |
56 |
DevOps |
17% |
10 |
60 |
Infrastructure |
18% |
14 |
78 |
Networking |
19% |
16 |
86 |
Mathematics |
19% |
10 |
52 |
DevSecOps |
20% |
10 |
51 |
Platforms & Products |
23% |
12 |
53 |
Documentation |
25% |
10 |
40 |
CLI & Terminal |
27% |
15 |
56 |
Human Languages |
31% |
10 |
32 |
Recommended Learning Path
| Quarter | Focus Areas | Deliverables | Coverage Target |
|---|---|---|---|
Q2 2026 |
AI/ML Foundations + LLMs |
Complete fast.ai course; build 2 LLM-integrated projects; study ML math prerequisites |
AI/ML: 0% → 15% |
Q3 2026 |
Distributed Systems + Databases |
Read Designing Data-Intensive Applications; PostgreSQL production deployment; SQLAlchemy in domus-api Phase 6 |
Databases: 2% → 20%; Soft Arch: 0% → 10% |
Q4 2026 |
Software Architecture + Advanced Cloud |
AWS SAA certification; Terraform for cloud infrastructure; system design practice (3+ architectures documented) |
Cloud: 14% → 30%; Soft Arch: 10% → 25% |
Q1 2027 |
Automation + Observability |
Ansible for full lab fleet; Prometheus/Grafana/Loki stack; OpenTelemetry instrumentation |
Automation: 3% → 25%; Observability: 3% → 25% |
Gap Closure Priority (Next 12 Months)
| Priority | Action | Impact | Timeline |
|---|---|---|---|
1 |
Pass CISSP |
Validates security depth; unlocks Senior Security Engineer title; closes GRC and governance gaps |
Q2 2026 |
2 |
AI/ML Foundations + LLM Project |
Opens fastest-growing engineering market; closes 0% gap in highest-demand domain |
Q2-Q3 2026 |
3 |
PostgreSQL + SQLAlchemy (domus-api Phase 6) |
Eliminates critical database gap; required for any full-stack or backend-adjacent role |
Q3 2026 |
4 |
AWS SAA + Hands-On Cloud Lab |
Closes cloud gap; enables hybrid and cloud-native architecture roles |
Q3-Q4 2026 |
5 |
Distributed Systems (DDIA + MIT 6.824) |
Foundation for Software Architecture domain; required for Staff/Principal trajectory |
Q4 2026 |
6 |
Ansible for Lab Fleet |
Closes Configuration Management subdomain; demonstrates IaC capability |
Q4 2026 |
7 |
Prometheus + Grafana + Loki Stack |
Closes Observability gap; required for production operations and SRE readiness |
Q4 2026 |