Describe leading an ambiguous ML project end-to-end

# STAR Example: Real-Time Signup Risk Scoring for Abuse Prevention ## Situation Our growth team faced a surge in fake/bot signups that later drove spam, support load, and downstream abuse. Leadership asked us to "block bad accounts at signup" before an upcoming marketing launch. Requirements were ambiguous: no clear definition of "bad," no guardrails for user friction, and no agreement on success metrics or latency/cost constraints. ## Task Turn the vague ask into a precise, measurable ML problem and lead the end-to-end delivery (modeling, infra, and policy) under tight timelines. - Problem statement: Predict probability that a new account will be disabled for policy violations within 7 days. Use the score to route to one of three actions at signup: allow, challenge (e.g., SMS/2FA), or block. - Success metrics (aligned with stakeholders): - Business: Reduce D1/D7 abusive accounts by ≥50% while keeping false blocks (legitimate users incorrectly blocked) ≤0.3%. - Model: ROC-AUC ≥0.92; Precision-Recall AUC improvement ≥2× over baseline; calibrated probabilities (Brier score ≤0.10). - Latency/SLOs: p95 inference <20 ms, p99 <40 ms at 1k QPS; 99.9% availability. - Cost: Inference infra ≤$2,000/month; feature store reads ≤$0.15 per 1,000 predictions. - Fairness: Ratio of false-positive rate (FPR) across top-5 regions ≤1.5×; no sensitive attributes used (no gender/ethnicity), region-only parity checks. ## Actions ### 1) Scoping and Data/Labeling - Defined "abuse" as accounts disabled within 7 days for policy reasons (spam reports, automated detection, trust & safety actions). This gave 1.8% positives on 50M historical signups. - Created time-based splits to avoid leakage: 10 months train, 1 month validation, last month blind test. - Features: device and network signals (IP /24, ASN, proxy/Tor flags), velocity (signups per device/IP per hour/day), user agent entropy, email domain reputation (aggregated, hashed), time-of-day/week, geolocation consistency checks. - Privacy: No raw IP stored beyond 30 days; hashed/aggregated network features; PII encrypted at rest; data retention policy documented and approved. ### 2) Technical Leadership: Models, Trade-offs, Thresholds - Baselines: Logistic Regression (fast, interpretable), Random Forest; Candidates: LightGBM, CatBoost. - Class imbalance handling: focal loss vs. class weights; PR-AUC emphasized over ROC-AUC. - Results (blind test): - Logistic Regression: ROC-AUC 0.86; PR-AUC 0.24; p95 2 ms. - Random Forest: ROC-AUC 0.90; PR-AUC 0.33; p95 18 ms. - LightGBM (chosen): ROC-AUC 0.94; PR-AUC 0.49; p95 12 ms; p99 24 ms. - Calibration: Isotonic regression; Brier score improved from 0.128 → 0.093. - Interpretability: Global and per-decision SHAP; enforced monotonic constraints on risk-coded features (e.g., more recent failures ⇒ higher risk), which improved stakeholder trust without harming AUC. - Decision policy (score s ∈ [0,1]): - Allow: s < 0.20 - Challenge: 0.20 ≤ s < 0.70 - Block: s ≥ 0.70 - Threshold selection: Optimized expected cost with cost matrix estimated with finance and PM: - False Negative (let abuser through): $2.10 expected downstream cost - False Positive block: $7.50 (lost user + support contact) - Challenge cost: $0.06 (SMS + friction), with 93% completion among legitimate users - This yielded recall 0.72 at FPR 0.18% on blind test; expected cost/user ↓ 41% vs. baseline rules. - Infra/cost trade-offs: LightGBM with on-heap model and feature caching; selected feature store online cache with 10 ms p95 reads; total inference cost projected $1.7k/month at peak QPS. ### 3) Stakeholder Alignment, Risk, and Decision Checkpoints - PM: Aligned on business OKRs (≥50% D1/D7 abuser reduction), acceptable friction budget (≤0.3% false blocks; ≤1.0 pp drop in sign-up completion). - Engineering: Defined SLOs (p95 <20 ms, p99 <40 ms) and resiliency (graceful degradation → allow+challenge-only mode if inference fails). - Legal/Privacy: Excluded raw PII in features; hashed/aggregated network features; 30-day retention; DPIA documented. Set fairness guardrail: regional FPR ratio ≤1.5×. - Decision gates: PRD + risk doc sign-off; model card + fairness report; shadow-launch review; canary A/B go/no-go; post-A/B readout. - Disagree-and-commit example: PM wanted to skip shadow and go straight to block before a large campaign. I recommended a 2-week shadow to quantify false blocks. After presenting risk plots and rollback plan, we compromised on a 1-week shadow and block only for the top 0.5% highest-risk scores. I disagreed with the shortened shadow but committed, added stricter rollback triggers (see below), and raised the block threshold for launch week. ### 4) Execution, De-risking, Rollout, and Monitoring - Offline → Shadow: Shipped read-only scoring in prod for 7 days. Observed score distribution stability (Population Stability Index, PSI 0.08 vs. train), estimated live TPR/FPR via delayed labels, and tuned challenge/block cutoffs. - A/B: 10% canary, then 50% ramp. Initial policy was allow+challenge-only for mid-risk; block only highest risk. - Rollback criteria (auto-fallback to "allow+challenge-only"): - False block rate >0.3% for 5 consecutive minutes OR >0.25% for 30 minutes. - Sign-up completion delta worse than -0.8 pp vs. control for 30 minutes. - p99 latency >50 ms for 10 minutes OR inference error rate >0.5% for 5 minutes. - Monitoring and alerts: - Model: TPR/FPR (with delayed labels), PR-AUC (backfilled), calibration drift (Expected Calibration Error). - Data drift: PSI on key features and score; alert at PSI >0.2; null/entropy checks. - Fairness: FPR and challenge rate by region; alert if max ratio >1.5×. - System: p50/p95/p99 latency, QPS, error rate, cache hit rate, cost per 1k predictions. - Business: D1/D7 abuser incidence; manual review queue size; user-reported spam. - On-call runbook with one-click policy downgrade and feature-flag kill switch. ## Results - Business impact (90-day post-launch): - D1 abusive accounts ↓58%; D7 abusive accounts ↓54% vs. control. - Manual review hours ↓42%; spam reports ↓31%. - Sign-up completion dropped by 0.2 pp (within budget). - Estimated annualized savings: ~$3.6M (support + abuse remediation + brand risk proxy), validated with finance. - Model/system: - Blind test ROC-AUC 0.94; PR-AUC 0.49; live calibration stable (Brier 0.095 ± 0.006). - Live recall 0.70 at FPR 0.18% after threshold tuning. - Latency: p95 14 ms, p99 28 ms at 1.1k QPS; 99.97% availability. - Monthly inference cost ~$1.8k; feature store reads $0.11 per 1k preds. - Fairness/privacy: - Max regional FPR ratio 1.32× (within 1.5× guardrail). - Passed DPIA; no raw IP persisted beyond 30 days; model card published. ## Reflection (What I'd do differently) - Earlier experiment design: Pre-committed a decision matrix and minimum detectable effect for A/B before building; would have saved 1 week of debate. - Metric design: Added cost-weighted utility metric as primary earlier so threshold conversations were smoother. - Data quality: Ship automatic feature schema validation and drift monitors before shadow; we built them during shadow under time pressure. - Documentation: Start model card and risk register at project kickoff; sped up legal and launch reviews in later iterations. - Longer shadow for seasonality: We saw mild drift after a holiday event (PSI ~0.22). Next time, plan shadow across a seasonal boundary and pre-generate adaptive thresholds. --- How to adapt this answer - Swap the domain (e.g., recommendations, churn, search quality) but keep the same structure: scope → explicit metrics/guardrails → model/trade-offs → staged rollout + rollback → monitoring → quantified impact → reflection. - Include concrete numbers for AUC/PR-AUC, latency p95/p99, cost/month, FPR/recall targets, fairness ratios, and rollback triggers. - Show at least one principled trade-off and one disagree-and-commit moment.