PracHub
QuestionsPremiumCoachesLearningGuidesInterview Prep
|Home/System Design/Amazon

Design a risk management ticketing system

Last updated: Mar 29, 2026

Quick Overview

This question evaluates competency in system architecture, data modeling, access control and RBAC, idempotent API design, concurrency control, search and indexing, background job orchestration, and auditability for high-volume services.

  • hard
  • Amazon
  • System Design
  • Software Engineer

Design a risk management ticketing system

Company: Amazon

Role: Software Engineer

Category: System Design

Difficulty: hard

Interview Round: Onsite

Design a risk management ticketing system where human users can create and modify tickets and an automated risk-scanner bot can also submit tickets. Requirements: ticket lifecycle and states, role-based access control, idempotent ticket creation to avoid duplicates from the bot, concurrency control on updates, search and filtering, notifications, and monthly reporting for users and managers. Cover storage schema, APIs, background jobs for report generation, audit trails, and how the system scales for high volume.

Quick Answer: This question evaluates competency in system architecture, data modeling, access control and RBAC, idempotent API design, concurrency control, search and indexing, background job orchestration, and auditability for high-volume services.

Related Interview Questions

  • Design a Log Collection System - Amazon (medium)
  • Design Human Avoidance for Warehouse Robots - Amazon (medium)
  • Design a High-Availability Load Balancer - Amazon (hard)
  • Design a Ride-Hailing Matching System - Amazon (medium)
  • Design a cloud database write path and recovery - Amazon (hard)
Amazon logo
Amazon
Sep 6, 2025, 12:00 AM
Software Engineer
Onsite
System Design
3
0

Design a Risk Management Ticketing System

Context

You are designing a ticketing platform used by human users (analysts, managers, admins) and an automated risk-scanner bot. The system must support high volume, prevent duplicate tickets from automated sources, ensure safe concurrent updates, and provide auditability and reporting.

Requirements

  1. Ticket lifecycle and states with valid transitions.
  2. Role-based access control (RBAC) for humans and a bot role.
  3. Idempotent ticket creation to avoid duplicates from the bot.
  4. Concurrency control on updates.
  5. Search and filtering across ticket attributes and free text.
  6. Notifications (immediate and digest) to users.
  7. Monthly reporting for users and managers.
  8. Cover: storage schema, APIs, background jobs for report generation, audit trails, and scaling for high volume.

Deliverables

  • High-level architecture and components.
  • Data model/schema (relational core, search index, queues, caches).
  • API design, including idempotency and concurrency.
  • Lifecycle/state machine and RBAC model.
  • Background jobs for reporting, notification handling.
  • Auditability approach.
  • Scaling and reliability strategies.

Solution

Show

Submit Your Answer to Earn 20XP

Sign in to leave a comment

Loading comments...

Browse More Questions

More System Design•More Amazon•More Software Engineer•Amazon Software Engineer•Amazon System Design•Software Engineer System Design
PracHub

Master your tech interviews with 8,000+ real questions from top companies.

Product

  • Questions
  • Learning Tracks
  • Interview Guides
  • Resources
  • Premium
  • For Universities
  • Student Access

Browse

  • By Company
  • By Role
  • By Category
  • Topic Hubs
  • SQL Questions
  • Compare Platforms
  • Discord Community

Support

  • support@prachub.com
  • (916) 541-4762

Legal

  • Privacy Policy
  • Terms of Service
  • About Us

© 2026 PracHub. All rights reserved.