Home / AI Agents
// Path 04 — 5-phase roadmap

AI
Agents.

Developers and automation engineers. An agent is not a chatbot — it has goals, tools, memory, and can take actions across real systems. That makes governance the first requirement, not the last.

// 7 core components
01Goals
02Planning
03Tools
04Memory
05Orchestration
06Guardrails
07Observability
// The 5-phase roadmap

Phase by phase.
Governance before complexity.

Do not skip to multi-agent systems. Each phase builds on the previous one. Production readiness comes last — but it comes.

Phase 1

Foundations

You cannot build a governed agent without understanding what an agent is and how its components interact.

↳ What to learn
  • AI fundamentals: LLMs, tokens, context, temperature
  • Prompt engineering for reliable, structured outputs
  • APIs: how to call them, how to handle errors
  • JSON and structured outputs: why format matters for agents
  • Basic automation: triggering actions from model outputs
↳ What to build
  • Structured output agent — A simple agent that takes a natural language request, calls an LLM, and reliably returns JSON that triggers an action
  • Error handling skeleton — An agent wrapper that catches failures, logs them, and falls back gracefully
Phase 2

Tool Use

An agent without tools is just a chatbot. This phase makes the agent useful — and introduces the security surface that comes with it.

↳ What to learn
  • Function calling: how models decide which tool to use
  • API actions: read, write, POST — and when each is dangerous
  • File and browser access: why these need tight controls
  • Retrieval workflows: RAG, vector search, document access
  • Error handling: what to do when a tool call fails mid-task
↳ What to build
  • Tool-using agent — An agent with at least 3 tools: one read-only (safe), one write (needs gate), one external API call
  • Tool permission matrix — A document classifying each tool by risk level and whether it requires human approval
Phase 3

Agent Design

Planning, memory, and approval gates — this is where agents get genuinely useful and genuinely risky at the same time.

↳ What to learn
  • Planning loops: how agents decompose tasks into steps
  • Task decomposition: breaking complex goals into verifiable sub-tasks
  • Memory design: short-term context vs. long-term persistent memory
  • Human approval points: which steps require approval before proceeding
  • Evaluation and testing: how to verify your agent does what it should
↳ What to build
  • Governed research agent — An agent that searches, retrieves, synthesizes, and presents results for human approval before any output is published or sent
  • Agent evaluation suite — 10+ test cases that verify the agent handles edge cases, errors, and refusals correctly
Phase 4

Multi-Agent Systems

Multiple agents working together multiply capability — and multiply risk. Orchestration and conflict handling are the hard problems.

↳ What to learn
  • Role-based agents: orchestrator, researcher, writer, reviewer
  • Delegation: how an orchestrator agent hands work to sub-agents
  • Shared context: how agents pass state between them safely
  • Conflict handling: what happens when agents disagree
  • Workflow orchestration: tools for coordinating multi-agent pipelines
↳ What to build
  • Multi-agent pipeline — An orchestrator that delegates to 2+ specialized sub-agents with defined handoff points and shared context
  • Architecture diagram — A diagram showing agent roles, data flows, approval gates, and failure modes
Phase 5

Production Readiness

An agent is not production-ready until it can be monitored, audited, paused, and rolled back. This phase produces the governance artifacts that make deployment safe.

↳ What to learn
  • Permission boundaries: least-privilege for every agent tool
  • Monitoring: what metrics to track for a running agent
  • Audit logs: what every agent action needs to record
  • Rollback plans: how to safely stop or revert an agent run
  • Security reviews: threat modeling your agent system
  • Governance documentation: who approved this, what it can do, who owns it
↳ What to build
  • Production agent — A fully governed agent with permission boundaries, logging, approval gates, and a documented rollback plan
  • Governance package — One document covering: agent purpose, owner, permissions, audit log design, known failure modes, and kill-switch procedure
  • Threat model — A security review of your agent system before any production deployment
// Prompts to use right now

Three agent design prompts.
Think before you build.

Use these to design your agent before writing any code. Replace [brackets] with your specifics.

// Agent design blueprint 
Role: You are an AI agent architect.
Goal: Help me design an agent for this use case: [describe what you want the agent to do].
Context: Available tools: [list tools or APIs it can call]. Users: [who triggers it]. Risk level: [low/medium/high stakes].
Format: Output as a structured blueprint with these sections: (1) Goal statement, (2) Planning approach (how it breaks down tasks), (3) Tools required with permission level [read-only / write / external], (4) Approval gates (which actions need human approval), (5) Failure modes and fallbacks.
// Guardrails design 
Role: You are an AI safety engineer.
Goal: Design guardrails for an AI agent that [describe what the agent does].
Context: The agent operates in [domain, e.g. customer support, code deployment]. It can [list its capabilities]. Real-world consequences if it fails: [describe].
Format: Three sections: (1) Input guardrails — what requests should it refuse?, (2) Action guardrails — what actions require human approval before proceeding?, (3) Output guardrails — what should it never return?. Rationale for each.
// Audit log design 
Role: You are an AI systems engineer.
Goal: Design a logging and monitoring plan for this AI agent: [describe the agent].
Context: This will run in production. Users: [who uses it]. Sensitive data it touches: [describe]. Compliance requirements: [any applicable].
Format: (1) What to log per run (with priority HIGH/MEDIUM/LOW), (2) Metrics to track (latency, error rate, refusal rate), (3) Alerts to set and their thresholds, (4) What constitutes a security incident requiring a runbook response.
// Non-negotiables
  • Every agent has a defined scope — it does not do more than documented
  • Every agent has a kill-switch — it can be stopped in under 60 seconds
  • Tool access is least-privilege by default — add permissions only when required
  • All agent runs are traced and logged — every action, every decision
  • Human approval gates exist for any action with real-world consequences
// Career track
AI Automation Engineer

Designs and builds governed agentic systems. Combines automation path skills (n8n, workflows) with agent design (planning loops, multi-agent orchestration, production safety).

Target roles

AI Agent Engineer · LLM Systems Developer · Agentic AI Platform Engineer · AI Workflow Architect

Market context

Software developers: $133,080 median wage, 15% projected growth (BLS 2024). Agentic AI specialization is one of the fastest-growing demand areas in the field.

All 8 career tracks →
// What's next

Agents shipped.
Now make them safe.

Building agents is the hard part. Securing them, governing them, and writing the prompts that make them reliable — that's what separates production-ready from a demo that breaks.

🔐
Path 01
Cybersecurity + AI

Learn to threat model agents, identify prompt injection attack vectors, and build the governance controls that keep autonomous systems safe in production.

Start →
✏️
Path 05
Prompt Engineering

Your agent is only as good as its system prompt. This path teaches structured, testable prompt design — the difference between an agent that's reliable and one that drifts.

Start →
Path 03
Automation + AI

For lighter use cases — where n8n, Make, or Zapier gets the job done without building a full agent. Understand when automation is the right tool and when agents are overkill.

Start →
See all 8 career tracks + salary data →