← Back to all posts
#data-engineering#system-design#interview#architecture#streaming

How to Crack the Data Engineering System Design Interview

By Petascale Labs ·

Most system design prep is built for backend engineers. Design Twitter. Design a URL shortener. Talk about load balancers, read replicas, and cache invalidation. Then you walk into a data engineering loop, the interviewer says "design a pipeline for a near-real-time analytics dashboard," and the muscle memory doesn't transfer. There is no QPS-per-user to optimize. The hard parts are somewhere else: how much data, how fast, how fresh, what happens when you replay it, and what breaks at 3am.

The thing that trips most candidates up is not a missing fact. It is the instinct to answer a design prompt with a tool list. "I'd use Kafka, then Spark, then write to Snowflake, done." That is a parts catalog, not a design. The interviewer already knows the tools exist. They are testing how you reason about load and trade-offs, not which logos you can name. A weak candidate names components. A strong candidate names the decision behind each component and the failure it is there to prevent.

The good news is that data engineering design questions rhyme. There is a framework underneath them, and once you can run it live, most prompts collapse into the same five moves. This post is that framework, demonstrated end to end on one running prompt, with the exact questions to ask up front, the arithmetic to do out loud, and the follow-up questions interviewers use to find the edge of what you actually understand.

The prompts you'll actually get

Before the framework, recognize the genre. Data engineering design rounds reuse a small set of archetypes. If you can spot which one you're in, you already know what the interviewer is really probing.

  • "Design a real-time analytics / metrics pipeline." The classic. They want to see if you understand streaming, freshness SLAs, and aggregation under load. This is our running example.
  • "Design ingestion from N source databases into a warehouse or lakehouse." This is a change-data-capture question in disguise. They're probing whether you know that snapshots don't scale and that ordering, deletes, and schema drift are the real problems.
  • "Design a system to deduplicate or reconcile events at scale." A delivery semantics question. They want to hear "idempotency" and "dedup keys," not "exactly-once" said three times.
  • "Our nightly batch is too slow and too expensive. Redesign it." A cost and partitioning question. They want incremental processing, partition pruning, and file layout, not "throw a bigger cluster at it."
  • "Design data quality and SLA monitoring for a critical table." An observability question. They want freshness checks, lineage, and an alerting story with a human on the other end.

Different surfaces, same underlying skill. Here is the skill.

The framework: Clarify, Size, Sketch, Deep-dive, Defend

Five moves, in order, every time:

  1. Clarify the requirements before you draw a single box.
  2. Size the system with back-of-the-envelope math.
  3. Sketch the high-level architecture.
  4. Deep-dive the two or three decisions that actually carry risk.
  5. Defend your trade-offs and say where the design breaks.

We'll walk all five on one prompt:

"Design a pipeline that powers a near-real-time analytics dashboard for an e-commerce site's clickstream and order events."

1. Clarify the requirements

The single biggest separator in these interviews is whether you ask questions before you start designing. The prompt is deliberately underspecified. Your first job is to turn "near-real-time analytics dashboard" into numbers and constraints.

Tip

Never start drawing boxes in the first two minutes. The candidate who spends three minutes clarifying looks senior. The candidate who starts naming Kafka topics immediately looks like they're pattern-matching, not designing.

The questions worth asking, roughly in priority order:

  • Freshness SLA. How fresh does the dashboard need to be? Sub-second? One minute? Five minutes? "Near-real-time" usually means minutes, not milliseconds, and that single answer changes the whole architecture.
  • Volume and velocity. How many events per second on average, and at peak? E-commerce is spiky - a flash sale or Black Friday can be 5 to 10x normal.
  • Consistency expectations. Can the dashboard be eventually consistent, or does a number ever need to be exactly right at read time? Almost always eventual is fine for analytics, but make them say it.
  • Correctness on replay. If we reprocess a day of data after a bug, must the numbers come out identical? This is where idempotency enters.
  • Query patterns and consumers. Who reads this? A BI tool slicing by dimension? An ops team watching a few top-line metrics? That decides the serving layer.
  • Retention. Keep raw events for a day, a year, forever? Drives storage cost and table layout.

A short exchange of how this sounds live:

You: What freshness does the dashboard need - is a 2 to 5 minute lag acceptable, or does someone need sub-second numbers? Interviewer: A couple of minutes is fine. You: And roughly what event volume - are we talking thousands per second or hundreds of thousands? Interviewer: Assume 10,000 clickstream events per second on average, with 5x spikes during sales. Orders are much lower, a few hundred per second.

Now you have something to design against. Pin the assumptions out loud: "Okay, so minutes of acceptable lag, eventual consistency is fine, 10k events/sec average and 50k at peak, replays must be safe. I'll design for that."

2. Size it

Now do the math, out loud, on the whiteboard. This is the move most candidates skip, and it's the one that turns a vague hand-wave into a concrete design.

Start from the numbers you just pinned:

Average:  10,000 events/sec
Peak:     50,000 events/sec  (5x sale spike)
Event size: ~1 KB (JSON clickstream record)

Seconds per day:   ~86,400
Events per day:    10,000 x 86,400  =  864 million/day  (~1 billion)
Raw bytes per day: 864M x 1 KB      =  ~860 GB/day raw
Compressed (~5x columnar):           ~170 GB/day
Per month (raw / compressed):        ~26 TB  /  ~5 TB

Peak ingest throughput: 50,000 x 1 KB = ~50 MB/sec

Two design-forcing conclusions fall straight out of this:

  • 50 MB/sec at peak rules out a single-writer ingest. You need a partitioned, horizontally scalable buffer. One Kafka partition handles roughly 10 MB/sec comfortably, so you're looking at a topic with at least a handful of partitions, and realistically 24 to 48 for consumer parallelism and headroom.
  • ~5 TB/month compressed means storage layout and retention are real cost decisions, not afterthoughts. You're not keeping a billion rows a day in a hot warehouse forever.

You don't need precision here. You need the right order of magnitude and the ability to show that the numbers drive the design. Knowing that a day has about 86,400 seconds, and that columnar compression buys you roughly 3 to 10x, is the kind of back-pocket arithmetic interviewers expect.

3. Sketch the architecture

Now, and only now, draw the boxes. Keep it to the layers that matter and say why each one exists.

Walk each layer in a sentence:

  • Kafka as the buffer. Decouples bursty producers from processing, absorbs the 5x spike, and gives you a replayable log - which you'll need for backfills.
  • Stream processor. Consumes the topic, does windowed aggregation (events per minute, revenue per category), and writes incrementally. This is what makes the dashboard "near-real-time."
  • Batch / backfill path. The same logic runnable over historical data for reprocessing and corrections. (We'll come back to why this exists.)
  • Lakehouse tables. Iceberg or Delta over object storage: cheap, scalable, with transactions and schema evolution. Your source of truth.
  • OLAP serving. A query engine the dashboard hits. Eventual consistency is fine, so this reads the lakehouse tables.
  • Dead-letter queue. Malformed events go here instead of crashing the job.

That's a defensible skeleton. The interview is really about what comes next.

4. The deep-dives: the decisions that carry risk

You won't have time to deep-dive everything, and trying to is itself a red flag. Pick the two or three decisions with the most risk and reason through them. Below are the six the interviewer is most likely to push on, each framed as the trade-off, the trap, and the follow-up question they'll use to find your edge.

Batch vs streaming

The decision: streaming gets you minutes of freshness but costs more in complexity and compute and is harder to reason about. Batch is simpler and cheaper but bounded by its schedule. Our SLA is minutes, so streaming for the live path, plus a batch path for reprocessing. That's the Lambda pattern. If you can make one codebase serve both bounded and unbounded input (the Kappa approach, replaying the log through the same streaming logic), you avoid maintaining two implementations of the same aggregation.

Follow-up: "A bug corrupted last week's revenue numbers. How do you reprocess six months of data?" This is why the batch/replay path exists. Your answer: replay from Kafka (if retention allows) or from the raw lakehouse table through the same aggregation logic, writing to a side table, then atomically swap. The worst answer is "I'd re-run the streaming job," because streaming state doesn't trivially rewind.

Delivery semantics and idempotency

The decision: networks and consumers fail, so messages get redelivered. You have two honest options - at-least-once delivery with idempotent writes, or true exactly-once (which is expensive and narrower than people think). For an analytics pipeline, at-least-once plus idempotency is almost always the right call: give each event a stable dedup key and make your writes upserts keyed on it, so reprocessing the same event twice produces the same result.

!Warning

Duplicates double-count revenue. A consumer reads a batch, writes the aggregated revenue, then crashes before committing its offset. On restart it reprocesses the same batch. If your write is a blind INSERT or +=, you've just counted that revenue twice and the dashboard is now wrong in a way nobody notices until finance does. Idempotent upserts keyed on a dedup id make redelivery a no-op.

Follow-up: "A consumer crashes mid-batch. Walk me through exactly what happens." Strong answer: offsets are committed only after the write succeeds, so on restart the batch is reprocessed; because writes are idempotent, the reprocessing is safe and the numbers stay correct. That sentence tells the interviewer you actually understand the failure model, not just the happy path.

Partitioning and skew

The decision: how you partition the data, in Kafka and in storage, determines whether load spreads evenly or piles onto one worker. Partition by something with high cardinality and even distribution. Time plus a hashed key is a common choice.

!Warning

One hot key melts one worker while the rest idle. Partition orders by seller_id and a single marketplace seller doing 40% of volume on Black Friday becomes one scorching partition. The cluster looks busy on average and is actually bottlenecked on one core. Skew is the silent killer of "but it scaled fine in testing."

Follow-up: "One key turns out to be 90% of your traffic. Now what?" Talk about salting the key (append a random suffix to spread the hot key across N partitions, then aggregate the partials), or a two-stage aggregation, or detecting and routing hot keys separately. The point is you recognize skew as a first-class problem, not something you discover in production.

Storage layout and the small-files problem

The decision: a streaming job that commits every few seconds wants to write many tiny files. Object storage and query engines hate that.

!Warning

Ten thousand tiny files per hour will strangle your queries. Every file is a metadata entry to list and open. A query that should scan a few large files instead opens tens of thousands of 50 KB ones, and your "fast" dashboard query spends all its time on file listing and open overhead. The small-files tax is one of the most common real-world lakehouse failures.

Follow-up: "Your streaming writer is producing 10,000 small files an hour. Fix it." Answer: buffer and write larger files less often (trade a little freshness for far better read performance), and run periodic compaction to rewrite small files into large ones. Iceberg and Delta both support this. Mention partition pruning and sort order so the dashboard's common filters scan less data.

Schema evolution and contracts

The decision: the upstream product team will change the event shape. They will add fields, rename fields, and occasionally ship something malformed. Your pipeline has to survive that without a 3am page.

Favor additive, backward-compatible evolution: new fields are nullable, old fields are never silently repurposed. Push for a data contract between producers and your pipeline so changes are agreed, not discovered. And route records that don't parse to the dead-letter queue instead of crashing the consumer.

Follow-up: "Product renames a field in the event. What happens to your pipeline?" Good answer: with a contract and additive evolution, a rename is a versioned, coordinated change, not a surprise. Without one, you catch it because the new field flows through as a nullable column and the old one goes empty, your quality checks flag the drop, and the bad-but-parseable records keep flowing while you fix the mapping - rather than the whole job dying.

Failure, SLA, and observability

The decision: a pipeline nobody can see is a pipeline that fails silently. You need freshness monitoring (is the latest data within SLA?), volume monitoring (did event counts suddenly drop or spike?), and lineage (when a number is wrong, which upstream table caused it?).

Follow-up: "It's 9am and the dashboard is three hours stale. How do you find out, and who knows?" Strong answer: a freshness check on the output table fires when max event time lags wall-clock by more than the SLA, alerts the on-call engineer, and lineage lets you walk back from the stale dashboard table to the stuck consumer or lagging Kafka partition. The weak answer is "a user would report it," which tells the interviewer you've never owned a pipeline in production.

What a strong answer sounds like, start to finish

Stitched together, a confident 35-minute answer to the running prompt sounds like this:

"I'd first confirm the SLA - minutes of lag, eventual consistency, replays must be safe. At 10k events/sec average and 50k peak, that's about a billion events and ~170 GB compressed a day, and 50 MB/sec at peak rules out a single writer, so I'll buffer through a partitioned Kafka topic. A stream processor does windowed aggregation and writes incrementally to Iceberg tables, with a parallel batch path over the same data for reprocessing. I'll use at-least-once delivery with idempotent upserts on a dedup key so redelivery never double-counts. I'll partition on time plus a hashed key and watch for skew on hot sellers, salting if needed. The streaming writer buffers to avoid small files and compaction runs periodically. Schema changes go through a contract with additive evolution, and bad records go to a dead-letter queue. Freshness and volume monitors page on-call, and lineage lets us trace a wrong number back to its source. The main place this breaks is a sustained hot key or a producer that violates the contract, so those are where I'd invest in monitoring first."

That's not magic. It's the five moves, in order, with the trade-offs named.

What interviewers actually score

The rubric is more about reasoning than recall. Here's the signal they're reading:

Strong signalRed flag
Names the trade-off behind each choiceNames only the tool ("I'd use Kafka")
States assumptions out loud and pins themInvents requirements silently
Does back-of-envelope math to justify scaleHand-waves "it'll scale"
Says where the design breaksClaims it's bulletproof
Drives the conversation through the five movesWaits to be asked the next thing
Treats idempotency, skew, schema drift as first-classOnly designs the happy path

The candidate who says "here's the trade-off, here's what I'd pick and why, and here's where it would break" beats the candidate with a longer tool list every time.

The night-before checklist

If you read one section the night before, read this. The most common ways candidates lose these rounds:

  • Jumping to tools before clarifying the SLA and volume.
  • Skipping the capacity math, so every later decision is ungrounded.
  • Over-engineering exactly-once when at-least-once plus idempotency is simpler and enough.
  • Forgetting backfills and replays exist until the interviewer asks.
  • Ignoring partition skew because it "worked in the demo."
  • Writing tiny files and never mentioning compaction.
  • No monitoring or alerting story - the design ends at "data lands in a table."
  • Designing only the happy path and never naming a failure mode.

Run the five moves, do the math out loud, name your trade-offs, and tell them where it breaks. That's the whole game.

If you want to go deeper on the patterns behind these decisions - incremental processing, idempotent backfills, partitioning, and failure modes - the Orchestration and Pipelines track walks through them with hands-on labs.

Found this useful? Give it a like.