← All Posts
CCDE Journey

CCIE vs CCDE — The Justification Is the Answer

Mario Geovanny Campos·2026-05-19·6 min read
CCIE vs CCDE — The Justification Is the Answer

There is a moment in every senior network engineer's career that nobody really prepares you for.

You've spent years getting things to work. Troubleshooting BGP at 2 AM. Recovering outages. Building networks from scratch. Passing exams that statistically more people fail than pass. You know your stuff, and you have the numbers to prove it.

Then one day someone puts you in a room and asks you to design something.

Not configure it. Not troubleshoot it. Design it.

And for the first time in years, you realize the question being asked is one you haven't actually trained for.

I know because I went through it.

The CCIE mindset is straightforward: get the task, make it work.

Cisco doesn't ask you to justify your approach in the CCIE lab. They tell you what to build, and you build it. The faster, cleaner, and more accurately you execute, the better.

That mindset produces some of the best engineers in the industry, and I have nothing against it.

It's just a ceiling.

The CCDE lives above that ceiling.

What most people don't realize is that the CCDE is not a "harder CCIE." It's not more commands, more protocols, or more pressure.

It's a completely different question being asked.

The CCIE asks whether it works. The CCDE asks whether it's the right design for this specific business, with these specific constraints, operated by these specific people.

And here's the part that quietly breaks the brain of almost every engineer the first time they encounter it:

There is no single correct answer in the CCDE practical exam.

Two candidates can walk into the same scenario, recommend completely different architectures, and both can pass.

Because the answer is never the answer.

The justification is the answer.

That one idea dismantles everything most engineers have been trained to believe about expertise.

Think about how we learn in this industry.

We lab. We break things and fix them. We memorize timers, packet flows, state machines, convergence behavior.

All of that builds pattern recognition — see a problem, apply a solution.

That works brilliantly for implementation.

It works terribly for design.

Design requires something completely different.

It requires sitting with ambiguity and incomplete information and still making a defensible decision.

It requires understanding that the technically superior solution is sometimes the wrong solution.

A perfectly engineered EVPN fabric that requires three senior engineers to operate is a bad design for a company with one overworked generalist IT admin.

A multi-region architecture with ultra-fast convergence means nothing if the business cannot support the operational complexity that comes with it.

The CCDE will absolutely penalize you for ignoring that reality.

The first time I worked through a real CCDE-style scenario, my instinct was to choose the most technically robust design possible.

The correct answer turned out to be the design that best fit the budget, staffing limitations, operational maturity, and 18-month growth plan.

Those are not the same thing.

That shift, from "make it work" to "make it right for this context," is the entire game.

Most certifications test what you know.

The CCDE tests how you think when you don't have all the answers, which if we're being honest, is most real-world networks.

So if you're a CCIE thinking about the CCDE, the real question probably isn't whether you know enough protocols.

It's whether you've trained yourself to ask why before you ask how.

← All PostsFollow on LinkedIn ↗