ITProLab Blog

25 Feb

Building a Trading Robot (Part 3): Execution Layer, Risk Management, and System Architecture

By Max Verbin — Founder of ITProLab and ForkNews, Go Backend Architect

A trading advisor is not a thing by itself. And it is not a thing in a box that you can put on a shelf and forget. You have to run it, connect to it, request analysis, and then receive a signal.

Once you say that out loud, the question becomes practical: what form will this product take for the user? There is a choice, but it is not unlimited.

The most obvious option is to run a program on a personal computer: desktop or laptop, it does not really matter. The second option is a self-hosted setup, where you run the service on a rented machine on the Internet. And if we are greedy enough or entrepreneurial enough, pick what fits you better, we can build a full SaaS and sell trading signals as a service.

If you reduce it to one simple checklist, all three options differ by answers to the same questions: where the advisor lives, who holds keys and data, who pays for infrastructure and tokens, and who is responsible when something breaks. Next we will go through each box and see which modules stay the same and which change sharply together with the delivery model.

"Mine, all mine" - desktop version

Desktop is the most direct and understandable option: the advisor lives on the user’s computer. Everything it knows and does stays nearby: settings, keys, candle history, cache, signals, logs. This immediately removes half of the anxiety about "where is my data" and "who else can see it".

The upsides are obvious. First, everything is stored locally, without external infrastructure and extra intermediaries. Second, access to signals is fast: you open the app and see what is going on, without relying on your server. Third, this option is easier to extend later: you can add plugins for exchanges, models, news sources, and avoid turning the product into a monolith if the architecture allows it.

But desktop has a price. Uptime is far from 100 percent: you close the laptop lid, the computer goes to sleep, the Internet drops, and the advisor "disappears". The data volume is also not small: OHLCV history grows quickly, then add analysis results, cache, logs, and later news. All of that lives on the user’s disk. Finally, the load is local too: CPU, memory, network, background tasks, and the more frequently you analyze the market, the more noticeable it becomes.

"Let it sit here for now" - self-hosted service

Self-hosted is when you rent a server on the Internet, deploy the advisor there, and use it as a service. Deployment, config, keys, updates are on your side. Access is usually via the web, sometimes via an API, and the interface opens in a browser from any device.

The advantages start with something simple: uptime is close to 100 percent. A server does not go to sleep and does not close its laptop lid. Then it gets more important: data sources are closer and more stable, fewer random network drops, it is easier to keep a cadence, and as a result signals are more consistent and predictable. Another practical plus is access from anywhere: you can connect from different devices and, if needed, grant access to trusted people without shipping the whole project or keys on a flash drive.

The downsides are standard too. Infrastructure costs money, even if not a lot. Maintenance requires either skills or someone who covers them: updates, backups, logs, monitoring, basic "why did the process die". And there is a security angle: keys and data live on the server. Usually it is not a reason to panic, but the "install and forget" mode works worse here than in the desktop version.

"Fresh signals! Who wants signals?" - your own SaaS

SaaS is not so much a delivery format as a business format. You do not "hand a box" to the user and ask them to deploy it. You run the infrastructure yourself and sell access by subscription: signals as a service.

Implementation-wise it differs noticeably from self-hosted. There you have one server and one owner. Here you get users, roles, limits, data isolation, and everything that usually comes with it: billing, subscription accounting, cost control for tokens and load. Plus you need not only code, but people who will keep it running: monitoring, incidents, updates, customer support. At this point you are discussing processes, not just architecture.

The reward is different too. SaaS is the level where the product starts living its own life: you can scale, ship changes quickly, accumulate statistics on signals, improve quality, and package it into clear plans. In other words, it is no longer an "advisor for yourself", but a platform with growth potential.

Summary

There is no single correct box for an advisor. There is your goal, your usage mode, and your constraints. For one person desktop is more logical because everything is local and under control. For another self-hosted is better because they need stable uptime and access from different devices. And if you are thinking about a product and subscriptions, that is SaaS, with its own economics and organization.

The choice should be based not on taste, but on plans and capabilities: how much time you are willing to spend on maintenance, who is responsible for uptime, where data and keys will live, and how you will grow if the project suddenly takes off.

For additional technical explanations and common implementation questions, see the related Trading Automation FAQ section dedicated to this topic.

Author: Max Verbin — Founder of ITProLab and ForkNews, Go Backend Architect

Frequently Asked Questions

Signal generation and trade execution represent two separate layers in a trading architecture. Signal generation focuses on analysis and decision making, often using technical indicators, statistical models, or AI algorithms. This stage determines whether the system believes a market opportunity exists. Trade execution, on the other hand, focuses on interacting with exchanges and placing orders. The execution layer must consider practical constraints such as API rate limits, order types, and available balances. Separating these layers improves system reliability because analytical models can evolve independently from execution logic. It also allows engineers to test strategies without connecting them to live markets. By keeping these responsibilities distinct, trading systems remain easier to maintain and extend.

Position management tracks the current exposure of a trading system to different assets. When a signal is generated, the system must check whether it already holds a position in the same market. If a position exists, the robot may increase, reduce, or close it depending on the strategy rules. This component also calculates metrics such as average entry price, unrealized profit or loss, and portfolio allocation. Position management prevents the system from opening multiple conflicting trades simultaneously. It also helps enforce risk limits by ensuring that positions do not exceed predefined thresholds. Many systems maintain a dedicated position module that continuously synchronizes with exchange balances. Accurate position tracking is essential for maintaining consistent strategy behavior.

Automated trading systems operate continuously and often without direct human intervention. Monitoring ensures that the system remains operational and behaves according to expectations. A monitoring layer typically tracks metrics such as signal frequency, execution success rate, and system latency. If anomalies occur, alerts can notify operators through messaging platforms such as Telegram or email. Monitoring tools also help detect infrastructure issues such as network failures or API downtime. Without monitoring, system failures might remain unnoticed for long periods. For trading robots interacting with live markets, this could lead to financial losses. Continuous monitoring therefore plays a critical role in maintaining operational safety.

Exchange APIs occasionally return errors due to rate limits, connectivity issues, or internal failures. A robust trading robot must include mechanisms for detecting and recovering from these problems. Error-handling routines may retry failed requests after a short delay. In some cases, the system may temporarily suspend trading activity until the connection is restored. Logging these errors allows developers to analyze patterns and improve system resilience. Some architectures also implement fallback strategies to prevent repeated failures from causing cascading issues. Handling errors correctly ensures that the trading robot remains stable even when external services behave unpredictably. Reliable error management is therefore a key part of production-grade trading infrastructure.

Logging is essential for understanding how a trading robot behaves over time. Every signal, prompt, model response, and executed trade should be recorded in a structured log. This historical record allows developers to analyze system performance and identify unexpected behavior. When a trade results in a loss, logs help determine whether the issue originated from market conditions, strategy logic, or execution errors. Logging is also important for debugging infrastructure problems such as API failures or data inconsistencies. In AI-driven trading systems, storing prompts and model responses provides transparency into how decisions were generated. This transparency becomes critical when strategies are updated or optimized. Comprehensive logging therefore acts as the system’s operational memory.

The execution layer is the component responsible for translating trading signals into real market actions. Once a strategy or AI model produces a signal such as buy, sell, or hold, the execution layer determines whether the order should actually be placed. It interacts directly with exchange APIs to submit, modify, or cancel orders. This layer must also account for real-world constraints such as liquidity, order size limits, and network latency. In many systems, the execution layer includes safeguards to prevent accidental or excessive trades. For example, it may verify position sizes or compare the signal with current portfolio exposure. Because this component interacts with financial markets in real time, reliability is essential. A stable execution layer ensures that strategy logic is translated into consistent trading behavior.

Different order types allow trading robots to interact with markets in different ways. A market order executes immediately at the best available price but may experience slippage during volatile conditions. A limit order specifies a price at which the trade should be executed, giving the system more control over entry conditions. Some exchanges also support advanced order types such as stop-loss orders or trailing stops. Trading bots must choose the appropriate order type depending on the strategy’s objectives. For example, a high-frequency strategy may prioritize speed and use market orders. In contrast, a longer-term strategy might prefer limit orders to improve price efficiency. Proper use of order types can significantly influence trading outcomes.

Risk management is one of the most important components of any automated trading system. Even a profitable strategy can produce losses if trades are executed without limits or safeguards. Risk controls help define maximum position sizes, acceptable drawdowns, and stop-loss thresholds. These mechanisms ensure that a single signal cannot expose the system to excessive financial risk. In many architectures, risk checks occur between the signal generation stage and the order execution stage. This separation allows the system to reject signals that violate predefined safety rules. Risk management also helps protect the system during extreme market volatility or unexpected price movements. Without these controls, automated trading systems may behave unpredictably during stressful market conditions.

Separating strategy logic from infrastructure improves flexibility and maintainability. Strategy logic defines how signals are generated based on market data. Infrastructure components manage tasks such as data collection, order execution, and storage. If these layers are tightly coupled, updating one part of the system may break others. By separating them, developers can test strategies independently from the trading infrastructure. This modular design also allows teams to experiment with multiple strategies simultaneously. Infrastructure components remain stable while strategies evolve over time. This architectural approach reduces system complexity and improves long-term reliability.

<p>A production-ready trading robot is more than just a strategy script that places orders. It must include several supporting components that ensure reliability and safety. These components typically include risk management, logging, monitoring, and error-handling systems. The architecture must also manage data ingestion, signal generation, and trade execution in a coordinated pipeline. Extensive testing using historical data and simulated environments is usually required before deployment. Once deployed, the system should provide visibility into its activity through dashboards or alerts. Production trading systems must operate continuously and handle unexpected market events gracefully. Achieving this level of stability requires careful engineering beyond simple trading logic.</p>