FactorBeam

Standalone article · part of a sequenced guide

What you'll unlock: Cowork automates file-and-task pipelines you can document as SOPs — Claude.ai explores ideas; Cowork runs the Monday morning you already know by heart.

View full guide
Tool guideChapter 1 of 7

Understanding Cowork

~100 min read

What Cowork actually is — the mental model that makes everything else in this playbook make sense

Chapter context

You adopted Claude for thinking work — but you still manually download exports, rename files, and paste summaries into Slack every Monday. Cowork exists so repeatable operations stop depending on you remembering the checklist.This chapter prevents the two classic failures: treating Cowork like Claude.ai (no schedules, no scope) or like Claude Code (wrong user, wrong security model).

Is this chapter for you?

Do you run the same file-based process at least weekly?

Cowork is a strong fit — finish this chapter, then prototype one workflow in sandbox.

Is your work primarily coding in a repository?

Prioritise Claude Code; revisit Cowork for business ops adjacent to engineering exports.

Will unattended runs touch sensitive folders?

Read 1.5, 1.8, and 2.7 before scheduling — narrow permissions and human-in-the-loop tiers are mandatory.

Does leadership need audit trails for automated steps?

Run history (2.5) and notification policy (2.6) are required design inputs, not optional.

Cowork is not Claude with a different skin. It is Claude wired to your filesystem, your calendar, and your standard operating procedures — able to run while you sleep if you did the hard work of defining what “done” looks like.This chapter builds the COO mental model and maps every control surface you will live in for the rest of the playbook: dashboard, builder, Skills, schedules, history, and billing.

Chapter insight

Cowork automates file-and-task pipelines you can document as SOPs — Claude.ai explores ideas; Cowork runs the Monday morning you already know by heart.

Reference diagrams

Where Cowork sits in the Claude stack

Pick by who acts and what persists — not by which launch blog you read last.

Claude.aiThink & draftBrowser
CoworkFile ops & schedulesDesktop
Claude CodeShip softwareTerminal
APIYour productBackend

Cowork workflow layers

Build and test one layer at a time — never schedule an untested stack.

TriggerSchedule / manualWhen
IngestRead allowlisted pathsInput
TransformSkills + ClaudeLogic
OutputWrite stagingArtefact
NotifyHuman reviewHITL

Implementation paths

If you cannot write the SOP, you are not ready to schedule the workflow.

Cowork = COOFoundationsWhat it is / is notFile automationNot chat replacementvs Claude.aiSchedule + diskvs Claude CodeOps vs engineeringInterfaceMission controlBuilder + SkillsCompose SOPsSchedule + HistoryTrust but verifyPermissionsLeast privilege

Concept 1

Cowork Foundations

What Cowork is, what it is not, and why the distinction matters before you spend a minute configuring it

1.1

What Cowork is

A desktop automation tool that gives non-developers the ability to automate file and task management using Claude — the definition in plain language

Key takeaway

Cowork is Claude with hands — it runs on your computer, reads and writes files you authorise, and executes repeatable workflows on a schedule or trigger, not just answers in a chat pane.

Why this matters

Teams that skip this definition treat Cowork like another Claude tab, then wonder why nothing runs overnight. Cowork is operations software: inputs, steps, outputs, logs.

At its core, Cowork is a local automation environment powered by Claude. You define what should happen — organise downloads, rename invoice PDFs, compile weekly reports from folders, draft follow-up emails from CRM exports — and Cowork executes those steps against real files on disk, not hypothetical examples in a chat bubble.

The product sits between conversational AI and developer agents. You do not need to write Python or configure CI pipelines. You need a clear process, access to the folders that process touches, and willingness to test before you schedule anything mission-critical.

Think of each Cowork workflow as a standard operating procedure you would hand a sharp operations hire: where files live, naming rules, what to do when a file is missing, who to notify on failure. Cowork does not invent your process — it industrialises the one you already have.

Workflow — do this next

  1. 01List one recurring weekly task that touches files (reports, invoices, exports).
  2. 02Write the human steps in a numbered list — no AI yet.
  3. 03Circle steps that are rule-based (rename, move, summarise, email draft) vs judgment-heavy (fire someone, sign a contract).
  4. 04Cowork candidates are rule-based chains with clear inputs and outputs.

Real example

Founder weekly board pack — from 90 minutes to 12

A seed-stage founder exported Stripe, bank CSV, and pipeline spreadsheet every Sunday. Cowork workflow: ingest three files from ~/BoardPack/inbox, validate column headers, produce variance summary markdown, drop PDF into ~/BoardPack/out, ping Slack #leadership. Human still reviews numbers before the board call — Cowork eliminated copy-paste and folder archaeology.

1.2

Who Cowork is for

Knowledge workers, operators, and business users who want Claude to act on their computer, not just respond in a chat window

Key takeaway

Cowork rewards people who own repeatable operations — finance ops, chiefs of staff, agency producers, solo founders — not engineers building products.

Why this matters

Wrong buyer personas create wrong workflows. Developers should use Claude Code; strategists brainstorming should use Claude.ai Projects; operators moving files on a cadence should use Cowork.

Primary fit: knowledge workers with file-heavy rituals. If your week includes 'download three exports, combine them, send summary to leadership,' you are the audience. If your week is 'ship features in a monorepo,' you are not — use Claude Code instead.

Secondary fit: fractional operators who template the same deliverables across clients. Cowork shines when folder structures repeat and naming conventions are enforceable.

Poor fit: real-time customer chat, sub-second API latency, or workflows requiring arbitrary web browsing without guardrails. Cowork is batch and scheduled operations — your COO on a hard drive, not a replacement for your entire stack.

Workflow — do this next

  1. 01Score your role: % of week on repeatable file tasks vs one-off creative work.
  2. 02If repeatable file work > 25%, pilot one Cowork workflow this month.
  3. 03Identify who owns approvals — Cowork runs; humans still sign off on external sends.

Real example

Marketing ops lead — campaign post-mortems

A B2B marketing ops lead pulled ad platform CSVs, GA exports, and Salesforce campaign members every Monday. Cowork normalised formats, flagged campaigns with CPL > 2× target, drafted internal post-mortem skeleton. Creative strategy stayed human; data wrangling became unattended.

1.3

How Cowork differs from Claude.ai

File system access, scheduled execution, and automation triggers — the capabilities that make it a different product entirely

Key takeaway

Claude.ai thinks with you; Cowork works for you while you are elsewhere — provided you gave it folders, rules, and a schedule.

Why this matters

The #1 configuration mistake is rebuilding Cowork workflows as giant Claude.ai prompts that someone must manually run every time.

Claude.ai lives in the browser (or app) with session-based interaction. Uploads are manual. Triggers are you opening a tab. Cowork binds Claude to paths on disk — ~/Finance/invoices, ~/Reports/weekly — and can wake up without you.

Cowork adds three primitives Claude.ai lacks for operators: filesystem scope, schedules, and run history.

Use Claude.ai for exploration — 'help me design this workflow.' Use Cowork for execution — 'run this workflow every Monday at 7am.' Many power users design in Projects, then crystallise the stable version into Cowork.

Workflow — do this next

  1. 01Take a workflow you run manually in Claude.ai weekly.
  2. 02Extract the fixed steps (file paths, output format, recipients).
  3. 03Prototype once in Cowork manually; only then attach a schedule.
  4. 04Keep Claude.ai Project as the 'lab' — Cowork as 'production'.

Ready-to-use artifacts

Complete templates — paste directly into your AI tool or automation workflow.

Claude.ai vs Cowork — quick picker

Paste in your ops wiki.

| Need | Use |
|------|-----|
| Brainstorm, draft, analyse ad hoc | Claude.ai / Projects |
| Same file pipeline every week | Cowork |
| Live chat with customers | Your product + API |
| Refactor codebase | Claude Code |
| Overnight folder hygiene | Cowork + schedule |
| One-off PDF summary | Claude.ai upload |

Rule: if you said "I wish this ran while I slept" → Cowork.

1.4

The COO mental model

Thinking of Cowork as an operations manager that executes defined processes autonomously — the mindset that shapes how you configure it

Key takeaway

You are not prompting a genius; you are hiring a meticulous COO who follows checklists, escalates exceptions, and never improvises outside scope.

Why this matters

Creative prompting produces creative chaos in automation. COO framing forces SOPs, exception handling, and measurable outputs.

A real COO does not guess your filing system. They ask for the org chart, approval matrix, and weekly rhythm — then execute. Cowork needs the same: explicit inputs, explicit outputs, and explicit stop conditions.

The COO model also sets expectations on judgment boundaries. Automate preparation; keep commitment human. Draft the board email in Cowork; you click send.

When something fails, a good COO leaves a paper trail. Configure notifications and review run history like you would a standup report from ops — not like debugging a mysterious chat.

Workflow — do this next

  1. 01Write a one-page SOP for your target workflow as if onboarding a human COO.
  2. 02Translate each SOP step into a Cowork workflow block.
  3. 03Add an 'exception' branch: if input missing → notify, do not proceed.
  4. 04Review run history after three manual trials before scheduling.

Real example

Chief of staff — investor update pipeline

SOP: collect metrics CSV + narrative bullets from founders by Thursday 5pm; merge into template; flag if MRR row missing; output draft in ~/InvestorUpdates/drafts. Cowork runs Thursday 6pm; chief of staff edits Friday morning. COO prepared; human committed.

1.5

What Cowork can and cannot automate

The automation scope and the boundaries that matter for realistic expectations

Key takeaway

Cowork excels at structured file pipelines inside allowed paths; it struggles with opaque UIs, irreversible external actions, and tasks requiring live human negotiation.

Why this matters

Scope clarity prevents 'we tried to automate everything' failures that kill executive trust in the whole program.

Strong fits: deterministic file operations; classification and routing (sort invoices by vendor folder); generating drafts saved locally for human review; aggregating exports from tools that already write files.

Weak fits: clicking through legacy ERPs with no export; real-time Slack conversation; legal commitments; deleting source-of-truth data without backup; anything requiring credentials you cannot safely scope.

Gray zone — proceed with guardrails: email drafts (save to drafts folder, never auto-send); cloud sync folders (test conflict behaviour); large binary files (watch disk and model context limits). Document human-in-the-loop tiers in every workflow spec.

Workflow — do this next

  1. 01Classify proposed automation: files only / files + notifications / external commit.
  2. 02Only schedule T0 (files only) for first month.
  3. 03Promote to T1 after 10 clean runs logged in history.
  4. 04Never auto-send external email in v1 — industry-agnostic safe default.

Ready-to-use artifacts

Complete templates — paste directly into your AI tool or automation workflow.

Human-in-the-loop tiers for Cowork

T0 — Safe unattended: read/write inside allowlisted folders; no external APIs; no send.
T1 — Notify: same as T0 + Slack/email ping with summary link.
T2 — Approve: output to staging; human clicks confirm in Cowork or companion UI.
T3 — Restricted: legal, HR, payments — Cowork prepares only; never executes.

Default new workflows to T1 until trust is earned.

1.6

Cowork vs Claude Code

The distinction between automation for non-technical users and agentic coding for developers — when to use each

Key takeaway

Claude Code edits repositories; Cowork runs business operations on files. Same model family, different contracts with your organisation.

Why this matters

Engineering teams sometimes force Cowork into dev workflows or ban it while reimplementing file ops in scripts — both waste leverage.

Claude Code assumes git, terminals, and code review culture. Cowork assumes folders, calendars, and business stakeholders who never open VS Code.

Choose Claude Code when output is a merged PR. Choose Cowork when output is a folder of board-ready PDFs. Some teams use both: Code ships the feature that writes exports; Cowork consumes those exports downstream.

Security posture differs: Code needs repo secrets management; Cowork needs directory allowlists and audit logs for compliance teams who do not speak git.

Workflow — do this next

  1. 01Ask: is the artefact code or a business document?
  2. 02Code → Claude Code + CI. Document pipeline → Cowork.
  3. 03If engineers script file ops repeatedly, evaluate Cowork for the ops user instead of maintaining brittle cron scripts.

Real example

SaaS company — both surfaces, zero overlap

Engineering used Claude Code for API integration generating nightly usage CSV to S3. Finance ops used Cowork on a synced local folder to build CFO dashboard pack. Same data; different surfaces. PM documented handoff: S3 sync lands by 5am; Cowork schedule 6am.

1.7

The Cowork product roadmap

Where the product is now, where it is going, and how to plan your workflows around the current capability ceiling

Key takeaway

Ship workflows on today's documented capabilities; design for extension — not on rumoured features or beta toggles without fallbacks.

Why this matters

Roadmap betting strands workflows when features slip. Conservative design keeps ops running when Anthropic ships incrementally.

Today, plan around: desktop install (macOS/Windows), folder permissions, Skills, plugins, scheduled tasks, connectors, run history, subagents, Projects, Dispatch (preview), Claude in Chrome. Treat connector expansion as additive — build file-based fallbacks.

This playbook also teaches ops patterns. See Ch 7 §2.3 native vs pattern before hunting UI controls. Keep workflows modular: ingest → transform → notify.

Subscribe to Anthropic release notes; quarterly review which workflows can shed manual export steps as integrations mature. Maintain a capability register owned by ops, not only IT.

Workflow — do this next

  1. 01Document each live workflow's critical dependencies (folder paths, schedule, model tier).
  2. 02Quarterly: compare against Cowork changelog — upgrade one workflow per quarter if safe.
  3. 03Keep manual runbook for top 3 workflows if Cowork unavailable 24h.

Ready-to-use artifacts

Complete templates — paste directly into your AI tool or automation workflow.

Native vs playbook pattern (read Ch 7 §2.3)

NATIVE: Skills, plugins, schedule picker, connectors, run history
PATTERN: cron overlap, export_ready.flag, manifest.json, VALIDATE_*
When in doubt → Ch 7 Product Surface

1.8

Setting up Cowork

Installation, authentication, permissions, and the first-run configuration — the complete setup process

Key takeaway

Setup is one focused hour: install, sign in with Claude account, allowlist folders narrowly, run a harmless test workflow, then expand scope deliberately.

Why this matters

Over-broad permissions on day one trigger security blocks or real data incidents that kill the pilot before value appears.

Install Claude Desktop (macOS or Windows) from Anthropic — Cowork runs in desktop, not web. Sign in with your paid Claude plan. Requires active internet. For schedules/Dispatch: keep ops machine awake — see Ch 7 §2.8.

First-run permissions: grant minimum viable folders. Create a sandbox with sample files mirroring production structure. Run a read-only workflow (list + summarise) before any write step.

Configure notifications to a channel you actually read. Enable run history retention aligned with compliance (30–90 days typical). Document setup in SETUP.md: version, allowlisted paths, owner, escalation contact.

Workflow — do this next

  1. 01Download Cowork from official Anthropic source; verify checksum if provided.
  2. 02Create ~/CoworkSandbox with fake CSVs/PDFs structurally matching real inputs.
  3. 03Allowlist only sandbox; build 'hello world' workflow: list files → summary markdown.
  4. 04Run 3 times; inspect history; then clone structure to production paths with change control.
  5. 05Add calendar reminder: monthly permission audit.

Ready-to-use artifacts

Complete templates — paste directly into your AI tool or automation workflow.

Cowork first-run checklist

Complete before first production schedule.

[ ] Installed official Cowork build
[ ] Signed in — Claude plan confirmed (model + limits)
[ ] Sandbox folder created and allowlisted
[ ] Test workflow: read-only — passed 3x
[ ] Test workflow: write to sandbox — passed 3x
[ ] Notifications route to #ops-automation (or email)
[ ] Run history reviewed — timestamps make sense
[ ] SETUP.md committed to internal wiki
[ ] Security: no credentials in workflow prompts — use OS keychain/integration
[ ] Owner named for on-call when scheduled job fails

Concept 2

The Cowork Interface

Every element of the Cowork environment — the controls, the views, and the behaviours that experienced users know

2.1

The Cowork dashboard

What you see when you open Cowork and what each element does

Key takeaway

The dashboard is mission control — active workflows, next scheduled runs, recent failures, and quick entry to build or debug; learn it before you build your tenth workflow.

Why this matters

Operators who jump straight into the builder lose situational awareness — they do not see that a failed 6am job left downstream folders empty.

Opening Cowork lands you on the dashboard. Expect a summary of enabled workflows, upcoming schedule triggers, and status chips (success, running, failed, paused). Treat red states like a pager — investigate before building more automation.

Primary navigation typically splits: Workflows, Skills, History, and Settings. Power users pin the dashboard until three consecutive weeks of clean scheduled runs — then they live in History for tuning.

Customise your morning ritual: open dashboard → scan failures → open History for any warning → only then start creative work. Two minutes prevents silent data drift.

Workflow — do this next

  1. 01Day 1: click every dashboard widget; note what each links to.
  2. 02Create a 'dashboard legend' note for your team (screenshots + one-line descriptions).
  3. 03Set browser/OS shortcut to Cowork if you live there daily.

Real example

Ops lead morning triage — 4 minutes

Every weekday 8:45am: dashboard shows Friday pipeline export failed (missing file). History reveals vendor export delayed. Ops lead pauses dependent workflow, notifies sales, avoids blank CFO pack. Without dashboard habit, Monday leadership meeting runs on stale numbers.

2.2

The workflow builder

How to create, edit, and test workflows — the core interface

Key takeaway

Build in layers: trigger → ingest → transform → output → notify; test each layer with dry-run before enabling the next.

Why this matters

Monolithic workflows are impossible to debug. Layered builders map to how COOs actually think about SOPs.

The workflow builder is where SOPs become machines. Each block should have one job: watch folder, read files, call Claude with template, write output, send notification.

Use dry-run mode religiously. First run always targets sandbox copies. Second run uses production read-only. Third run enables writes with notifications on.

Version workflows in names: v1, v2 suffixes. When Claude prompt changes materially, clone workflow, test v-next, swap schedule pointer, retire old version after 2 clean weeks.

Workflow — do this next

  1. 01Name workflow: [Domain]_[Task]_v1.
  2. 02Add trigger (manual first, schedule later).
  3. 03Add ingest step with explicit glob pattern (*.csv).
  4. 04Add Claude step with frozen prompt template + output schema.
  5. 05Add write step to staging folder only.
  6. 06Dry-run ×3; compare outputs; then promote.

Ready-to-use artifacts

Complete templates — paste directly into your AI tool or automation workflow.

Workflow block checklist

Per block document:
- Input: path / pattern / precondition
- Claude prompt version: [link]
- Output: path + filename pattern
- On failure: stop | skip | notify
- Owner: name

Never combine ingest + destructive delete in one untested block.

2.3

The Skills library

Where your defined Skills live and how to manage them

Key takeaway

Skills are reusable procedure modules — normalise invoices, summarise CSV, draft exec email — shared across workflows so you fix once, benefit everywhere.

Why this matters

Without Skills, every workflow duplicates prompts and drift diverges quality. Skills are your ops playbooks as code-adjacent assets.

The Skills library stores procedures independent of schedules. Example Skill: NORMALISE_VENDOR_CSV — validates headers, maps aliases, outputs canonical schema.

Govern Skills like internal products: owner, changelog, consumers (which workflows call it). Breaking change in a Skill requires regression test on all dependent workflows.

Start with 3–5 Skills covering 80% of your file types before building dozens of workflows. Compose workflows from Skills + thin routing logic.

Workflow — do this next

  1. 01Check official/enterprise plugins before custom Skill v1 (Ch 7 §1.1).
  2. 02Extract repeated Claude prompt from first workflow into Skill v1.
  3. 03Document Skill contract: input schema, output schema, failure modes.
  4. 04Refactor second workflow to call same Skill — delete duplicate prompt text.
  5. 05Monthly Skill review: deprecate unused, merge duplicates.

Real example

Finance ops — three Skills, twelve workflows

Skills: INVOICE_PARSE, GL_VARIANCE_NARRATIVE, EXEC_EMAIL_DRAFT. Twelve workflows differ only by trigger and folder paths. Prompt fix in INVOICE_PARSE propagated everywhere in one deploy.

2.4

The schedule manager

Where you set, view, and modify automated execution schedules

Key takeaway

Schedules turn Cowork from a tool you run into infrastructure that runs — but only after manual runs prove reliable.

Why this matters

Premature scheduling amplifies bugs. The schedule manager is a privilege you earn with run history evidence.

The schedule manager shows what fires when, in your local timezone. Align schedules with upstream data arrival — not aspirational times. If Stripe export lands 6:10am, schedule 6:30am not 5:00am.

Use stagger when many jobs run at midnight. Document dependencies: Workflow B requires Workflow A output file — enforce order via schedule offset or explicit file-exists check.

Pause schedules before holidays or vendor maintenance windows. A one-click pause beats emergency uninstall when finance month-end shifts.

Workflow — do this next

  1. 01Require 5 successful manual runs before first schedule.
  2. 02Set schedule 15+ minutes after known upstream job.
  3. 03Add calendar reminder to review schedules quarterly.
  4. 04Document pause procedure in on-call runbook.

Ready-to-use artifacts

Complete templates — paste directly into your AI tool or automation workflow.

Schedule register template

| Workflow | Cron | TZ | Depends on | Owner | Pause? |
|----------|------|----|------------|-------|--------|
| BoardPack | 0 6 * * 1 | America/New_York | stripe_export | Alex | |
| InvoiceSort | 30 7 * * * | UTC | — | Sam | |

Review monthly. Stagger CPU-heavy jobs ≥10 min.

2.5

The run history

How to review what Cowork has done, what succeeded, and what failed

Key takeaway

Run history is your audit trail and debugger — every serious ops team reviews it weekly and treats unexplained warnings as incidents.

Why this matters

Automation without logs is faith-based operations. History converts 'the AI did something' into accountable events.

Each execution logs: start time, duration, workflow version, files touched, Claude token usage snapshot, exit status, error stack. Run history is where you answer 'what changed in folder X overnight?'

Filter by failed runs first. Common failures: missing input file, permission denied, prompt schema mismatch, model timeout. Attach run ID to internal tickets for reproducibility.

Export history monthly for compliance if you automate finance or HR-adjacent files. Pair with retention policy documented with legal.

Workflow — do this next

  1. 01Weekly 15-min history review on calendar.
  2. 02For each failure: root cause → fix workflow → note in RUNBOOK.
  3. 03Track MTTR (mean time to repair) for failed scheduled jobs.

Real example

Silent partial failure caught in history

Dashboard showed green — but history revealed Step 3 ran with 0 files ingested (upstream typo in filename pattern). Ops updated glob from *_sales.csv to *sales*.csv. Without history drill-down, leadership would have received empty pack.

2.6

Notifications and alerts

How Cowork communicates with you about execution results and errors

Key takeaway

Notify on failure always; notify on success selectively — alert fatigue kills response time when real failures happen.

Why this matters

Teams that alert every success mute channels; teams that alert never miss catastrophic silent failures.

Configure failure alerts to Slack, email, or SMS for production workflows. Include workflow name, run ID, link to history, and first line of error.

Success notifications: use for high-stakes deliverables only. Daily hygiene jobs should log quietly unless summary digest is useful.

Weekly digest option: aggregate runs, success rate, token spend — CFO-friendly view of automation ROI without noise.

Workflow — do this next

  1. 01Wire failure alerts before enabling schedule.
  2. 02Test alert by forcing sandbox failure.
  3. 03Add #cowork-alerts channel; restrict to ops owners.
  4. 04Optional Monday digest for leadership metrics.

2.7

Settings and permissions

The configuration that controls what Cowork can access on your system

Key takeaway

Permissions are the security boundary — narrow folders, separate machine users for production vs personal, review quarterly.

Why this matters

Cowork with full-disk access is a prompt-injection and malware magnet. Least privilege is non-negotiable.

Settings hosts: folder allowlist, integration toggles, notification endpoints, default model, and optional team policy locks (IT-enforced).

Run Cowork on a dedicated ops machine or user account where possible. Sync only business folders via controlled cloud mount.

Document every permission change in CHANGELOG with approver. Revoke paths when workflows retire — orphan permissions accumulate silently.

Workflow — do this next

  1. 01Quarterly permission audit: list paths → map to active workflows → remove orphans.
  2. 02Deny by default; add paths with ticket reference.
  3. 03Separate sandbox vs production paths in settings labels.

Ready-to-use artifacts

Complete templates — paste directly into your AI tool or automation workflow.

Quarterly permission audit

[ ] Export current allowlist from Settings
[ ] For each path: active workflow? owner?
[ ] Remove retired paths
[ ] Confirm no home-directory wildcard
[ ] Security sign-off

2.8

The Cowork–Claude.ai connection

How Cowork connects to your Claude account — model selection, token usage, and billing

Key takeaway

Cowork consumption rolls up to your Claude plan — scheduled workflows are recurring token spend; model choice and prompt efficiency directly hit the invoice.

Why this matters

Finance gets surprised when overnight jobs burn Opus tokens on trivial file sorting. Treat Cowork like a utility meter.

Cowork authenticates with your Claude identity. Model pick per workflow step matters: use fast economical models for classification; reserve premium models for synthesis steps with ambiguity.

Monitor token usage per workflow in run history exports. If a daily job 10×'d after prompt change, you will see it in usage before finance does.

Align with IT on team plans, rate limits, and whether Cowork runs should use shared service account vs individual seats. Document cost allocation for multi-team rollouts.

Workflow — do this next

  1. 01Tag workflows with cost_center in description field.
  2. 02Monthly: export usage by workflow; flag outliers.
  3. 03Default new Skills to economical model; escalate step only when needed.
  4. 04Sync with Claude.ai Projects — design prompts in Projects, paste stable version to Cowork Skills.

Real example

Token spike traced to run history

Team's weekly research digest jumped $400/month. History showed Opus on 200-page PDF batch. Switched ingest to extract text chunk + Haiku classify + Sonnet summarise only on flagged docs — 78% cost drop, same usefulness.

Ready-to-use artifacts

Complete templates — paste directly into your AI tool or automation workflow.

Cowork model routing cheat sheet

| Step type | Model tier |
|-----------|------------|
| File rename / move | No model — rules only |
| CSV validate | Fast / Haiku |
| Executive summary | Sonnet |
| Ambiguous multi-doc merge | Opus (sparingly) |

Review monthly. Opus scheduled jobs need VP approval.

Ready-to-use artifacts

Complete templates — paste directly into your AI tool or automation workflow.

Cowork SOP starter template

Fill before opening the workflow builder.

## Workflow name
## Owner
## Trigger (manual / cron)
## Input paths (allowlisted)
## Steps (numbered, like onboarding a human COO)
## Output paths (staging vs production)
## Failure behaviour (stop / notify / skip)
## Human approval tier (T0–T3)
## Model tier per step

Claude.ai vs Cowork — quick picker

Paste in your ops wiki.

| Need | Use |
|------|-----|
| Brainstorm, draft, analyse ad hoc | Claude.ai / Projects |
| Same file pipeline every week | Cowork |
| Live chat with customers | Your product + API |
| Refactor codebase | Claude Code |
| Overnight folder hygiene | Cowork + schedule |
| One-off PDF summary | Claude.ai upload |

Rule: if you said "I wish this ran while I slept" → Cowork.

Human-in-the-loop tiers for Cowork

T0 — Safe unattended: read/write inside allowlisted folders; no external APIs; no send.
T1 — Notify: same as T0 + Slack/email ping with summary link.
T2 — Approve: output to staging; human clicks confirm in Cowork or companion UI.
T3 — Restricted: legal, HR, payments — Cowork prepares only; never executes.

Default new workflows to T1 until trust is earned.

Native vs playbook pattern (read Ch 7 §2.3)

NATIVE: Skills, plugins, schedule picker, connectors, run history
PATTERN: cron overlap, export_ready.flag, manifest.json, VALIDATE_*
When in doubt → Ch 7 Product Surface

Cowork first-run checklist

Complete before first production schedule.

[ ] Installed official Cowork build
[ ] Signed in — Claude plan confirmed (model + limits)
[ ] Sandbox folder created and allowlisted
[ ] Test workflow: read-only — passed 3x
[ ] Test workflow: write to sandbox — passed 3x
[ ] Notifications route to #ops-automation (or email)
[ ] Run history reviewed — timestamps make sense
[ ] SETUP.md committed to internal wiki
[ ] Security: no credentials in workflow prompts — use OS keychain/integration
[ ] Owner named for on-call when scheduled job fails

Workflow block checklist

Per block document:
- Input: path / pattern / precondition
- Claude prompt version: [link]
- Output: path + filename pattern
- On failure: stop | skip | notify
- Owner: name

Never combine ingest + destructive delete in one untested block.

Schedule register template

| Workflow | Cron | TZ | Depends on | Owner | Pause? |
|----------|------|----|------------|-------|--------|
| BoardPack | 0 6 * * 1 | America/New_York | stripe_export | Alex | |
| InvoiceSort | 30 7 * * * | UTC | — | Sam | |

Review monthly. Stagger CPU-heavy jobs ≥10 min.

Quarterly permission audit

[ ] Export current allowlist from Settings
[ ] For each path: active workflow? owner?
[ ] Remove retired paths
[ ] Confirm no home-directory wildcard
[ ] Security sign-off

Cowork model routing cheat sheet

| Step type | Model tier |
|-----------|------------|
| File rename / move | No model — rules only |
| CSV validate | Fast / Haiku |
| Executive summary | Sonnet |
| Ambiguous multi-doc merge | Opus (sparingly) |

Review monthly. Opus scheduled jobs need VP approval.

20-person agency — Cowork as shared COO

A digital agency ran 14 retainer clients with identical Monday reporting — pull ad CSVs, normalise, draft insights, drop decks in client folders. Three account leads spent 6+ hours each Sunday.

Before

Manual downloads, inconsistent filenames, Claude.ai chats duplicated per client, no logs when someone was sick.

After

Chapter 1 workshop; sandbox → production rollout. Shared Skills library; per-client workflows differed only by folder paths. Dashboard + history owned by ops lead.

  • Sunday ops time → 6 hr/person to 45 min review
  • Missed Monday deliverables → 0 in two quarters
  • Client NPS on reporting timeliness → +18 points
  • Claude token spend → predictable weekly digest to finance

What goes wrong

Scheduling before sandbox proof — production data corrupted.

Follow 1.8 checklist: read-only → write sandbox → write production with alerts.

Granting entire home directory — security incident or data leak.

2.7 least privilege; quarterly audits; dedicated ops machine.

Duplicated prompts across workflows — silent quality drift.

2.3 Skills library; single owner per Skill; version changelog.

Opus on every step — finance backlash kills program.

2.8 model routing; default economical tiers; Opus by exception.

Portrait of Krishna Kumar, Curator

Vetted by Krishna KumarCurator, FactorBeam

Discussion

Discussion coming soon

Shared comments for this playbook are not live yet. When they are, you'll be able to ask questions, share what worked, and see replies from other readers.