Resilience in Risk Analysis and Risk Assessment

  • Stig Johnsen
Conference paper
Part of the IFIP Advances in Information and Communication Technology book series (IFIPAICT, volume 342)

Abstract

Resilience is the ability of a system to react to and recover from disturbances with minimal effects on dynamic stability. Resilience is needed as systems and organizations become more complex and interrelated and the consequences of accidents and incidents increase. This paper analyzes the notion of resilience based on a literature survey and an exploration of incidents. In particular, resilience involves the ability of systems to undergo graceful and controlled degradation, the ability to rebound from degradation, the presence of redundancy, the ability to manage margins close to the performance boundaries, the establishment and exploration of common mental models, the presence of flexibility in systems and organizations, and the reduction of complexity and coupling. The paper describes how resilience can be included in system development and operations by considering organizations, technology and human factors. Also, it shows how past strengths and weaknesses can be considered in risk analysis to enhance safety, security and resilience.

Keywords

Safety security resilience risk analysis 
Download to read the full conference paper text

References

  1. 1.
    R. Flin, Erosion of managerial resilience: From Vasa to NASA, in Resilience Engineering: Concepts and Precepts, E. Hollnagel, D. Woods and N. Leveson (Eds.), Ashgate, Aldershot, United Kingdom, pp. 223–233, 2006.Google Scholar
  2. 2.
    A. Hale and T. Heijer, Defining resilience, in Resilience Engineering: Concepts and Precepts, E. Hollnagel, D. Woods and N. Leveson (Eds.), Ashgate, Aldershot, United Kingdom, pp. 35–40, 2006.Google Scholar
  3. 3.
    Health and Safety Executive, Organizational Change and Major Accident Hazards, Chemical Information Sheet No. CHIS7, Caerphilly, United Kingdom (www.hse.gov.uk/pubns/chis7.pdf), 2003.Google Scholar
  4. 4.
    E. Hollnagel, C. Nemeth and S. Dekker, Resilience Engineering Perspectives – Remaining Sensitive to the Possibility of Failure, Ashgate, Aldershot, United Kingdom, 2008.Google Scholar
  5. 5.
    E. Hollnagel, D. Woods and N. Leveson (Eds.), Resilience Engineering: Concepts and Precepts, Ashgate, Aldershot, United Kingdom, 2006.Google Scholar
  6. 6.
    S. Jackson and A. Madni, A practical framework for the architecting of resilient enterprises, Proceedings of the Third Resilience Engineering Symposium, pp. 125–132, 2008.Google Scholar
  7. 7.
    S. Johnsen, Suggested proactive indicators to be used in the oil and gas industry based on a survey of accidents in the industry, presented at the European Safety and Reliability Conference, 2009.Google Scholar
  8. 8.
    S. Johnsen, T. Skramstad and J. Hagen, Enhancing the safety, security and resilience of ICT and SCADA systems using action research, in Critical Infrastructure Protection III, C. Palmer and S. Shenoi (Eds.), Springer, Heidelberg, Germany, pp. 113–123, 2009.CrossRefGoogle Scholar
  9. 9.
    T. LaPorte and P. Consolini, Working in practice but not in theory: Theoretical challenges of “high-reliability organizations,” Journal of Public Administration Research and Theory, vol. 1(1), pp. 19–48, 1991.Google Scholar
  10. 10.
    N. Leveson, Safeware: System Safety and Computers, Reading, Massachusetts, 1995.Google Scholar
  11. 11.
    Norwegian Ministry of Petroleum and Energy, Om Petroleumsvirksom-heten, Stortingsmelding No. 38 (2003-2004), Oslo, Norway, 2004.Google Scholar
  12. 12.
    C. Perrow, Normal Accidents: Living with High Risk Technologies, Princeton University Press, Princeton, New Jersey, 1999.Google Scholar
  13. 13.
    J. Rasmussen, Risk management in a dynamic society: A modeling problem, Safety Science, vol. 27(2-3), pp. 183–213, 1997.CrossRefGoogle Scholar
  14. 14.
    J. Reason, Managing the Risks of Organizational Accidents, Ashgate, Aldershot, United Kingdom, 1997.Google Scholar
  15. 15.
    K. Roberts, Some characteristics of one type of high reliability in organizations, Organization Science, vol. 1(2), pp. 160–176, 1990.CrossRefGoogle Scholar
  16. 16.
    G. Sundstrom and E. Hollnagel, Learning how to create resilience in business systems, in Resilience Engineering: Concepts and Precepts, E. Hollnagel, D. Woods and N. Leveson (Eds.), Ashgate, Aldershot, United Kingdom, pp. 235–252, 2006.Google Scholar
  17. 17.
    R. Westrum, Removing latent pathogens, presented at the Sixth International Australian Aviation Psychology Conference, 2003.Google Scholar
  18. 18.
    R. Westrum, A typology of resilience situations, in Resilience Engineering: Concepts and Precepts, E. Hollnagel, D. Woods and N. Leveson (Eds.), Ashgate, Aldershot, United Kingdom, pp. 55–65, 2006.Google Scholar
  19. 19.
    D. Woods and R. Cook, Incidents – Markers of resilience or brittleness? in Resilience Engineering: Concepts and Precepts, E. Hollnagel, D. Woods and N. Leveson (Eds.), Ashgate, Aldershot, United Kingdom, pp. 69–76, 2006.Google Scholar

Copyright information

© IFIP International Federation for Information Processing 2010

Authors and Affiliations

  • Stig Johnsen

There are no affiliations available

Personalised recommendations