Decision Making Theory and the Risk Matrix

There are fundamental epistemic problems with the safety risk assessment of new and high consequence systems. For new systems we generally do not have statistical data on accidents and high consequence events are (usually) quite rare so we end up arguing our case using low base rate data. In the final analysis we usually fall back on some form of subjective (and qualitative) risk assessment.

The risk matrix was developed to guide this type of risk assessments, it’s actually based on decision theory, De’Moivres definition of risk and the principles of the iso-risk contour. The matrix is widely described in safety and risk literature and has become one of the less questioned staples of risk and safety management.

Despite this there are plenty of poorly constructed, ill thought matrices out there in both the literature and standards, this article attempts to establish some basic principles of construction.

Read Full Post »

How Likely are we to Lose STS 134?

For the STS 134 mission NASA has estimated a 1 in 90 chance of loss of vehicle and crew (LOCV) based on a Probabilistic Risk Assessment (PRA). But should we believe this number?

Read Full Post »

Easter Madness

Another Easter has come bringing with it the traditional Easter road toll and press hyperbole… But let’s strip away the rhetoric and think about the subject cooly and rationally. Are we really behaving worse at Easter than any other time of the year?

Read Full Post »

How to Make Bounded Decisions on Risk (Part III)

People tend to seek out and interpret information that reinforces their beliefs, especially in circumstances of uncertainty or when there is emotion attaching to the issue. This bias is known as confirmatory or ‘myside’ bias. So what can you do to guard against the internal ‘yes man’ that is echoing back your own beliefs?

Read Full Post »

How to Make Bounded Decisions on Risk (Part II)

As the latin root of the word risk indicates an integral part of risk taking is the benefit we achieve. However often times decision makers do not have a clear understanding of what is the upside or payoff.

Read Full Post »

Lessons from Qantas Flight QF 32

The first major A380 incident offers an illustrative example of the risks that common cause failures pose to aerospace systems.

Read Full Post »

As Low As Reasonably Practical

From a systems engineering perspective a technical requirement for ALARP or As Low As is Reasonably Practical is an extremely poor one. This is because the terms ‘reasonable’ and ‘practical’ are both qualitative in nature and therefore inherently unverifiable. This is a a short and practical guide on how to demonstrate what is practical and reasonable in complying with the ALARP safety goal

Read Full Post »

The Titanic Effect (Part I)

So why did the Titanic sink? The reason highlights the role of implicit design assumptions in complex accidents and the interaction of design with operations of safety critical systems

Read Full Post »

Magic Numbers (10E-9 and Other Myths)

So why is one in a million an acceptable risk? The answer may be simpler than we think.

Read Full Post »

The Affect Effect

Why you think that your mobile phone is good for you, even though it might be cooking your brain.

Read Full Post »