Presentation is loading. Please wait.

Presentation is loading. Please wait.

Proportionate Mitigation on Large Safety Related IT Projects

Published byPercival Wells Modified over 6 years ago

Similar presentations

Presentation on theme: "Proportionate Mitigation on Large Safety Related IT Projects"— Presentation transcript:

1 Proportionate Mitigation on Large Safety Related IT Projects
Mark Machin June 2017

2 Proportionate Mitigation

3 Agenda Large IT Supply Synergy of Domains Proportionate View
Challenges Summary

4 CGI Founded in 1976, CGI Group Inc. is the fifth largest independent information technology and business process services firm in the world. Approximately 68,000 professionals serve thousands of global clients across the Americas, Europe and Asia Pacific, with a comprehensive portfolio of services including high-end business and IT consulting, systems integration, application development and maintenance, and infrastructure management.

5 Large IT Supply

6 Standards Domains Aviation – Well established standards Defence – Well established internally with outward contracting and re-emergence of but positioning towards available commercial standards. Healthcare – Patient Safety primacy domain and clinical focus. Emergence of NHS safety standards in response to the growth of IT

7 Non Standards Domains Justice Systems Law Enforcement Local Government
Utilities Data Centric and Informing decisions Safety related in nature but requiring commercial supply

8 Large IT Challenges No longer bespoke single company systems
Consortia of integrators or suppliers COTS Open Source Distribution of operation – onshore/offshore Focus on Data Centric/Analytics Step change in complexity Susceptibility to unperceived risk

9 Don’t Panic

10 Synergy of Domains Process approaches and integrity requirements SIL/Software Integrity/ASIL from IEC 61508, DO-178C, IEC Goal based outlook from Def Stan , NHS SCCI-0129 Existing controls considered e.g. NHS IT hazard logs Cross domain initiatives on Data and Services by SCSC

11 Traditional Measures Existing safety analysis approaches new or old still apply Systematic nature of underlying software will still be evident Still seeking to: Design out Design Control in Test Sufficiency Operational Process and warnings

12 Proportionate Approach
Identify risks from the IT components Understand the inter-relationships Clear on availability of mitigation options

13 Proportionate Risk Establish the dependency and reliance on the IT output Determine the contributions and proximity to accident Understand the existing operational environment controls

14 Proportionate Mitigation
Identify practicable measures Demonstrate compliance to the safety requirements placed Apply process to assure achievement of residual risk

15 Proportionate Infrastructure
Reliability Redundancy Sufficiency of SLA Architectures

16 Proportionate Software and Data
COTS – Assure/additions Open Source – Manage change Interfaces – Configuration and interaction Software – Integration, wrappers, controls Data – Integrity and interoperation

17 Proportionate Service
Service Desk Support tiers Business continuity Disaster recovery

18 Achieving or Arguing Sufficiency
Justify sufficiency of proportional mitigation Demonstrate reduction in residual risk Relationship to the intended use

19 Paradigm Changes and Challenges
Agile/continuous development – Shouldn’t be ‘hacking’ but cost pressures can easy result in that effect being achieved. Suggest it also represents opportunity for continuous development of the safety assurance and have management of the residual risk which classical methods do not afford without significant cost implications. Cloud – Shift on centre of gravity of apps and data, increasing complexity and difficulty of integration and hence safety assurance. Traditional methods applied traditionally may breakdown, however methods are sound so repurposing and adaptation need to be considered. SaaS – Combines agile and cloud under a service container requiring service safety interaction to be considered….noticed SCSC commenced considering service safety…ITIL safety overlap perhaps? Machine Intelligence/RPA/AI – Organic evolution of Data centric and analysis. Further increases in complexity and ability to understand interactions sufficiency to assure. Drift to output based test?

20 Summary Understand interoperation within the wider operational environment Determine the risk contribution of the Large IT Define proportional levels of mitigation to address presented risk Justify sufficiency Agree with top duty holder

21 Questions

Download ppt "Proportionate Mitigation on Large Safety Related IT Projects"

Similar presentations

Interfacing Risk and Systems Engineering – Left Shift Risk Management

Interfacing Risk and Systems Engineering – Left Shift Risk Management
Open Architecture: A Small Business Perspective Defense Daily Open Architecture Summit November 2011 Thomas Conrad.

Open Architecture: A Small Business Perspective Defense Daily Open Architecture Summit November 2011 Thomas Conrad.
Panel 5: The Latest in OA Innovation and C4ISR 4 November, 2014 Mike Rice President / Senior Systems Engineer R2E Inc.

Panel 5: The Latest in OA Innovation and C4ISR 4 November, 2014 Mike Rice President / Senior Systems Engineer R2E Inc.
7-1 INTRODUCTION: SoA Introduced SoA in Chapter 6 Service-oriented architecture (SoA) - perspective that focuses on the development, use, and reuse of.

7-1 INTRODUCTION: SoA Introduced SoA in Chapter 6 Service-oriented architecture (SoA) - perspective that focuses on the development, use, and reuse of.
ISS IT Assessment Framework

ISS IT Assessment Framework
SWE Introduction to Software Engineering

SWE Introduction to Software Engineering
Managing International Information Systems

Managing International Information Systems
1 Chapter Seventeen Emerging Best Practices in Global Systems Development.

1 Chapter Seventeen Emerging Best Practices in Global Systems Development.
SPRING 2011 CLOUD COMPUTING Cloud Computing San José State University Computer Architecture (CS 147) Professor Sin-Min Lee Presentation by Vladimir Serdyukov.

SPRING 2011 CLOUD COMPUTING Cloud Computing San José State University Computer Architecture (CS 147) Professor Sin-Min Lee Presentation by Vladimir Serdyukov.
Architectural Design.

Architectural Design.
IT – Towards User Defined Services

IT – Towards User Defined Services
Cloud Computing Brian Curran, Sabatino DeRico, Mike Delisa, Mudit Goel, Jon Guagenti, Jess Caso, Greg Flynn.

Cloud Computing Brian Curran, Sabatino DeRico, Mike Delisa, Mudit Goel, Jon Guagenti, Jess Caso, Greg Flynn.
The CIO’s response to the Global Agenda Daniel Benton, Global Managing Director IT Strategy.

The CIO’s response to the Global Agenda Daniel Benton, Global Managing Director IT Strategy.
IBM Academic Initiative Skills for a Smarter Planet Cloud Computing John Schilt Lead, IBM Academic Initiative Australia / New Zealand

IBM Academic Initiative Skills for a Smarter Planet Cloud Computing John Schilt Lead, IBM Academic Initiative Australia / New Zealand
1 Moving to a new Administration: Collaboration and Shared Services Technology Service Oriented Architecture Conference John W. Cox, CFO U.S. Department.

1 Moving to a new Administration: Collaboration and Shared Services Technology Service Oriented Architecture Conference John W. Cox, CFO U.S. Department.
Summary Device protocols tied intimately to applications. A need to significantly reduce critical data update times. Current network bandwidth consumption.

Summary Device protocols tied intimately to applications. A need to significantly reduce critical data update times. Current network bandwidth consumption.
Electronic Controls and Communications. The Global Challenge Of Strategic Standardization Management Alec McMillan Rockwell Automation Director, Global.

Electronic Controls and Communications. The Global Challenge Of Strategic Standardization Management Alec McMillan Rockwell Automation Director, Global.
18 September 20151 Licensing for Next Generation Signalling Buddhadev Dutta Chowdhury 27 th April 2012.

18 September Licensing for Next Generation Signalling Buddhadev Dutta Chowdhury 27 th April 2012.
PowerPoint Presentation by Charlie Cook Gordon Walker McGraw-Hill/Irwin Copyright © 2004 McGraw Hill Companies, Inc. All rights reserved. Chapter 7 Partnering.

PowerPoint Presentation by Charlie Cook Gordon Walker McGraw-Hill/Irwin Copyright © 2004 McGraw Hill Companies, Inc. All rights reserved. Chapter 7 Partnering.
Chapter 3 Network and System Design. Objectives After reading the chapter and reviewing the materials presented the students will be able to: Understand.

Chapter 3 Network and System Design. Objectives After reading the chapter and reviewing the materials presented the students will be able to: Understand.

Similar presentations

Ads by Google