Risk Assessment. Marvin Rausand
5Figure 5.1 The ALARP principle.
6 Chapter 6Figure 6.1 The application of a risk metric and a safety performance metric.Figure 6.2 Risk contour plot where several people are exposed to hazards.Figure 6.3 Risk contour plot example.Figure 6.4
curve example.Figure 6.5 curve example.Figure 6.6 criterion lines (example).Figure 6.7 Risk matrix.7 Chapter 7Figure 7.1 Risk management process.Figure 7.2 Decision framework.Figure 7.3 Elements of RIDM.
8 Chapter 8Figure 8.1 Three main categories of accidents.Figure 8.2 The hazard‐barrier‐asset model.Figure 8.3 Haddon's matrix (example for a traffic accident).Figure 8.4 The domino model.Figure 8.5 The main elements of the loss causation model.Figure 8.6 Rasmussen and Svedung's accident model.Figure 8.7 STEP diagram (main elements).Figure 8.8 Reason's Swiss cheese model.Figure 8.9 The three feet of Tripod‐Delta: basic risk factors, hazards and u...Figure 8.10 The Tripod accident causation model.Figure 8.11 Updated Tripod‐Delta accident causation model.Figure 8.12 The basic HEMP model as part of Tripod‐Beta.Figure 8.13 MTO diagram (main elements).Figure 8.14 The top structure of a generic MORT chart.Figure 8.15 Hierarchical model of sociotechnical system involved in risk man...Figure 8.16 Boundaries of safe operation.Figure 8.17 AcciMap structure and symbols.Figure 8.18 Interactions and coupling.Figure 8.19 Standard control loop.
9 Chapter 9Figure 9.1 Example of a reliability data dossier.
10 Chapter 10Figure 10.1 Analysis workflow for PHA.Figure 10.2 Hazards and threats in various locations of the study object.Figure 10.3 Sample PHA worksheet.Figure 10.4 Sample HAZID worksheet.Figure 10.5 Analysis workflow for JSA.Figure 10.6 JSA worksheet (example).Figure 10.7 Alternative JSA worksheet.Figure 10.8 Analysis workflow for FMECA.Figure 10.9 Example of an FMECA worksheet.Figure 10.10 Analysis workflow for HAZOP.Figure 10.11 HAZOP worksheet for “filling a bucket with water.”Figure 10.12 Analysis workflow for STPA.Figure 10.13 Tables for reporting the STPA.Figure 10.14 Analysis workflow for SWIFT.Figure 10.15 Example of a SWIFT worksheet for Example 10.14 .Figure 10.16 Comparison of hazard identification methods.Figure 10.17 Analysis workflow for change analysis.Figure 10.18 Simple hazard log (example).Figure 10.19 Hazard log (example).Figure 10.20 Building site (example). Figure 10.21 Water tank.
11 Chapter 11Figure 11.1 The main elements of a cause and effect diagram.Figure 11.2 Oil and gas separator in Example 11.1 .Figure 11.3 Fault tree for the shutdown system in Example 11.1 .Figure 11.4 Primary failure, secondary failure, and command fault for a pres...Figure 11.5 Explicit modeling of a common‐cause failure in a system of two p...Figure 11.6 Relationship between some simple fault tree diagrams and reliabi...Figure 11.7 The TOP event will occur if at least one of the
minimal cut ...Figure 11.8 Example of a fault tree.Figure 11.9 Reliability block diagram corresponding to the fault tree in Fig...Figure 11.10 Fault tree with a single AND‐gate.Figure 11.11 Fault tree with single OR‐gate.Figure 11.12 Fire water system (Example 11.3).Figure 11.13 Fault tree for the fire water system in Example 11.3 .Figure 11.14 Reliability block diagram for the fire water system in Example ...Figure 11.15 Alternative fault tree for the fire water system in Example 11....Figure 11.16 A simple Bayesian network.Figure 11.17 Example of a Bayesian network showing technical, human, and org...Figure 11.18 Bayesian network.Figure 11.19 Fault tree with single AND‐gate and the corresponding Bayesian ...Figure 11.20 Fault tree with single OR‐gate and the corresponding Bayesian n...Figure 11.21 Bayesian network for Example 11.7 .Figure 11.22 State transition diagram for the pump system in Example 11.8 .Figure 11.23 State transition diagram for a single component (function‐repai...Figure 11.24 The availability and the survivor function of a single componen...Figure 11.25 Water supply system.Figure 11.26 Gas detection system.12 Chapter 12Figure 12.1 Event tree for Example 12.1 .Figure 12.2 Alternative layout of the event tree for Example 12.1 , includin...Figure 12.3 Event tree that splits into three branches.Figure 12.4 The event tree in Figure 12.3 drawn with binary splitting.Figure 12.5 Pivotal events of an event tree analyzed by fault trees.Figure 12.6 Event tree with frequency calculation.Figure 12.7 Reliability block diagram.Figure 12.8 Fault tree corresponding to the reliability block diagram in Fig...Figure 12.9 Event tree corresponding to the reliability block diagram in Fig...Figure 12.10 Presentation of results from an ETA.Figure 12.11 Consequence spectrum related to hazardous event.Figure 12.12 Analysis workflow for ETA.Figure 12.13 Illustration of inclusion of time in event tree.Figure 12.14 Activation pressures for the three barriers of the process safe...Figure 12.15 An event tree for the hazardous event “blockage of the gas outl...Figure 12.16 Fault tree for barrier 1, the automatic shutdown system.Figure 12.17 Event sequence diagram.Figure 12.18 Cause–consequence analysis diagram.Figure 12.19 Example event tree.
13 Chapter 13Figure 13.1 Simple, generic event tree.Figure 13.2 Reliability block diagram and corresponding fault tree for a ser...Figure 13.3 Reliability block diagram and corresponding fault tree for a par...Figure 13.4 Shared causes in combination with coupling factors lead to CCFs ...Figure 13.5 Explicit modeling of common‐cause failure of a system with two p...Figure 13.6 Fractions of different multiplicities of failures for a structur...Figure 13.7 Parallel structure with common‐cause “component.”Figure 13.8 Probabilities of failures with different multiplicities.
14 Chapter 14Figure 14.1 Barrier function hierarchy.Figure 14.2 Classification of barriers.Figure 14.3 Sequence of safety barriers.Figure 14.4 Protection layers for a process plant.Figure 14.5 The main elements of a safety‐instrumented system.Figure 14.6 SIS failure mode classification.Figure 14.7 Failure classification by cause of failure (Hokstad and Corneliu...Figure 14.8 PFD of a periodically tested element.Figure 14.9 Hazard–barrier matrix.Figure 14.10 The main elements of a safety barrier diagram.Figure 14.11 Safety barrier diagram (simple example).Figure 14.12 EFBA worksheet.Figure 14.13 Bow‐tie diagram illustrating the initiating events and protecti...Figure 14.14 LOPA event tree illustrating the protection layers.Figure 14.15 LOPA worksheet.Figure 14.16 Barrier block diagram for release from a flange.Figure 14.17 Bayesian network for the event “area technician does not detect...
15 Chapter 15Figure 15.1 Human factors analysis and classification system (HFACS).Figure 15.2 HTA diagram for the task “make tea” in Example 15.2 (first level...Figure 15.3 Example of a simple TTA table.Figure 15.4 Example of an AEMA worksheet.Figure 15.5 Example of a human HAZOP worksheet.Figure 15.6 Example of a SHERPA worksheet.Figure 15.7 Example of a THERP event tree.Figure 15.8 THERP analysis procedure.
16 Chapter 16Figure 16.1 Classification of decisions.Figure 16.2 Examples of decisions influencing risk in a railway company (Exa...Figure 16.3 Illustration of APR and ACR.Figure 16.4 Relationship between indicators, risk‐influencing factors, and r...Figure 16.5 Coverage of indicators measuring a RIF.Figure 16.6 Flat versus hierarchical indicator set.Figure 16.7 Basic elements of the risk models.Figure 16.8 Principle illustration of a MIRMAP risk model.
17 Chapter 17Figure 17.1 Three categories of harm/loss caused by an attack.Figure 17.2 Categories of threat actors.Figure 17.3 The elements of a single attack.Figure 17.4 The elements of an industrial control system.Figure 17.5 The security assessment process as a bow‐tie approach.Figure 17.6 Analysis structure.Figure 17.7 Asset–threat matrix (layout).
18 Chapter 18Figure 18.1 Phases in the life cycle of a system.Figure 18.2 Key objectives and studies in feasibility and concept selection ...Figure 18.3 Key objectives and studies in preliminary design (FEED) phase.Figure 18.4 Key objectives and studies in detailed design and construction p...Figure 18.5 Key objectives and studies in operations phase.
19 Chapter 19Figure 19.1 Risk analysis in decision‐making.Figure 19.2 Uncertainty propagation by Monte Carlo simulation.
20 Chapter 20Figure 20.1 The CE logo.
21 1Figure A.1 Venn diagram with one event
.Figure A.2 Venn diagram of