intro Flashcards
Vulnerabities
- everything has them
- there is a chanse they will be exploited
Risk (danger)
- unintenional exident
- safety
risk (threat)
- intentional
- security
core elements risk
- change that soming is gonna happen
- there is a future
- we can intervene
subway uncertainty
○ Bell curve
○ It is predictable
○ Probabilistic mathematics
○ Gets you a good idea of what you can aspect
Coconut uncertainty
○ Events that are super rare but have disastrous consequences
○ You cannot do math on it
○ You can’t predict it
is known unkown the only risk
yes
elementary risk
risk made by nature and war
man made risk
risk that are created becouse we wanted to solve a other risk
realism (risk)
technological
economic
psychometrics
risk are real
measurable
manageable
weak constructivism (risk)
Social + cultural risk society
risk are real but we understand them culturallly
strong constructivism
postmodern perspecitves
theres no such thing as a real risk risk is purely social cunstruct
barrier
someting that prevent or make the impact less of a unwanted consequentste
(barrier) Eleminate
maak de corodile af
move the target out of reach
loop weg van de krokodil
add a pasive barrier (barriers)
doe een hek om de krokodil
pasive barrier
- Passive barrier has a safety function in it mere existence
- helm
add an active barrier (barriers )
steek hem met een speer
active barrier
- Active barrier becomes activated when there is a particular problem
- Sprinkler
Prevention control
lowering that it can happen
Mitigation control
lowering the impact of a problem
- Event trees
○ Like dominions
○ If one thing goes down the rest also goes down
○ It tries to trace the outcomes incident –> outcomes
○ Always left to right
○ You can also in clue probability
○ Critical path : most likely
- Fault tree
○ Going from outcomes looking at wat went wrong
○ Used to chard root causes
○ From bottom to the top
○ Circle = basic event root cause
○ Diamond = Undeveloped event = root cause but we don’t have enough data
○ Square = intermediate event
○ Bell shape = logic gate
is a bowtie qualitaive or quantitative
qualitaive
iso
internationaal standaar of managing risk
- not tested
risk matrix
sets impact against probability and tells what needs to be done
wat is de volgorde van risk management
establishing contect, risk identfication, risk analyis, risk assesment, risk control and coverage, risk monitoring and review
establishing context
- understading the eviorment inwich the organization operates
- risk sources
- risk stakeholders
- risk criteria
- risk effects
risk identification
using creative methods to find risk
finding risk in the company
analyse the risk
using modeling look at risk
asking wich risk we can tolorate
use numbers and make calculations
use the matrix
evaluate the risk
is the risk accepteble
masure risk
avioding the risk
not doing the thing that will trigger the risk
treat the risk
avioding the risk
reducing the risk
trasfering the risk
retaing the risk
reducing the risk
migtigate or prefent it chanse of happening
transfering the risk
make other people also responseble
retaining
accept the risk
low prob high imp
transfer the risk
low prob low imp
accept the risk
high prob low imp
reduce
high porb high imp
avoid
leg regulatory paradox uit
hoe meer we iet bevijligen hoe meer we het kunnen checken of het werkt
hoe minder geld we krijgen om the checken of het nog safe is
what does safety I focus on
what went wrong
what does safet II focus on
what went right
what are shortcomming on quantifieng risk
-cannot be known
-cannot be quantified
-no adequate protection
cannot be known
we dont know all risks shit happens at random
cannot be quantified
risk is not objective
no adequate protection
risk is global
other peoples actions have implication of us
what is swiss chese model
loos at the system as a whole
all barriers have holes
shit will hapen what barriers can we do to prefent it
make as many barriers as problems
different bariers can have diferent probles
preautionary pronciple
if thear is risk dont do it
used in legal
profide avidence that change wil not damage shit
it happens befor stuff is able to happen
resilience
shit happens but we can minimize the impact
tragic governance
accept that shit happens
Technical Risk Perspective
Analysis of undesirable events through probabilistic risk assessments and causal relationship
Economic Risk Perspectiv
Measurement of satisfaction with potential consequences (e.g., cost-benefit analysis
Psychological Risk Perspectiv
Based on personal preferences, risk is analyzed through an optimal risk strategy
sociological Risk Perspectiv
Risk perception is shaped by one’s environment and primary influence
Cultural Risk Perspectiv
Analysis is based on cultural patters which shape individuals and socialorganization’s value
what tools do you need to manage risk
knowable, quantivieble, proper tools
