Ensuring the Safety of Future Developments

Slides:



Advertisements
Similar presentations
1 Introduction to Safety Management April Objective The objective of this presentation is to highlight some of the basic elements of Safety Management.
Advertisements

Integra Consult A/S November 2005Dhaka, Bangladesh Reporting - Inspired by ESARR 2 Workshop Dhaka, November 2005.
1 Welcome Summary - First visit Delhi Integra A/S Independent consultancy company Headquarter located in Copenhagen, Denmark Working worldwide.
1 Documentation Legal Framework Air Navigation Orders Guidelines ATS Manual Airport Manual Safety Management Manual ICAO Annexes Licenses / Certificates.
Module N° 7 – SSP training programme
Module N° 4 – ICAO SSP framework
Integra Consult A/S Safety Assessment. Integra Consult A/S SAFETY ASSESSMENT Objective Objective –Demonstrate that an acceptable level of safety will.
Module N° 3 – ICAO SARPs related to safety management
1 Establishment of Regulatory Framework April 2006.
1 Welcome Summary - First visit Dhaka Integra A/S Independent consultancy company Headquarter located in Copenhagen, Denmark Working worldwide.
1 Welcome Safety Regulatory Function Handbook April 2006.
1 Welcome Summary - First visit Karachi Integra A/S Independent consultancy company Headquarter located in Copenhagen, Denmark Working worldwide.
1 Regulation. 2 Organisational separation 3 Functional Separation.
Session No. 4 Implementing the State’s Safety Programme Implementing Service Providers SMS
Session No. 3 ICAO Safety Management Standards. The Big Picture Two audience groups Two audience groups States States Service providers Service providers.
Module N° 7 – Introduction to SMS
Major Accident Prevention Policy (MAPP) and Safety Management System (SMS) in the Context of the Seveso II Directive.
1 Vince Galotti Chief/ATMICAO 27 March 2007 REGULATING THROUGH SAFETY PERFORMANCE TARGETS.
[Organisation’s Title] Environmental Management System
NZ’s STATE SAFETY PLAN W hat the CAA has to do to implement its SMS CAA/AIA/GAPAN South Pacific Aviation Symposium on SMS Simon Clegg General Manager -
Information Risk Management Key Component for HIPAA Security Compliance Ann Geyer Tunitas Group
Safety Management Systems CAA Update. Scope  Background  Benefits  Policy development / RIS  NPRM  Advisory Circular  Sector engagement & participation.
Aviation Safety, Security & the Environment: The Way Forward Vince Galotti Chief/Air Traffic Management ICAO Safety and Efficiency An ICAO Perspective.
ICAO Provisions for Safety Management
Implementing SMS in Civil Aviation: the Canadian Perspective.
What SMS means for an Operator’s relationship with the CAA
SMS Implications for Education Jim Dow Chief, Flight Training & Examinations Transport Canada Presentation to National Training Aircraft Symposium
Focus on Incident reporting
Key changes and transition process
Session No. 3 ICAO Safety Management Standards ICAO SMS Framework
ICAO EUR HLSC Preparatory Seminar
Ship Recycling Facility Management System IMO Guideline A.962
SMS Operation.  Internal safety (SMS) audits are used to ensure that the structure of an SMS is sound.  It is also a formal process to ensure continuous.
George Firican ICAO EUR/NAT Regional Officer Almaty, 5 to 9 September 2005 SAFETY MANAGEMENT SYSTEMS.
© 2004 EUROCONTROL TUNIS, 3-4 June Fundamentals of a Safety Framework Dr. Erik Merckx EUROCONTROL EUROCONTROL Head of Safety Enhancement Business.
APLA ORGULLO DE PERTENECER.
Module N° 8 – SSP implementation plan. SSP – A structured approach Module 2 Basic safety management concepts Module 2 Basic safety management concepts.
SAFETY REGULATION COMMISSION SAFETY REGULATION COMMISSION Harmonisation of ATM Safety Regulation & ESARRs SAFETY REGULATION COMMISSION SAFETY REGULATION.
1  Copyright 2005 EUROCONTROL Safety Performance Review Radu CIOPONEA Performance Review Unit EUROCONTROL.
WORKSHOP, Nicosia 2-3rd July 2008 “Extension of SAFETY & QUALITY Common Requirements to the EMAC States” Item 3 : Regulatory Context Peter Stastny EUROCONTROL.
SMS, Human Factors and FRMS – A Perspective Capt. Dan Maurino RAeS HF Group Conference on Building Fatigue into Safety Systems Crawley, 30 October 2012.
SMS Planning.  Safety management addresses all of the operational activities of the entire organization.  The four (4) components of an SMS are: 1)
Safety Management in Europe European Organisation for the Safety of Air Navigation Dr. Erik Merckx EUROCONTROL Directorate ATM Programmes Head of Business.
ESARR 5 and language proficiency for ATCOs European Organisation for the Safety of Air Navigation ICAO – EUROCONTROL EUROPEAN SEMINAR ON LANGUAGE PROFICIENCY.
Victor Kourenkov ICAO EUR/NAT Regional Officer Almaty, 5 to 9 September 2005 LEGISLATION AND ORGANISATION CONSIDERATIONS.
SAFETY MANAGEMENT SYSTEM IN TURKISH STATE RAILWAYS (TCDD)
Requirements - background
SSAP The European Strategic Safety Action Plan (SSAP) The History & Rationale.
Training Standards & Guidelines Moscow September 2004
Jacques Vanier ICAO EUR/NAT Regional Officer Almaty, 5 to 9 September 2005 SAFETY MANAGEMENT SYSTEMS SAFETY PERFORMANCE.
Module N° 6 – SMS regulation
1 Fourth Meeting Flight operations and Air traffic management Component of the North Asia Regional Aviation Safety Team (NARAST) Bangkok, Thailand 31 st.
International Civil Aviation Organization Global Runway Safety Symposium ICAO’s Harmonization Initiatives John Illson Air Navigation Bureau 25 May 2011.
Revision N° 11ICAO Safety Management Systems (SMS) Course01/01/08 Module N° 9 – SMS operation.
Gdansk International Air & Space Law Conference November 2013 Authority and Organisation Requirements “effective management systems for authorities and.
OHSAS Occupational health and safety management system.
Information day on EUROCONTROL Guidance Material on the application of Common Requirements for Service Provision CERTIFICATION PROCESS  Peter Stastny,
WORKSHOP ON COMMON REQUIREMENTS FOR SERVICE PROVISION  Introduction to SESIS Guidance Material  Gerald Amar, SESIS Project Manager European Organisation.
Information day on EUROCONTROL Guidance Material on the application of Common Requirements for Service Provision LIABILITY AND INSURANCE ISSUES Nathalie.
Information day on EUROCONTROL Guidance Material on the application of Common Requirements for Service Provision OVERVIEW OF THE SINGLE EUROPEAN SKY Roderick.
Information day on EUROCONTROL Guidance Material on the application of Common Requirements for Service Provision SAFETY ASPECTS SAFETY ASPECTS  Juan Vázquez,
Module 02 Essential Requirements for ATCOs. Training Objectives  Appreciate the content of the essential requirements for ATCOs as described within EASA.
Implementing SMS in Civil Aviation: the Canadian Perspective
Juan Vázquez Sanz EUROCONTROL SRU
Ensuring the Safety of Future Developments
Safety Performance Review
Safety Management in Europe
SAFETY PERFORMANCE TARGETS
Aerodrome Certification Workshop
Presentation transcript:

Ensuring the Safety of Future Developments Peter Stastny Head of Safety Regulation Unit EUROCONTROL peter.stastny@eurocontrol.int ICAO Montreal, Thursday 29 March 2007

Overview A Performance-based Approach to Safety Monitoring Safety Performance Performance Measurement – the essential tool Measuring Safety Maturity Performance-based Approach to Managing Risk Risk management – part of SMS Safety oversight aspects – the role of ESARR 1 Risk classification methodology – defining tolerable safety Conclusions

“Historic” Safety Performance Measurement Performance – part of SMS Recruitment/ Selection Procedures Operational Processes Risk Assessment New Systems Incident Reporting Safety Surveys and Follow-up Training Risk Assessment ATM Procedures Incident Investigation Interface ATS CNS, AIM, Airports Competency Checks Lessons Learnt CNS /AIM Maintenance Procedures Risk Assessment Airspace Changes Refresher/ Advanced Training “Historic” Safety Performance Measurement Emergency Procedures Risk Assessment Software Changes Safety Maturity Measurement Proactive Reactive A systematic approach to the management of safety

Performance – part of Safety Oversight ESARR 1…. Defines minimum arrangements/ processes for ATM safety oversight: with certification or without certification A unique basis for harmonising and reinforcing the role and operation of national regulatory bodies Requires monitoring of safety performance as part of safety oversight I N T H E F U T U R E . . . ESARR 1 SAFETY OVERSIGHT IN ATM EUROCONTROL SAFETY REGULATORY REQUIREMENT (ESARR) EUROPEAN ORGANISATION FOR THE SAFETY OF AIR NAVIGATION EDITION : 1.0 EDITION DATE : 27-02-2002 STATUS : RELEASED ISSUE CLASS : GENERAL PUBLIC

Safety Performance Measurement KPIs Performance Indicators Information Management Measurement Metrics Laws Incidents Accidents Culture Audit Compliance SMS Procedures Resources AIB Recommendations Public/ Industry States/ Interested Parties Organisational Level (Service Providers) Key Principles Information to public/stakeholders Call to action by stakeholders Facilitates identification of scope of action required Facilitates management of improvement of service The whole process needs to be a continuous improvement activity

Occurrence-based performance measurement EUROCONTROL has developed safety data reporting to identify key risk areas at European level…

Management Statement in Establishing a Just Culture Gross negligence Omissions Slips Lapses Mistakes Violations Criminal Offences LAWS unintentional Management Statement in Safety Policy deliberate deliberate Procedures Proactive Management

ATM Safety System Maturity in ECAC States Independent maturity assessment system Applied across ECAC Region Now being expanded to neighbouring States

Performance-based Approach to Managing Risk Recruitment/ Selection Procedures Operational Processes Risk Assessment New Systems Incident Reporting Safety Surveys and Follow-up Training Risk Assessment ATM Procedures Incident Investigation Interface ATS CNS, AIM, Airports Competency Checks Lessons Learnt CNS /AIM Maintenance Procedures Risk Assessment Airspace Changes Refresher/ Advanced Training Emergency Procedures Risk Assessment Software Changes Risk Assessment and Mitigation Proactive Reactive A systematic approach to the management of safety

Risk Assessment and Mitigation - 1 Empirical methods of risk assessment no longer sufficient Systems more complex – failure modes more difficult to identify Mitigation methods are more complex too – and more costly Performance-based approach to mitigation is needed – what are the design targets to be met?

Risk Assessment and Mitigation - 2 Transparency is also required by those who will: Own and operate the system Ultimately rely on the safety of the system Bear liability if the system fails A formal, structured and visible approach is the only answer It is required by ESARR 4 and the EC’s Common Requirements for ANS provision A risk classification scheme is a necessary start point for the decision-making that must follow

This is the approach being implemented in Risk Management Risk Management is primarily… …a task for the service provider The provider / operator manages the system and its hazards Risk management processes are conducted as part of a Safety Management System Legal requirement for service providers to conduct risk assessment and mitigation in relation to the implementation of changes to the ATM system This is the approach being implemented in Air Traffic Management in Europe

RISK ASSESSMENT AND MITIGATION ACTIVITIES Risk Management This is the sort of process required in ESARR 4 ... DETERMINATION & SPECIFICATION DESIGN AND DEVELOPMENT INSTALLATION AND TRANSITION OPERATION PROJECT RISK ASSESSMENT AND MITIGATION ACTIVITIES ‘SAFETY CASE’ Risk Assessment and Mitigation Deliverables ACCEPTANCE REVIEW OF THE RISK ASSESSMENT AND MITIGATION DOCUMENTATION

Risk Management This has to be done by the provider... PROJECT PROJECT DETERMINATION & SPECIFICATION DESIGN AND DEVELOPMENT INSTALLATION AND TRANSITION OPERATION PROJECT ‘SAFETY CASE’ Risk Assessment and Mitigation Deliverables RISK ASSESSMENT AND MITIGATION ACTIVITIES ACCEPTANCE REVIEW OF THE RISK ASSESSMENT AND MITIGATION DOCUMENTATION DETERMINATION & SPECIFICATION DESIGN AND DEVELOPMENT INSTALLATION AND TRANSITION OPERATION PROJECT ‘SAFETY CASE’ Risk Assessment and Mitigation Deliverables RISK ASSESSMENT AND MITIGATION ACTIVITIES ACCEPTANCE REVIEW OF THE RISK ASSESSMENT AND MITIGATION DOCUMENTATION

WHO ACCEPTS THE INTRODUCTION OF NEW SYSTEMS AND CHANGES ? Risk Management But what about this ? DETERMINATION & SPECIFICATION DESIGN AND DEVELOPMENT INSTALLATION AND TRANSITION OPERATION PROJECT ‘SAFETY CASE’ Risk Assessment and Mitigation Deliverables RISK ASSESSMENT AND MITIGATION ACTIVITIES ACCEPTANCE REVIEW OF THE RISK ASSESSMENT AND MITIGATION DOCUMENTATION DETERMINATION & SPECIFICATION DESIGN AND DEVELOPMENT INSTALLATION AND TRANSITION OPERATION PROJECT ‘SAFETY CASE’ Risk Assessment and Mitigation Deliverables RISK ASSESSMENT AND MITIGATION ACTIVITIES ACCEPTANCE REVIEW OF THE RISK ASSESSMENT AND MITIGATION DOCUMENTATION WHO ACCEPTS THE INTRODUCTION OF NEW SYSTEMS AND CHANGES ?

Acceptance of new systems and changes EUROCONTROL Acceptance of new systems and changes The provider… The regulator… In some cases, the provider decides about the change… … using risk assessment and mitigation process to support its internal decision-making. This is possible if: The provider’s process is demonstrated to be effective, Enough safety oversight is focused on these processes (e.g. by means of audits) Regulators may identify new systems and changes… … to be directly accepted by the regulatory authority through a formal acceptance (or approval) The Regulator makes the final decision on the acceptability of the system to go into operation The review of the ‘safety case’ provides the Regulator with evidence to support his decision

WHO ACCEPTS THE INTRODUCTION OF NEW SYSTEMS AND CHANGES ? EUROCONTROL WHO ACCEPTS THE INTRODUCTION OF NEW SYSTEMS AND CHANGES ? The ESARR 1 Approach The ESARR 1 process for the safety oversight of changes to the ATM system: Is implemented by the Regulator by considering results from the risk assessment and mitigation process conducted by the provider Defines a minimum category of changes, whose safety case must be reviewed by the Regulator… …Based on the severity of the hazards identified by the provider in relation to the change Provides the regulator with discretion to review other changes

EUROCONTROL Yellow = provider Red = regulator WHO ACCEPTS THE INTRODUCTION OF NEW SYSTEMS AND CHANGES ? The Role Of Oversight Provider conducts risk assessment and mitigation and produces a ‘safety case’ Planned Change (new system or change to existing system) Implementation by the provider of the change (as accepted by the regulator) REGULATOR REVIEWS SAFETY CASE REGULATOR APPLIES DIFFERENT APPROACH DEPENDING ON THE CHANGE Acceptance by the regulator Additional Safety Conditions imposed Major Minor Accepted through ATM provider’s procedures (which are subject to regulator’s auditing) REGULATOR CONDUCTS SAFETY REGULATORY AUDITS MAJOR = Those changes whose assessment of the potential effects of hazards on the safety of aircraft, conducted by the provider in accordance with ESARR 4, identifies hazards with potential to lead to an accident or serious incident Other changes that the Regulator considers appropriate to review

Summarising the Approach to Risk Management European ATM service providers are required to implement risk assessment and mitigation as part of their SMS: Risk assessment and mitigation processes are subject to regulatory auditing as any other safety-related process In addition, the Regulator will specifically review the results of these processes in relation to, at least, the most critical safety-related changes The implementation of these changes will be subject to regulatory acceptance based on the results.

Risk Classification Scheme We now have a severity classification scheme for the identification of the effects of ATM/CNS related hazards on the safety of aircraft. (EC law) We also have a risk classification scheme with a maximum tolerable probability for ATM directly contributing to accidents in the ECAC region (severity class 1) ….but maximum tolerable probability for the severity classes 2 to 5 have still to be developed. States, EC and EUROCONTROL acting together to complete and update those probabilities, Development of regulatory material for the establishment of a quantified risk classification scheme at regulatory level .

Identifying Tolerability of Change Hazard identification. Safety target effects Severity likelihood Severity of the effect Catastrophic Major Average Minor No effect 1 2 3 4 5 I II Likelihood III IV V VI Risk Mitigation Tolerable? no yes Safety objectives Continue the design

Conclusions - 1 Performance-based ATM framework… We are on the way… good progress being made. Experience so far… A performance-driven approach requires: - Data (occurrences, maturity etc.) “Just Culture” – overcoming inhibitors to progress A measurement system, harmonised globally Analysis capability Key Performance Indicators (ultimately)

Conclusions - 2 We’ve had a risk-based approach to the management of safety for decades, but…. The risks are more difficult to identify now Move from “historic” to “predictive” risk assessment A formal, visible assurance methodology We need systems to measure the risks before and after changes to the system (was mitigation successful?) A fully functioning SMS will provide the tools to do the job

Global needs in safety: - Conclusions - 3 Global needs in safety: - A common approach to safety – management and regulation Common minimum levels of safety Availability of information on which to base a performance-driven approach Common safety “language” – terms, taxonomy and appreciation of risk The correct balance between State functions and those of other stakeholders

Ensuring the Safety of Future Developments Peter Stastny Head of Safety Regulation Unit EUROCONTROL peter.stastny@eurocontrol.int ICAO Montreal, Thursday 29 March 2007

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.