• No results found

Security Risk Assessment and Mitigation Prioritization

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Security Risk Assessment and Mitigation Prioritization"

Copied!
30
0
0

Loading.... (view fulltext now)

Download now ( 30 Page )

Full text

(1)

Security Risk Assessment

and

Mitigation Prioritization

Stephanie King, PhD, PE

Weidlinger Associates, Inc.

FFC Committee on Physical Security

and Hazard Mitigation

July 15, 2008

www.wai.com

(2)

Outline

Introduction

Security Risk Assessment

Key elements and terminology

Basic methods (screening)

Critical issues

Mitigation Prioritization

Quantified benefit-cost analysis

Critical issues

(3)

Introduction

Limited resources + competing priorities

Where are the risks?

Which risks are acceptable?

What should be mitigated first?

Which mitigation options are best?

Specific to security

Electronic v. Operational v. Hardening?

How much protection is enough?

(4)

Risk Components and

Terminology

General Components of Risk Management Threat Assessment Vulnerability Assessment Criticality/ Consequences

Risk = P[Event] x E[Consequences|Event] Risk = Vulnerability x Criticality

Risk = Threat x Vulnerability x Consequences Risk = Occurrence x Vulnerability x Importance

(5)

Risk Assessment Methods

Outcome if Event Occurs

Minor Catastrophic Low High Likelihood of Occurrence Threat Assessment Criticality or Importance Assessment Slope of boundaries and definitions depend on risk tolerance Vulnerability Assessment

(6)

Risk Assessment Methods

Quadrant IV

Low criticality and high vulnerability

Quadrant III

Low criticality and low vulnerability

Quadrant I

High criticality and high vulnerability

Quadrant II

High criticality and low vulnerability 0 100 0 50 100 50 Criticality (X) V u ln er abil it y (Y ) Quadrant IV

Low criticality and high vulnerability

Quadrant III

Low criticality and low vulnerability

Quadrant I

High criticality and high vulnerability

Quadrant II

High criticality and low vulnerability 0 100 0 50 100 50 Criticality (X) V u ln er abil it y (Y ) EXAMPLE: AASHTO Guide for Bridges & Tunnels (2002)

•Visibility and Attendance •Access to the Asset

•Site-specific Hazards

•Defer/Defend Factors

•Loss and Damage Consequences •Consequences to Public Services

(7)

Risk Assessment Methods

EXAMPLE: DHS ODP State Homeland Security Assessment and Strategy Program: Special Needs Jurisdiction Tool Kit (2003) High Risk Threshold

(8)
(9)

Risk Assessment Methods

Risk = Asset Value X Threat Rating X Vulnerability Rating EXAMPLE: Results from FEMA 452 (2005)

(10)

Risk Assessment Methods

Event A Event A1 Response 3 Response 4 Unacceptable Outcome Response 5 4K blast in city Collapse At location 1 No Collapse Glazing = high hazard Loss ≥ X Event A Event A1

4K blast in city At location 1

OR AND AND V ulnerability Assessment Threat Assessment Conseque nce Assessment

Fault-tree / Consequence-based Assessment

(11)

Critical Issues: Assessment

Definition of Risk Metric

Stakeholders input and buy-in

Subjectivity, Uncertainty, Quantification

Transparent, rational, unbiased

Consistency among assessors

Simplifying assumptions

Limitations on results

(12)

Mitigation Prioritization

Vulnerability Modeling Compute Pre-Mitigation Risk Compute Post-Mitigation Risk Estimate Mitigation Costs & Benefits

Develop Mitigation Project Priority Repeat for all

Mitigation Projects for Facility or

System

Repeat for all Facilities and Systems Hazard Modeling Consequence Modeling

(13)

Mitigation Prioritization

Vulnerability Modeling Compute Pre-Mitigation Risk Compute Post-Mitigation Risk Estimate Mitigation Costs & Benefits

Develop Mitigation Project Priority Repeat for all

Mitigation Projects for Facility or

System

Repeat for all Facilities and Systems Hazard Modeling Consequence Modeling Risk = O x V x I Occurrence (O) V Importance (I) Reduction in O, V, and/or I

(14)

Mitigation Prioritization

Threat scenario-based assessment

i=1

n

Risk

=

Σ

[O

i

×

V

i

]

×

I

threat scenarios

Similar to earthquake insurance loss

estimation methods

Transparent impact of mitigation

(15)

Example I: Gravity Dam

(HYPOTHETICAL)

Spillways Powerhouse C Upstream Face Abutment A Abutment B Powerhouse A Downstream Face Powerhouse B Outlet System

(16)

Threat Scenario Definition

Gravity Dam A Abutment A Abutment B Powerhouse A Powerhouse B Powerhouse C Upstream Face Downstream Face Spillways

Pedestrian Water Borne Vehicle Borne

Pedestrian Water Borne Vehicle Borne

Pedestrian Vehicle Borne

Pedestrian Vehicle Borne

Pedestrian Vehicle Borne

Pedestrian Water Borne

Pedestrian Vehicle Borne

Outlet System

Pedestrian Water Borne

(17)

Computed for each threat:

Weighted sum of pseudo-utility values:

Attributes mapped to quantitative scale

Access for attack

Security against attack

Attractiveness as a targetCapability of aggressor Gravity Dam A Abutment A Vehicle Borne

O

i

=

Σ

x

j

w

j j=1 4

Occurrence

i n Σ[Oi × Vi] × I

(18)
(19)

Computed for each threat:

Weighted sum of pseudo-utility values:

Attributes mapped to quantitative scale

Expected damageExpected closureExpected casualties Gravity Dam A Abutment A Vehicle Borne

Vulnerability

V

i

=

Σ

x

j

w

j j=1 3 i n Σ[Oi × Vi] × I

(20)
(21)

Computed once for the facility

Weighted sum of pseudo-utility values:

Attributes mapped to quantitative scale

Exposed population

Historical/symbolic importance

Replacement value

Importance to regional economy

Importance to irrigation system

Importance for power generation

Importance to transportation network

Annual revenue

Importance

I=

Σ

x

j

w

j j=1 8 i n Σ[Oi × Vi] × I

(22)

Importance Modeling Example

Historical significance (HS) Evacuation route (EV) Regional economy (RE) Transportation network (TN) Replacement value (BV) Revenue value (RV) Attached utilities (AU) Military importance (MI) Exposed population (EP)

Importance to the Regional Economy:

Insignificant = 0

(23)

Pre-Mitigation Risk Scores

(HYPOTHETICAL EXAMPLE)

(24)

Post-Mitigation Risk Scores

(HYPOTHETICAL EXAMPLE)

(25)

Example II: Existing Building

(HYPOTHETICAL EXAMPLE)

Interior Column Exterior Column Facade Car Parking

(26)

Example III: New Design

(HYPOTHETICAL EXAMPLE)

Example: truck

(27)

Critical Issues: Prioritization

Based on rational, rigorous, and

unbiased risk assessment

Assumptions and limitations

Benefits and costs

Objectives and constraints

Time frame

(28)

Example IV: Existing Tunnel

Single deterministic threat

Prioritize on all benefits and costs

Benefits:

• Expected Performance

(Reliability)

• Ease of Tunnel Repair • Benefit to Emergency Response • Secondary/Other Benefits Costs: • Construction Cost • Construction Risk • Construction Duration • Impact on Operations During Construction • Impact on Operations Long Term

(29)
(30)

Concluding Remarks

Security risk assessment

Components, basis, terminology

Screening methods

Assumptions and limitations

Mitigation prioritization

Risk-based, quantitative benefit/cost

Rational unbiased approach

Several other influences

Economic, social, legal, political

References

Download now ( PDF - 30 Page - 8.64 MB )

Related documents

December 20, December 25, 2020 The Nativity of the Lord. St. Catherine, St. Donatus, St. Joseph & Sts. Peter & Paul Catholic Churches

Donatus - Thursday, December 24 at 4:00 PM Lector: Tom Draus; Eucharistic Minister: Pat Draus Ushers: Mark Heitz, Cody Heitz.. Saturday, December 26 at

Actions speak louder than words: designing transdisciplinary approaches to enact solutions

We identified four key characteristics of this process that address the known challenges of linking new co-produced knowledge to action: creating a culture of learning,

UK dial plan example - CCNP Voice Extra

But more detail is available on the Ofcom website at http://stakeholders.ofcom.org.uk/telecoms/numbering/ The configuration below is the dial-plan configured on a Cisco

Special Report. Recommendations for Comprehensive Stroke Centers A Consensus Statement From the Brain Attack Coalition

These areas include: (1) health care personnel with specific expertise in a number of disciplines, including neurosurgery and vascular neurology; (2) advanced neuroimaging

Major Scheme Business Case Camborne Pool Redruth Transport Strategy

Mott MacDonald is preparing a major scheme business case to apply for Department of Transport funding for the Camborne Pool Redruth Transport Strategy.. A one day risk workshop

Bedford, Blair, Cambria, Cameron, Centre, Clearfield, Clinton, Elk, Fulton, Huntingdon, McKean, Potter, and Somerset Counties

Applicants should submit PA Standard Application, resume, cover letter, Praxis scores, Act 34/151/114 clearances, resume, transcript, certificate copy, physical and TB test

JMLS LLM Program in Beijing, China Professor - Lawyering Skills

School Activities: Faculty Advisor, Latino Law Students’ Association; Advisor and Judge, various moot court teams; presenter, various Pre- Legal Education Programs;

Study on the Experiences of Existing MFI Models Financing Sanitation in Rural Cambodia

Challenges that need to be tackled include (i) the lack of knowledge among villagers with respect to financial products and, in particular, WASH loan terms