The document provides an overview of a safety management system (SMS) used by the Federal Aviation Administration (FAA). It describes the four components of an SMS - safety policy, safety risk management, safety assurance, and safety promotion. It focuses on the safety risk management component, outlining the processes of system description, hazard identification, risk analysis, risk assessment, and risk control. It provides examples of how these processes would be applied to identifying and mitigating risks associated with aircraft deicing activities.

1. SMS Details:
Federal Aviation
Administration
Safety Risk
Management
Component
Policy
(Structure)
Risk
Management
Safety
Assurance
Safety
Promotion
Federal Aviation
Administration
SL-1

2. Definitions
• Safety management systems provide a
systematic way to control risk and to
provide assurance that those risk controls
are effective.
• Safety Risk Management performs the
process of controlling risk thru hazard
identification, analysis, risk assessment
and developing risk controls.
Federal Aviation
Administration
SL-2

3. Levels of Risk Management
• Process Risk Management
– Policy (What)
– Procedure (How)
– Controls
• Operational Risk Management
– Operational Control (Flight/Task/Mission)
– Crew/Team (Real time decision making)
Federal Aviation
Administration
SL-3

4. System Description
What is System Description & Task Analysis?
•
•
•
It is a system design function.
It is a predictive method of hazard identification.
It is the foundation for sound safety analysis.
System
Description
Hazard
Identification
When is it used?
•
•
•
•
Risk
Analysis
Used during implementation phases of SMS.
Used in the development of operational processes.
Used when a new Hazard is identified
Used in conjunction with all operational changes.
Risk
Assmt
Who uses System Description & Task Analysis?
•
Risk
Control
Personnel within the organization who form an appropriately
diverse team:
– Stakeholders
– Subject Matter Experts
ICAO Doc. 9859
Federal Aviation
Administration
SL-4

5. SRM
System
Description
System Description
Facts
Processes
Hazard
Identification
Activities
Workplace Conditions:
e.g,
System
Factors &
Attributes
Risk
Analysis
Risk
Assmt
Variable
Human
Performance
• Equipment
• Information (Procedures)
• Facilities
• Phys. Envir.
• Other Proc. (Interfaces)
• Training
• Supv./Mgmt. (Controls)
• ….
Risk
Control
Federal Aviation
Administration
SL-5

6. Typical Workplace Conditions
• Equipment: Human-machine interface,
facilities, tools…
• Information: Procedures, guidance...
• Environment: Physical, cultural…
• Training: Formal, OJT, recurrent…
• Company/regulator factors: The
RULES...
Barry Strauch (2004). Investigating Human Error
Federal Aviation
Administration
SL-6

7. Process (System or Safety) Attributes
• Responsibility
• Authority
• Procedures
• Controls
• Process
Measures
• Interfaces
Federal Aviation
Administration
SL-7

8. External
Internal
Decision by
Organization
Inputs
Previous Process
Interface – (I)
Process
Controls (C)
Activities
•Procedural
•Supervision
•Assurance
Processes
(Things People
do)
Responsibility (R)
•Accountable for
process output
Authority (A)
Procedures (P)
Empowered to:
•Make key
decisions
•Alter process
Outputs
•Destination – Interface (I)
•Deliverable – Performance
Measures (PM)
Processes
Federal Aviation
Administration
SL-8

9. Customer
Requirements
Laws
Regulations
Standards
Training
Materials
Process
Activities
Facilities
Equipment
Tools
Knowledgeware
• Manuals
• Job Aids
• Software
Products
Services
Systems
People
• Employees
• Contractors
• Organization
Environment
• Physical
• Operational
• Cultural
Federal Aviation
Administration
SL-9

10. Conditions (Hazards) Related to Human
Error
• Time pressure
• Poor procedures and documentation
• Teamwork (Too much, too little)
• Shift turnovers/crew briefings
• Group norms (Values, culture)
• Fatigue management (shifts/circadian
problems)
Alan Hobbs, ATSB (2008)
Federal Aviation
Administration
SL-10

11. Conditions (Hazards) Related to Human
Error (Cont.)
• Lack of System Knowledge
• Poor, worn out, missing or equipment/facilities
• Human-machine interface (e.g. design for
maintainability)
Federal Aviation
Administration
SL-11

12. Activities and Conditions: Deicing
Activities/Tasks
Workplace Conditions
Things people do
System and Environment
Prepare truck / equipment
Verify type of fluid
Day/Night
Weather – precip / cold
Fluid temp / concentration
Protective clothing
Position at aircraft
Equipment condition
Communicate with crew
Shift change
Apply fluid
Employee demographics
Communicate with crew
Depart ramp area
Federal Aviation
Administration
SL-12

13. Hazard Identification
System
Description
Hazard
Identification
A hazard is any real or potential
condition…
Risk
Analysis
that can result in injury, illness, or death
to people; damage to, or loss of, a
system (hardware or software),
equipment, or property;
and/or damage to the
operating environment.
Risk
Assmt
Risk
Control
ICAO Doc. 9859
Federal Aviation
Administration
SL-13

14. SRM
Hazard Identification
from Workplace Conditions
System
Description
Hazard
Identification
Processes
Activities
Workplace Conditions:
e.g.
System
Factors &
Attributes
Risk
Analysis
Risk
Assmt
• Equipment
• Information (Procedures)
• Facilities
• Phys. Envir.
• Other Proc. (Interfaces)
• Training
• Supv./Mgmt. (Controls)
• ….
Deficient Conditions
impacting activities =
Risk
Control
Inference
Variable
Performance
Causing…
Active Failures
Hazards
Resulting in…
Consequences
Federal Aviation
Administration
SL-14

15. Risk Analysis
System
Description
 Important to distinguish between:
 Hazard – a condition
Hazard
Identification
Risk
Analysis
Risk
Assmt
 Consequence – result
Risk
Control
 Risk – likelihood & severity of the
consequence
 Analyzing risk involves the consideration
of both the likelihood and the severity of
any adverse consequences.
ICAO Doc. 9859
Federal Aviation
Administration
SL-15

16. SRM
From Hazard to Risk
System
Description
Hazard
Identification
Deficient Conditions
impacting activities =
Variable
Performance
Hazards
Causing…
Risk
Analysis
Risk
Assmt
Risk
Control
Resulting in…
Active Failures
Consequences
L ikelihood
S everity
Risk
Judgment
Risk
Federal Aviation
Administration
SL-16

17. Failures and Consequences
Active failures
Potential Consequences
Direct results of human activity
Accident/incident severity
Incorrect fluid type
Wrong fluid concentration
Fluid sprayed into
pitot-static ports
Incomplete deicing
Aircraft required to be deiced again
Take-off delay
Maintenance action
required
Take-off accident due to
ice
Hold-over time too long
Federal Aviation
Administration
SL-17

18. Risk Assessment
Risk assessment determines the level of risk to use in
making a bottom line decision.
System
Description
Hazard
Identification
Risk
Likelihood
Risk Severity
Catastrophic
Hazardous
Major
Minor
Negligible
A
B
C
D
E
Risk
Control
5A
5B
5C
5D
5E
4
4A
4B
4C
4D
4E
Remote
3
3A
3B
3C
3D
3E
Improbable
Risk
Assmt
5
Occasional
Risk
Analysis
Frequent
2
2A
2B
2C
2D
2E
Extremely
improbable
1
1A
1B
1C
1D
1E
A risk matrix is a tool used for risk assessment. It can vary in
form yet it accomplishes the same purpose.
Federal Aviation
Administration
SL-18

19. Risk Control = Risk Mitigation
System
Description
Hazard
Identification
A major component of any safety system
is the defenses (controls) put in place
to protect people, property or the
environment.
Risk
Analysis
Risk
Assmt
Risk
Control
These defenses are used to reduce the
likelihood or severity of the
consequences associated with any
given hazard or condition.
ICAO Doc. 9859
Federal Aviation
Administration
SL-19

20. SRM
Risk Control/Mitigation
System
Description
Hazard
Identification
Processes
Activities
e.g.
System
Factors &
Attributes
Risk
Analysis
Risk
Assmt
Risk
Control
Workplace Conditions:
Variable
Human
Performance
• Equipment
• Information (Procedures)
• Facilities
• Phys. Envir.
• Other Proc. (Interfaces)
• Training
• Supv./Mgmt. (Controls)
• ….
Risk Controls
Federal Aviation
Administration
SL-20