Lessons Learned with the Application of MIL-STD-882D at the Weapon System Explosives Safety Review Board

Similar documents
System Safety in a System of Systems Environment

Safety Process For Navy Gun and Ammunition Systems

Navy Munitions Response Program Explosives Safety Oversight

DTJC E COPY ID/2021/C90/509

Subj: DEPARTMENT OF THE NAVY POLICY ON INSENSITIVE MUNITIONS

Nicolas H. Malloy Systems Engineer

OPNAVINST B N8 7 Nov Subj: NAVY TEST, MEASUREMENT, AND DIAGNOSTIC EQUIPMENT, AUTOMATIC TEST SYSTEMS, AND METROLOGY AND CALIBRATION

DEPARTMENT OF THE NAVY OFFICE OF THE SECRETARY 1000 NAVY PENTAGON WASHINGTON, DC

Subj: NUCLEAR SURVIVABILITY POLICY FOR NAVY AND MARINE CORPS SYSTEMS

Integrating System Safety into Forward Deployed Theater Operations

Subj: IMPLEMENTATION OF THE DEFENSE STANDARDIZATION PROGRAM IN THE DEPARTMENT OF THE NAVY

US Air Force Perspective: Rapid or Urgent Acquisition ESOH Management Mine Resistant Ambush Protected (MRAP) Vehicle Program Lessons Learned

NDIA Munitions Executive Summit Sustaining Industrial Readiness

OPNAVINST D N09F May 20, Subj: MISSION AND FUNCTIONS OF NAVAL SAFETY CENTER (NSC)

OPNAVINST A N2/N6 31 Oct Subj: NAVY ELECTRONIC CHART DISPLAY AND INFORMATION SYSTEM POLICY AND STANDARDS

Subj: EXPLOSIVES SAFETY REVIEW, OVERSIGHT, AND VERIFICATION OF MUNITIONS RESPONSES

process since the beginning of the program and will continue that involvement throughout the life cycle of the program.

Rapid Development and Integration of Remote Weapon Systems to Meet Operational Requirements Abstract May 2011

DEPARTMENT OF THE NAVY OFFICE OF THE CHIEF OF NAVAL OPERATIONS 2000 NAVY PENTAGON WASHINGTON, DC

THE SECRETARY OF THE NAVY WASHINGTON DC

Subj: MISSION, FUNCTIONS AND TASKS OF DIRECTOR, STRATEGIC SYSTEMS PROGRAMS, WASHINGTON NAVY YARD, WASHINGTON, DC

OPNAVINST DNS-3/NAVAIR 24 Apr Subj: MISSIONS, FUNCTIONS, AND TASKS OF THE COMMANDER, NAVAL AIR SYSTEMS COMMAND

a. To promulgate policy on cost analysis throughout the Department of the Navy (DON).

OPNAVINST E N97 7 Nov 2017

Unmanned Systems Interoperability Conference 2011 Integration of Autonomous UxS into USN Experiments

Department of Defense MANUAL

COMPLIANCE WITH THIS PUBLICATION IS MANDATORY

Task Force Innovation Working Groups

Subj: IDENTIFICATION OF MAJOR PROGRAM MANAGER EQUIVALENT BILLETS

DEPARTMENT OF THE NAVY NAVAL AIR SYSTEMS COMMAND RADM WILLIAM A. MOFFETT BUILDING BU$E ROAD, BLDG 2272 PATUXENT RIVER, MARYLAND

REQUIREMENTS TO CAPABILITIES

OPNAVINST G N09P 17 Jul Subj: MISSION, FUNCTIONS, AND TASKS OF THE BOARD OF INSPECTION AND SURVEY

Subj: IMPLEMENTATION OF THE ELECTRONIC CHART DISPLAY AND INFORMATION SYSTEM-NAVY (ECDIS-N) CERTIFICATION PROCESS

OPNAVINST DNS 25 Apr Subj: MISSION, FUNCTIONS AND TASKS OF COMMANDER, NAVAL SUPPLY SYSTEMS COMMAND

OPNAVINST D N4 24 May (a) OPNAV M , Naval Ordnance Management Policy Manual

JUDGING CRITERIA U.S. Army Aviation and Missile Command, G-4 E-Team

CAPT Heide Stefanyshyn-Piper

Subj: MISSION, FUNCTIONS, AND TASKS OF NAVAL SPECIAL WARFARE COMMAND

NDIA Ground Robotics Symposium

Subj: SECRETARY OF THE NAVY SAFETY EXCELLENCE AWARDS

OPNAVINST C N43 18 Jun Subj: NAVY EXPEDITIONARY TABLE OF ALLOWANCE AND ADVANCED BASE FUNCTIONAL COMPONENT POLICY

Quality Assurance. Confirmed Task Orders. Functional Area of Expertise and Proposed Assignments

Rapid Development and Integration of Remote Weapon Systems to Meet Operational Requirements Abstract October 2009

Headquarters U.S. Air Force

Ship Maintenance: Provider Perspective. VADM Paul Sullivan Naval Sea Systems Command

DEPARTMENT OF THE NAVY OFFICE OF THE CHIEF OF NAVAL OPERATIONS 2000 NAVY PENTAGON WASHINGTON DC

Subj: CERTIFICATION OF THE AVIATION CAPABILITY OF SHIPS OPERATING AIRCRAFT

Subj: MISSION AND FUNCTIONS OF THE NAVAL SAFETY CENTER

ABSTRACT INTRODUCTION. CAPT Norbert Doerry, USN and Howard Fireman Fleet Capabilities Based Assessment (CBA) Approved for Public Release 1

Subj: NAVY ENTERPRISE TEST AND EVALUATION BOARD OF DIRECTORS

RAYTHEON MISSILE SYSTEMS PURCHASE ORDER ATTACHMENT

OPNAVINST B N96 29 Jul 2014

Title:F/A-18 - EA-18 Aircraft / System Program Protection Implementation Plan

Report Documentation Page

ASN (RDA) Chief Engineer

Department of Defense INSTRUCTION

WARFIGHTER MODELING, SIMULATION, ANALYSIS AND INTEGRATION SUPPORT (WMSA&IS)

FOR OFFICIAL USE ONLY. Naval Audit Service. Audit Report

Naval Air Systems Command P-8A Poseidon ESOH Team FY-15 CNO Environmental Award Environmental Excellence in Weapon System Acquisition Large Program

DEPARTMENT OF THE NAVY CHIEF OF NAVAL OPERATIONS 2000 NAVY PENTAGON WASHINGTON DC

OPNAVINST B N98 4 Jun 2018

1. Purpose. To define and implement a comprehensive approach to the conduct of force structure assessments.

Melissa Milani U.S. Ordnance Program Manager NAVEODTECHDIV Indian Head, MD REQUIREMENTS FOR JOINT EOD APPROVAL OF ORDNANCE AND WEAPON SYSTEMS

CERTIFICATION OF THE AVIATION CAPABILITY OF SHIPS OPERATING AIRCRAFT

NOTICE OF DISCLOSURE

OPNAVINST A N2/N6 19 Dec Subj: NAVAL OCEANOGRAPHY POLICY, RELATIONSHIPS, AND RESPONSIBILITIES

Chapter 12 Environmental, Safety and Health (ES&H) Regulatory Compliance and Contractor Oversight Program

Subj: ELECTRONIC WARFARE DATA AND REPROGRAMMABLE LIBRARY SUPPORT PROGRAM

Advanced Explosive Ordnance Disposal Robotic System (AEODRS)

ELECTROMAGNETIC SPECTRUM POLICY AND MANAGEMENT

VADM David C. Johnson. Principal Military Deputy to the Assistant Secretary of the Navy for Research, Development and Acquisition April 4, 2017

Subj: NAVY ENLISTED OCCUPATIONAL CLASSIFICATION SYSTEM

OPNAVINST N9 16 Jun Subj: CHIEF OF NAVAL OPERATIONS SIMULATOR DEVELOPMENT AND TRAINING STRATEGY

OPNAVINST D N96 23 Jan Subj: SHIP ANTISUBMARINE WARFARE READINESS AND EFFECTIVENESS MEASURING PROGRAM

USMC Ground Mishap Investigation Course. Types of Safety Investigations and Endorsement Process

Subj: CHEMICAL, BIOLOGICAL, RADIOLOGICAL, AND NUCLEAR DEFENSE REQUIREMENTS SUPPORTING OPERATIONAL FLEET READINESS

Joint Service Safety Testing Study Phase II Final Presentation

We acquire the means to move forward...from the sea. The Naval Research, Development & Acquisition Team Strategic Plan

UNCLASSIFIED. FY 2016 Base FY 2016 OCO


DEPARTMENT OF THE NAVY OFFICE OF THE CHIEF OF NAVAL OPERATIONS 2000 NAVY PENTAGON WASHINGTON, DC

COMPLIANCE WITH THIS PUBLICATION IS MANDATORY

DEPARTMENT OF THE NAVY OFFICE OF THE CHIEF OF NAVAL OPERATIONS 2000 NAVY PENTAGON WASHINGTON DC

Clinical Risk Management: Agile Development Implementation Guidance

UNCLASSIFIED. UNCLASSIFIED Navy Page 1 of 7 R-1 Line #31

Subj: UNITED STATES SHIP CONSTITUTION COMMAND RELATIONSHIPS AND EMPLOYMENT

Fault Tree Analysis (FTA) Kim R. Fowler KSU ECE February 2013

First Announcement/Call For Papers

PROCEDURES FOR NAVY PARTICIPATION IN THE DEPARTMENT OF DEFENSE SPACE TEST PROGRAM

Air Force Research Laboratory

NAVAL SCIENCE, TECHNOLOGY, ENGINEERING, AND MATHEMATICS POLICY AND COORDINATION

COMPLIANCE WITH THIS PUBLICATION IS MANDATORY

Subj: MISSIONS, FUNCTIONS, AND TASKS OF UNITED STATES FLEET FORCES COMMAND

DEPARTMENT OF THE NAVY OFFICE OF THE CHIEF OF NAVAL OPERATIONS 2000 NAVY PENTAGON WASHINGTON, DC

C H A P T E R HAZARD ANALYSIS

THREAT SUPPORT TO THE DEFENSE ACQUISITION SYSTEM

GLOBAL BROADCAST SERVICE (GBS)

DEPARTMENT OF THE NAVY OFFICE OF THE CHIEF OF NAVAL OPERATIONS 2000 NAVY PENTAGON WASHINGTON, DC

Navy JCTD Workshop. Building a Competitive Proposal and. the U.S. Navy Service Selection Process. OPNAV N8F S&T (Science & Technology Branch)

REPORT DOCUMENTATION PAGE

Transcription:

Lessons Learned with the Application of MIL-STD-882D at the Weapon System Explosives Safety Review Board Mary Ellen Caro Naval Ordnance Safety and Security Activity Systems Safety/Joint Programs mary.caro@navy.mil Presented to: 8 th Systems Engineering Conference 26 October 2005 Providing Ordnance Safety for our Warfighters 1

Agenda WSESRB Background MIL-STD-882D Evolution MIL-STD-882D Implications for System Acquisition System Safety Program Planning Safety Program Execution Safety Risk Management Conclusion 2

WSESRB Background The WSESRB was established in 1967 as a result of several mishaps aboard aircraft carriers The purpose of the WSESRB is to provide an independent and technical review of the adequacy of the Program s system safety program and artifacts Providing Ordnance Safety for our Warfighters USS Oriskany (1966) USS Forrestal (1967) 3

WSESRB Authority DODI 5000.2 Para E7.7 - PM shall identify, evaluate and manage safety and health hazards - Explains the process for accepting risk SECNAVINST 5000.2C -CNO may establish system safety advisory boards (7.3.3) -WSESRB is primary explosives safety review prior to DT/OT and Milestones (5.2.1.4.2) SECNAVINST 5100.10H - Directs CNO/CMC to establish safety programs OPNAVINST 8020.14/MCO P8020.11 - Explosives Safety Policy - Tasks COMNAVSEASYSCOM to establish WSESRB NAVSEAINST 8020.6D - Defines WSESRB process and procedures 4

Who is the WSESRB Explosives Safety Program Policy Flow and Membership OPNAVINST 8020.14/ MCO P8020.11 Chair & Secretariat CNO Naval Sea Systems Command NOSSA NAVSEAINST 8020.6 Recently Established A Flag Level Review Process Naval Safety Center Member Navy Environ Health Center Member Fleet Members Weapon System Explosives Safety Review Board (WSESRB) NAVAIR Members OPNAV Member Providing Ordnance Safety for our Warfighters Program Manager Accepts Risks NAVSEA Members EOD TECHDIV Member MARCOR SYSCOM Member 5

Acquisition Life-Cycle WSESRB reviews occur throughout that life-cycle Providing Ordnance Safety for our Warfighters 6

Transition to MIL-STD-882D Developed as result of acquisition reform Converted to Standard Practice document Eliminated system safety tasks What to do not How to do it Example Mishap Risk Index and defined High, Serious, Medium and Low risks Agreement with DoDI 5000.2 Ability to tailor to specific programs Requirement for Closed Loop Hazard Tracking Providing Ordnance Safety for our Warfighters 7

MIL-STD-882D Process Eight basic steps to the MIL-STD-882D Standard Practice Documentation of the System Safety approach Identification of hazards Assessment of mishap risk Identification of mitigation measures Reduction of mishap risk to acceptable level Verification of mishap risk reduction Acceptance of residual risk Hazard tracking Providing Ordnance Safety for our Warfighters 8

System Acquisitions MIL-STD-882D calls for System Safety Program, but eliminated tasks No tasks to identify in solicitation The bidder shall execute a system safety program in accordance with MIL-STD-882D System Safety Hazard Analysis shall be provided xx days prior to DRR Bidders propose safety programs for best competitive advantage Proposals may vary widely in planned system safety program Potential ambiguities between buyer and seller in program execution 9

System Acquisitions Lessons Learned Solicitation needs to be as specific as possible and identify types of system safety efforts required of the developer (e.g., system safety program plan/poa&m, hazard analyses, hazard testing, certification requirements) For Navy ordnance and weapon programs, there are many required tests and analyses that need to be identified in solicitation documents Safety should to be part of Source Selection Criteria and participate in proposal evaluations 10

System Safety Program Planning DoDI 5000.2 only requires a PESHE MIL-STD-882D requires system safety program planning, but no longer identifies a task for the System Safety Program Plan (SSPP) Solicitation may or may not require an SSPP to be submitted with the proposal 11

System Safety Program Planning Lessons Learned A specific system safety plan needs to be developed for the program including identification of responsibilities, schedules, safety analyses, safety testing. Typically SSPPs are still being prepared. For large complex programs, the Government should develop a System Safety Management Plan to identify how project safety efforts are aligned and integrated. 12

Safety Program Execution Integrated Product Process Development structure applied almost universally Concurrent engineering requires real time safety participation Hazard identification Hazard characterization Prioritization of hazards Identification of hazard mitigation Implementation and verification of hazard risk mitigation Collaborative effort with Design IPTs 13

Mishap Relationships Results In: Leads To: Causes A: Hazard Causal Factors Effect Top Level Mishap Hazard HUMAN SUBSYSTEM INTERFACE Death, Injury, Illness, Equipment Loss, Equipment Damage, Environmental Damage The point at which the Inadvertent Release of Energy Occurred A Condition that exists within the system that could lead to a TLMs Element within the system design, implementation, or operation that leads to a hazard Providing Ordnance Safety for our Warfighters 14

Safety Program Execution Hazard Analysis tasks of MIL-STD-882C have been eliminated in MIL-STD-882D. However, these tasks lead the safety practitioner through a logical sequence of hazard identification/mitigation: Preliminary Hazard List/Analysis (PHL/PHA) identifies top level hazards for further development Safety Requirements/Criteria Analysis (SR/CA) identifies safety requirements that can be mapped to their allocated subsystems Subsystem Hazard Analysis (SSHA) further evaluates hazards associated with identified subsystems System Hazard Analysis (SHA) identifies hazards of interfacing subsystems/outside systems Operating and Support Hazard Analysis (O&SHA) identifies those hazards associated with operations and maintenance 15

Safety Program Execution Lessons Learned Safety practitioner needs to step back from day-to-day IPT activities to ensure that correct aspects of safety analyses are being conducted Safety practitioner needs to ensure the scope of all the hazard analysis types has been covered within the program execution 16

Safety Program Execution Lessons Learned Doing the system safety work doesn t necessarily mean producing the specific hazard analysis documents Not having to produce the specific hazard analysis documents doesn t mean not having to do the system safety work 17

Safety Program Execution Lessons Learned Hazard tracking systems are becoming more important Many are web based so everyone has access Repository for all identified hazards Real time tool that can capture work on-going within IPTs Data base formats allow manipulation of data to produce information Tool for development of System Safety Hazard Analysis deliverable documents 18

Safety Program Execution Software safety process heavily dependent on identification of safety-related requirements and assessment of criticality 19

Software Criticality Matrix SOFTWARE CONTROL CATEGORY MISHAP SEVERITY POTENTIAL Catastrophic Critical Marginal Negligible Autonomous SHRI 1 SHRI 1 SHRI 2 SHRI 4 Semi-Autonomous SHRI 1 SHRI 2 SHRI 3 SHRI 4 Semi-Autonomous with Redundant Back- Up SHRI 2 SHRI 3 SHRI 4 SHRI 4 Influential SHRI 3 SHRI 3 SHRI 4 SHRI 4 No Safety Involvement No Safety Analysis Required. High Risk Safety verification requires requirements analysis, design analysis, code analysis and safety specific testing Serious Risk Requires requirements analysis, design analysis and in-depth safety specific testing Medium Risk Requires requirements analysis and safety specific testing Low Risk Requires requirements analysis and standard testing process Providing Ordnance Safety for our Warfighters 20

Software Integrity Matrix SRI Phase DESIGN CODE UNIT TEST INTEGRATING UNIT TEST SYSTEM INTEGRATION SRI 1 High Risk SRI 2 Serious Risk SRI 3 Medium Risk Design Team Review Safety Review SCF Linked To SW Rqmts SCF Linked to Design Architecture Fault Tolerant Design. Design Team Review Prioritized Safety Review SCF Linked To SW Rqmts SCF Linked to Design Architecture. Design Team Review Limited Safety Review Safety-Related Functions Linked to Design Design Code Walkthrough Independent Code Review Safety Code Analysis SCF Code Review Safety Fault Detection, Fault Tolerance Design Code Walkthrough Safety Code Analysis for Prioritized Modules SCF Code Review Safety Fault Detection, Fault Tolerance Design Code Walkthrough Safety Code Analysis for Prioritized Modules SCF Code Review Safety Fault Detection, Fault Tolerance Test Case Review Independent Test Review Failure Mode Effect Testing 100% Thread Testing Safety Test Result Review Test Case Review Independent Test Review Failure Mode Effect Testing 100% Thread Testing Safety Test Result Review Test Case Review Independent Test Review Failure Mode Effect Testing 100% Regression Testing Safety Test Result Review Test Case Review Independent Test Review Failure Mode Effect Testing 100% Regression Testing Safety Test Result Review SRI 4 Low Risk Design Team Review Minimal Safety Review Normal Software Design Process IAW SDP SRI 5 No Safety Risk Normal Software Design Activity IAW the Software Development Plan Normal Software Code Activity IAW the Software Development Plan Normal Software Unit Test Activity IAW the Software Development Plan Normal Software Unit Integration Test Activity IAW the Software Development Plan Normal Software System Integration Test Activity IAW the Software Development Plan 21

Safety Program Execution Proposed revision to MIL-STD- 882D introduces concept of relating safety criticality of software to safety integrity levels similar to DO 178B Different levels of rigor in the design, review, analysis and test efforts for varying levels of safety criticality 22

System Safety Risk Management MIL-STD-882D addresses Mishap Risk vice MIL-STD-882C Hazard Risk Higher level of abstraction associated with residual risk Many hazards that can result in the same mishap 23

Mishap Risk Index FREQUENCY OF OCCURRENCE I CATASTROPIC HAZARD CATEGORIES II CRITICAL III MARGINAL IV NEGLIGIBLE HIGH HIGH (CAE (CAE (ASN-RDA)) (ASN-RDA)) (A) Frequent 3 (2A) 1 (1A) 5 (2B) 7 (3A) 13 (4A) SERIOUS (PEO) SERIOUS (PEO) (B) Probable 2 (IB) 9 (3B) 16 (4B) MEDIUM (PM) MEDIUM (PM) (C) Occasional 4 (1C) 6 (2C) 11 (3C) 18 (4C) LOW (PM) LOW (PM) (D) Remote 8 (ID) 10 (2D) 14 (3D) 19 (4D) (E) Improbable 12 (IE) 15 (2E) 17 (3E) 20 (4E) Providing Ordnance Safety for our Warfighters 24

System Safety Risk Management Lessons Learned Mishap Risk Index needs to be tailored for different applications, but most programs default to the identified MRI in MIL-STD-882D. With Residual Risk being captured at the Mishap vice Hazard level, strategy for dealing with cumulative risk associated with many hazards should be identified. Providing Ordnance Safety for our Warfighters 25

Conclusions Acquisition reform and MIL-STD-882D have changed the way System Safety is performed Requires more understanding and thought up front to ensure the system safety program is properly structured Requires vigilance to ensure full scope of system safety effort is accomplished vice only those issues identified in IPT meetings Has fostered collaborative efforts between system safety, systems engineering, software engineering and design engineering on many programs Providing Ordnance Safety for our Warfighters 26

NOSSA: Providing Ordnance Safety for our War Fighters.

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback