Using Risk Modeling, Analysis, and Assessment to Inform Homeland Security Policy and Strategy

Similar documents
Business Case for Using a Numbered Logarithmic Risk Severity Scale. Don Swallom U.S. Army Aviation and Missile Command Redstone Arsenal, Alabama

Homeland Security National Risk Characterization

Prerequisites for EOP Creation: Hazard Identification and Assessment

Comparing Risks in the Homeland Security Mission Space

Assessing Homeland Security Risks: A Comparative Risk Assessment of 10 Hazards

A Practical Framework for Assessing Emerging Risks

Assessing Risk: Shifting Focus from Hazards to Capabilities. Jane Coolidge Kara Walker CMRHCC April 2017

The Business Case for Using a Numbered Logarithmic Risk Severity Scale. Donald W. Swallom. U.S. Army Aviation and Missile Command

Introduction to Disaster Management

STATE AND LOCAL MITIGATION PLANNING how-to guide

Southwest Florida Healthcare Coalition

DRAFT Revised Guide to the National CDEM Plan 2015 July 2015

2. Hazards and risks. 2 HAZARDS AND RISKS p1

Emergency Resilience Risk Assessment

GUIDE BUSINESS & INDUSTRY A STEP-BY-STEP APPROACH TO EMERGENCY PLANNING, RESPONSE AND RECOVERY FOR COMPANIES OF ALL SIZES

Multi-Hazard Risk Management Project The Smithsonian Institution (SI)

Evaluate every potential event in each of the three categories of probability, risk, and preparedness. Add additional events as necessary.

DHS RISK LEXICON P G.

Garfield County NHMP:

Executive Summary. Introduction and Purpose. Scope

FACILITY NAME. CONSIDERATIONS FOR COMPLETING THE ANALYSIS FORMS The following instructions were modified from the Kaiser Permanente HVA tool

Resilience through Innovative Risk Governance Parallel Session 1

What does the WEF Global Risks Report have to do with my Risk Management program? GRM016 Speakers:

SECTION 1 INTRODUCTION

Benefits of Improving Infrastructure Resilience

Sussex County All Hazard Mitigation Plan. Plan Executive Summary

ITEM 9 STAFF REPORT. TO: Mayor and City Council. FROM: Tom Welch, Interim Fire Chief. SUBJECT: City ofmill Valley All-Hazard Mitigation Plan

Section II: Vulnerability Assessment and Mitigation

2017 Resiliency Peer Exchange On Extreme Weather and Climate Impacts

2. Hazards and risks 2. HAZARDS AND RISKS. Summary

BY Sri D. K. Goswami OIL INDIA LIMITED

Northeast Florida Healthcare Coalition Multi-Year Strategic Plan ( )

Introduction to the Disaster Risk Profile of Chittagong

Doctrinal Guidelines for Quantitative Vulnerability Assessments of Infrastructure-Related Risks Volume I

A Multihazard Approach to Building Safety: Using FEMA Publication 452 as a Mitigation Tool

A Holistic, Cross-Government All Hazards Risk Assessment

CRS-2 DUA benefits are available only to those individuals who have become unemployed as a direct result of a declared major disaster. First created i

Modeling Extreme Event Risk

REPUBLIC OF BULGARIA

EMERGENCY MANAGEMENT

Disasters and Localities. Dr. Tonya T. Neaves Director Centers on the Public Service Schar School of Policy and Government

Managing Olympic Risks. Dr Will Jennings University of Southampton

Hazard Mitigation FAQ

The Mississippi State Department of Health EOPs and HVAs Presented By: Lillie Bailey

EXTRACT FROM GJENERAL CONDITIONS OF LIFE INSURANCE WITH SAVINGS CONTRACT

Table 2: CONDITIONS AND TRIGGERS (Either 1 of the listed triggers / conditions) WHITE ALERT BLUE ALERT RED ALERT. Result of the conduct of PDRA

IBTTA Facilities Management and Maintenance Workshop October 23-25, 2011 Nashville, TN Ray Szczucki ACE USA Inland Marine ACE USA

The Global Risk Landscape. RMS models quantify the impacts of natural and human-made catastrophes for the global insurance and reinsurance industry.

Job Safety Analysis Preparation And Risk Assessment

Applying Risk-based Decision-making Methods/Tools to U.S. Navy Antiterrorism Capabilities

Multi-Jurisdictional Hazard Mitigation Plan. Data Collection Questionnaire. For School Districts and Educational Institutions

MODULE 1 MODULE 1. Risk Management. Session 1: Common Terminology. Session 2: Risk Assessment Process

Southern Company. 2nd Quarter 2018 Earnings. June 30, 2018

SMALL BUSINESS. Guide to Business. Continuity Planning. Ensure your business continues to operate in the event of a disruption.

REPORT ON DISASTER RISK ASSESSMENT IN THE REPUBLIC OF SLOVENIA FOR THE PERIOD

COMMUNITY SUMMARY LINN COUNTY MULTI-JURISDICTIONAL HAZARD MITIGATION PLAN CITY OF LISBON

ACME AMAZIUM REFINERY: ALL HAZARDS PERFORMANCE PROFILE (PARTICIPANT GUIDE)

Chapter II: Disaster Overview

Disaster Unemployment Assistance (DUA)

HAZARD MITIGATION PLANNING

COMMUNITY SUMMARY LINN COUNTY MULTI-JURISDICTIONAL HAZARD MITIGATION PLAN CITY OF CENTRAL CITY

Disaster Unemployment Assistance (DUA)

Hazard Mitigation Planning

Catastrophe Risk Engineering Solutions

EvCC Emergency Management Plan ANNEX #11 Hazard Assessment

Detailed Identification and Classification of Hazards and Disasters for Effective Hazard. Vulnerability Assessments. Abstract

Natural Hazards Risks in Kentucky. KAMM Regional Training

Maritime Security Risk Analysis Model. USCG Presentation to Area Maritime Security Committee

PART 1 2 HAZARDS, RISKS & SAFETY.

A SYSTEMIC APPROACH TO THE MANAGEMENT OF RISK

Managing Risk-Related Contingent Liabilities in Public Finance Frameworks

4.1 Risk Assessment and Treatment Assessing Security Risks

I would like to thank the following organizations for sponsoring the course, which allows their employees/members to have the registration fee waived:

Disaster in SDGs. - How can we measure? Youngmi Lee (Statistical Research Institute) Honggyu Sohn (Yonsei Univ.)

R I S K M A N A G E M E N T: R E F L E C T I O N S O N P O R T S E C U R I T Y. P r i n c i p a l, C o s m o P e r r o n e & A s s o c i a t e s

1.1. PURPOSE 1.2. AUTHORITIES 1. INTRODUCTION

Hazard Vulnerability Assessment for Long Term Care Facilities

Insuring sustainable markets of the future

Effective Workplace Incident Investigations SERGE SIROIS, INVESTIGATION OFFICER WORKSAFE NB

Client Risk Solutions Going beyond insurance. Risk solutions for Energy. Oil, Gas and Petrochemical. Start

Regional Healthcare Hazard Vulnerability Assessment

UNITED STATES NUCLEAR REGULATORY COMMISSION OFFICE OF NUCLEAR MATERIAL SAFETY AND SAFEGUARDS WASHINGTON, DC IN FUEL CYCLE FACILITIES

Adaptation An Approach to Effectively Managing Uncertainty

Section 9. Emergency Management Accreditation Program

AFTERMATH OUTBREAK. Contingency Planning to Sustain Critical Operations During Large Scale Disasters and Catastrophic Events

S Pandemic and All-Hazards Preparedness and Advancing Innovation Act of 2018

Vocabulary of Flood Risk Management Terms

Risk Assessment Planning Team Meeting April 5, 2016

U.S. Department of the Interior Office of Inspector General. Advisory Letter. Critical Infrastructure Assurance Program, Department of the Interior

VULNERABILITY ASSESSMENT

Intelligent Adversary Risk Analysis: Defender-Attacker-Defender Probabilistic Risk Analysis Models

RISK MANAGEMENT. Budgeting, d) Timing, e) Risk Categories,(RBS) f) 4. EEF. Definitions of risk probability and impact, g) 5. OPA

Catastrophic Disasters and Emergency Planning - IAEM Exit this survey >>

Client Risk Solutions Going beyond insurance. Risk solutions for Real Estate. Start

Occupational Health and Safety (OHS) Incident Management: The Role of Business Continuity

Emergency Preparedness

The AIR Model for Terrorism

Japanese Government General Indemnity Contract (English translation)

Climate Change Adaptation A Study in Risk Management. T.D. Hall AAC Conference, Halifax Session 8 September 2015

7/25/2013. Presented by: Erike Young, MPPA, CSP, ARM. Chapter 2. Root Cause Analysis

Transcription:

Using Risk Modeling, Analysis, and Assessment to Inform Homeland Security Policy and Strategy Alan D. Cohn Assistant Secretary for Strategy, Planning, Analysis & Risk United States Department of Homeland Security alan.cohn@hq.dhs.gov

Remarks Introduction to homeland security in the United States, the U.S. Department of Homeland Security (DHS), and the DHS Office of Strategy, Planning, Analysis, and Risk Strategic Planning, Risk Modeling, Analysis, and Assessment: 1. Overview of the Strategic National Risk Assessment (SNRA) 2. Overview of the Homeland Security National Risk Characterization (HSNRC) Discussion and Questions 2

Introduction to U.S. Homeland Security 3

Homeland Security in the U.S. Vision: A homeland that is safe, secure, and resilient where American interests, aspirations, and way of life can thrive The Homeland Security Missions: 1. Preventing Terrorism and Enhancing Security 2. Securing and Managing Our Borders 3. Enforcing and Administering Our Immigration Laws 4. Safeguarding and Securing Cyberspace 5. Ensure Resilience to Disasters Ultimately, homeland security is about effectively managing risks to the Nation s security. 1 1 Quadrennial Homeland Security Review Report: A Strategic Framework for a Secure Homeland, Feb 2010. http://www.dhs.gov/quadrennial-homeland-security-review-qhsr 4

U.S. Department of Homeland Security Secretary: Janet Napolitano Appointed: 2009 Workforce: 210,000 Created: March 1, 2003 http://www.dhs.gov 5

Creation of SPAR Office of Strategy, Planning, Analysis and Risk (SPAR) formed within DHS Office of Policy in March 2012 by merging strategic planning and risk analysis offices Designed to elevate the importance of a strong risk modeling, analysis, and strategic planning function within the Department. 1 Consistent with the Secretary s vision and the Department s approach to integrating risk-based decision-making across the Department. 2 1 Joint Explanatory Statement accompanying FY 2012 DHS Appropriations Act (P.L. 112-74) 2 Strategic Planning, Risk Modeling, and Analysis Plan, Fiscal Year 2012 Report to Congress, March 2012 6

Strategic Planning, Risk Modeling, Analysis, and Assessment 7

1 Strategic National Risk Assessment 8

Overview: Strategic National Risk Assessment (SNRA) Presidential Policy Directive 8 (PPD-8) ties national preparedness to threats that pose the greatest risk to the security of the nation Includes acts of terrorism, pandemics, and catastrophic national disasters The PPD-8 Implementation Plan mandates that [t]he Secretary of Homeland Security shall conduct a strategic, national-level risk assessment... The SNRA was used to support development of the core capabilities and capability targets in the 2011 National Preparedness Goal http://www.dhs.gov/presidential-policy-directive-8-national-preparedness 9

Threats and Hazards Analyzed in the SNRA NATURAL HAZARDS TECHNOLOGICAL HAZARDS ADVERSARIAL / HUMAN-CAUSED Animal Disease Outbreak Earthquake Flood Human Pandemic Outbreak Hurricane Space Weather Tornado Tsunami Volcano Eruption Wildfire Biological Food Contamination Chemical Substance Spill or Release Dam Failure Radiological Substance Release Aircraft as a Weapon Armed Assault Biological Terrorism Attack (nonfood) Chemical Terrorism Attack (nonfood) Chemical/Biological Food Contamination Terrorism Attack Cyber Attack against Data Cyber Attack against Physical Infrastructure Explosives Terrorism Attack Nuclear Terrorism Attack Radiological Terrorism Attack Unclassified document with summary of results and definitions of events can be found at: https://www.dhs.gov/strategic-national-risk-assessment-snra 10

SNRA Methodology Overview Risk: The potential for an unwanted outcome resulting from an incident, event, or occurrence, as determined by its likelihood and the associated consequences. DHS Risk Lexicon, 2010 Threat Vulnerability Consequence Likelihood & Consequences The chance of something happening, typically measured or estimated in terms of frequency or probability The effect of an incident, event, or occurrence, whether direct or indirect 11

SNRA Methodology Overview Continued Risk = f (Frequency, Consequences) Six consequence categories: Fatalities Injuries/Illnesses Direct economic impacts ($ of loss) Social impacts (displaced from home for at least two days) Psychological impacts (distress) Environmental impacts Order of magnitude precision Variety of data inputs and sources Time horizon: next 3-5 years Strategic National Risk Assessment Summary of Interim Findings October 2012 12

Risk-Informed National Preparedness Goal Strategic National Risk Assessment Summary of Interim Findings October 2012 A wide range of threats and hazards pose a significant risk to the Nation, affirming the need for an all-hazards, capability-based approach to preparedness planning http://www.fema.gov/preparedness-1/learn-about-presidential-policy-directive-8 13

2 Homeland Security National Risk Characterization 14

Overview: Homeland Security National Risk Characterization (HSNRC) The Homeland Security Act requires DHS to conduct the Quadrennial Homeland Security Review (QHSR), a comprehensive examination of the homeland security strategy of the Nation, including: recommendations regarding the long-term strategy and priorities of the Nation for homeland security ; and guidance on the programs, assets, capabilities, budget, policies, and authorities of [DHS]. 1 QHSR requires a characterization of homeland security risks in order to set longterm strategy and priorities, and assess programs, assets, capabilities, budget, policies, and authorities. 1 6 U.S.C. 347 15

Threats and Hazards Analyzed in the HSNRC Quantitative Plots of Frequencies and Consequences Qualitative Narrative Accidental Biological Food Contamination Accidental Chemical Substance Spill or Release Accidental Radiological Substance Release Aircraft as a Weapon Animal Disease Outbreak Armed Assault Biological Terrorism Attack, Non-food Chemical Terrorism Attack, Non-food Chemical/Biological Food Contamination Terrorism Attack Cyber Events that Impede System Operations Cyber Events that Extract or Alter Information without System Impacts Dam Failure Disruptive Strike/Industrial Action Drought Earthquake Explosives Terrorism Attack Extreme Cold/Snowstorm Flood Heat/Heatwave Human Pandemic Outbreak Hurricane Illegal Immigration Illicit Drugs Industrial Accidents, Explosions Mass Migration Large Oil Spills Nuclear Terrorism Attack Pipeline Failure Power Grid Failure Radiological Terrorism Attack Small Oil Spills Transportation System Failure Tornado Urban Conflagration Wildfire Cyber Events that extract or alter information without system impacts Cyber: crippling cascading attack on critical infrastructure Cyber: Data destruction results in degraded commercial viability or Government Service Cyber: Distributed Denial of Service (DDOS) attack causes erosion of consumer confidence and Economic loss Space Weather Tsunami Volcano Eruption 16

Methodology Overview: A Continuum of Frequencies Recognizing that frequencies fall along a continuum obviates the need to distinguish between persistent and contingent threats and hazards Example threats/hazards and notional data: Continuously Daily Weekly Monthly Quarterly Annually Decade Half-century Century Millennium 17

Methodology Overview (continued): Consequence Categories Consequence Category Health and Safety Economic Impacts: Direct and Indirect Socioeconomic Impacts Psychological Impacts Environmental Impacts Government Operations Freedoms/Rights Deaths Injuries National economy Businesses Displaced/Homeless Crime Drug addiction Degradation of social fabric Distress (including PTSD, impaired functioning/quality of life) Fear (including anxiety, stress, worry) Flora Fauna Provision of essential government services Loss of public order For all Americans: search, privacy, Elements Illnesses Disabilities Families and individuals: loss of income, insurance rates, retirement Degradation of lifestyle Degradation of families Jobs lost Loss of societal cohesion Loss of confidence in government Water Continuity of government operations For subsets of Americans: unequal treatment, stereotyping movement International Relations Status of alliances Global leadership National Sovereignty Encroachment on US territory/eez Best Practices for Measuring Consequences: - Quantitative estimates are preferable, when available; they have the most utility from a mathematical standpoint. - If semi-quantitative scales are used, they should be defined in such a way such that they are measureable and based on objective criteria. - The U.S. Coast Guard National Maritime Strategic Risk Assessment (USCG NMSRA), UK National Risk Register, and Netherlands National Risk Assessment create semiquantitative scales for many of these categories using combinations of: Time duration of impact, Geographic extent of impact, Severity of impact 18

Example: Fatality Risk Figure NOTIONAL EXAMPLE Events ranked from highest to lowest Fatality Risk (based on the best estimate): C B A D E LEGEND Best Estimate Uncertainty Range Accidental/Human-Caused Adversarial Natural Hazard 19

HSNRC: From Analysis to Decisions Wide Data Net Models/Studies SMEs Understand continuum of risks in the current environment Thresholds Consequences Fatalities Injuries/Illness Economic Others Uncertainty Build off of existing risk assessments and models and develop a common approach to frequency/likelihood and consequence Low Risk Standout Risk Risk Profiles Relative Risks Standout Risks Synthesize heterogeneous information, apply common repeatable framework, to drive to a master understanding of the most significant risks to the Nation Strategy Research Agenda Communication Informs strategic planning, drives future research, facilitates communication of risk to the public 20

HSNRC and the Homeland Security Strategic Environment The HSNRC is a snapshot in time, but we must reflect changes in the future, such as trends. By including other analytic efforts, conclusions can: Clarify the risk picture and avoid blind-spots through qualitative systems analysis of risks Updated Threat Assessment Future Uncertainties Current Strategic Environment Place recent homeland security events in context HSNRC Comprehensive Risk Interdependencies, Causal Relationships Describe global dynamics and metatrends that are shaping our strategic environment Capture interdependencies and system relationships Identify key challenges and opportunities Overall Strategic Environment Key Insights 21

Additional Lessons Socialization, peer review, and verification/validation of methodology and results Big data, no data, and restricted data Risk communication Ultimately, analysts must appropriately scope and conduct timely and relevant analysis to support real-time decisionmaking, using the best available data, models, and results 22

Discussion and Questions DHS Policy, Office of Strategy, Planning, Analysis & Risk

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback