Speaker Dr Emma A Taylor, Lead System Safety Engineer, RSSB (Railway Safety and Standards Board)
Topic: Finding a Unified Approach to Safety and CyberSecurity: An Evolving Challenge
Overview: There is now a need for unified approach to the management of safety that takes into consideration safety risks resulting from cyber security threats. Although established standards exist for both, cybersecurity is explicitly excluded from ISO61508, and recent industry guidance provides a high-level framework but limited information on implementation. We believe that one reason for this is that safety-related hazards do not generally change on a daily basis but the same cannot be said for cyber security threats – defining a combined frequency scale and consequences applicable to both types of hazards presents a particular challenge. We review the existing cross-sector cyber security guidance, and present lessons learned from applying the rail industry’s Common Safety Method to UK rail industry’s cloud based Safety Management and Intelligence System. We also discuss whether other risk mapping methods such as GSN and STAMP might provide additional insight.
Dr Emma Taylor has worked in the Space, Oil and Gas and Rail industries since the late 1990s. During that time she has found herself solving a range of interesting problems, including how to protect spacecraft against space junk, designing offshore installations, as well as defining technical content for national and international standards.
Recent projects for RSSB’s stakeholders (who run the national rail network) include risk analysis to support emergency communications systems deployment (GSM-R OPH), roll out digital systems for safety critical information (the “Rule Book”) and updates to the industry standard for managing defective on train equipment (DOTE).
Dr Taylor is a Chartered Engineer, a Fellow of the IMechE and a Member of the Safety Reliability Society. She has a BA in Physics (University of Oxford), two Masters degrees (MSc Space Science from UCL and MSc Safety Engineering from the University of Aberdeen) and a PhD (University of Kent at Canterbury).
Further information and booking details for the CRA Risk Forum which will be held on 4th and 5th October 2017 at the De Vere Hotel, Cotswold Water Park, near Cirencester, UK can be found on CRA’s website crarisk.com.