Stefan Schauer, Stefan Rass, Sandra König, Klaus Steinnocher, Thomas Schaberreiter, & Gerald Quirchmayr. (2020). Cross-Domain Risk Analysis to Strengthen City Resilience: the ODYSSEUS Approach. In Amanda Hughes, Fiona McNeill, & Christopher W. Zobel (Eds.), ISCRAM 2020 Conference Proceedings – 17th International Conference on Information Systems for Crisis Response and Management (pp. 652–662). Blacksburg, VA (USA): Virginia Tech.
Abstract: In this article, we want to present the concept for a risk management approach to assess the condition of critical infrastructure networks within metropolitan areas, their interdependencies among each other and the potential cascading effects. In contrast to existing solutions, this concept aims at providing a holistic view on the variety of interconnected networks within a city and the complex dependencies among them. Therefore, stochastic models and simulations are integrated into risk management to improve the assessment of cascading effects and support decision makers in crisis situations. This holistic view will allow risk managers at the city administration as well as emergency organizations to understand the full consequences of an incident and plan mitigation actions accordingly. Additionally, the approach will help to further strengthen the resilience of the entire city as well as the individual critical infrastructures in crisis situations.
|
|
Andrew Marinik, Ludwig Gantner, Scott Fritz, & Sean Smith. (2020). Developing Performance Metrics of an Emergency Notification System. In Amanda Hughes, Fiona McNeill, & Christopher W. Zobel (Eds.), ISCRAM 2020 Conference Proceedings – 17th International Conference on Information Systems for Crisis Response and Management (pp. 663–668). Blacksburg, VA (USA): Virginia Tech.
Abstract: The use of emergency notification systems (ENS), or early warning systems, are not only common practice among Institutes of Higher Education (IHEs), but are required by law in the United States. The dramatic increase in use is matched by the increase in community expectation. This community expectation corresponding with societal shifts challenges Public Safety leaders to implement and maintain a broad and highly reliable ENS. Most Public Safety programs lack the internal resources to consistently assess system risk, reliability, and messaging validity of their ENS sufficient to match the required system performance. Virginia Tech Emergency Management is proposing an ENS evaluation system capable of supporting assessment of reliability and risk across the entire system through the lens of Socio-Technical Systems (STS) theory at a practitioner level. By organizing emergency notification/early warning systems through Human Subsystems, Technical Subsystems, and Task Design the practitioner can assess their system by performance and risk.
|
|
Alexander Staves, Harry Balderstone, Benjamin Green, Antonios Gouglidis, & David Hutchison. (2020). A Framework to Support ICS Cyber Incident Response and Recovery. In Amanda Hughes, Fiona McNeill, & Christopher W. Zobel (Eds.), ISCRAM 2020 Conference Proceedings – 17th International Conference on Information Systems for Crisis Response and Management (pp. 638–651). Blacksburg, VA (USA): Virginia Tech.
Abstract: During the past decade there has been a steady increase in cyber attacks targeting Critical National Infrastructure. In order to better protect against an ever-expanding threat landscape, governments, standards bodies, and a plethora of industry experts have produced relevant guidance for operators in response to incidents. However, in a context where safety, reliability, and availability are key, combined with the industrial nature of operational systems, advice on the right practice remains a challenge. This is further compounded by the volume of available guidance, raising questions on where operators should start, which guidance set should be followed, and how confidence in the adopted approach can be established. In this paper, an analysis of existing guidance with a focus on cyber incident response and recovery is provided. From this, a work in progress framework is posited, to better support operators in the development of response and recovery operations.
|
|