1 / 19

Enhanced Security Through Human Error Awareness

ESTHER. Enhanced Security Through Human Error Awareness. PNNL-SA-42136 . Event. Tracking a Security Event. A Security Event Occurs. Event. Identify & Categorize. Tracking a Security Event. It Is Identified and Categorized. Event. Preliminary Report to DOE. Tracking a Security Event.

siusan
Download Presentation

Enhanced Security Through Human Error Awareness

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. ESTHER Enhanced Security Through Human Error Awareness PNNL-SA-42136

  2. Event Tracking aSecurity Event A Security Event Occurs

  3. Event Identify & Categorize Tracking aSecurity Event It Is Identified and Categorized

  4. Event PreliminaryReport to DOE Tracking aSecurity Event Identify & Categorize A Preliminary Report to DOE Is Made

  5. Event FullInquiry Tracking aSecurity Event Identify & Categorize A Full Inquiry Is Begun PreliminaryReport to DOE

  6. Event AssessImpact TakeMitigativeAction Tracking aSecurity Event Identify & Categorize Impact Is Assessed, Mitigation Begun PreliminaryReport to DOE FullInquiry

  7. Event Assess DirectCause &Contributions Tracking aSecurity Event Direct Cause andContributing Factors Are Identified Identify & Categorize PreliminaryReport to DOE FullInquiry AssessImpact TakeMitigativeAction

  8. Event Document Non Incidents & IMI 4’s Internally DocumentIMI 1, 2, 3via ITAC Tracking aSecurity Event Internal, and… External (ITAC) Documentation Identify & Categorize PreliminaryReport to DOE Assess DirectCause &Contributions FullInquiry AssessImpact TakeMitigativeAction

  9. Event Develop Corrective Actions AssessPatterns & Trends Tracking aSecurity Event Resulting in CorrectiveActions and… …Assessmentof Patternsand Trends Identify & Categorize PreliminaryReport to DOE Document Non Incidents & IMI 4’s Internally Assess DirectCause &Contributions FullInquiry AssessImpact DocumentIMI 1, 2, 3via ITAC TakeMitigativeAction

  10. Event Prevent Recurrence Tracking aSecurity Event Identify & Categorize Corrective Actions to Prevent Recurrence PreliminaryReport to DOE Document Non Incidents & IMI 4’s Internally Develop Corrective Actions Assess DirectCause &Contributions FullInquiry AssessImpact DocumentIMI 1, 2, 3via ITAC AssessPatterns & Trends TakeMitigativeAction

  11. Event Distribute Lessons Learned Tracking aSecurity Event Identify & Categorize Lessons Learned Are Distributed in DOE PreliminaryReport to DOE Document Non Incidents & IMI 4’s Internally Develop Corrective Actions Prevent Recurrence Assess DirectCause &Contributions FullInquiry AssessImpact DocumentIMI 1, 2, 3via ITAC AssessPatterns & Trends TakeMitigativeAction

  12. Event PreventSimilar Occurrences Elsewhere Tracking aSecurity Event …to Prevent the Likelihood of Similar Occurrences Elsewhere Identify & Categorize PreliminaryReport to DOE Document Non Incidents & IMI 4’s Internally Develop Corrective Actions Prevent Recurrence Assess DirectCause &Contributions FullInquiry AssessImpact DocumentIMI 1, 2, 3via ITAC AssessPatterns & Trends Distribute Lessons Learned TakeMitigativeAction

  13. Event You Are Here PreventSimilar Occurrences Elsewhere Tracking aSecurity Event Your role in theincident inquiry process is acritical link in thechain of incident reporting, inquiry, documentation and analysis that supports the goal of reducing the number of security incidents across the DOE complex. Identify & Categorize PreliminaryReport to DOE Document Non Incidents & IMI 4’s Internally Develop Corrective Actions Prevent Recurrence Assess DirectCause &Contributions FullInquiry AssessImpact DocumentIMI 1, 2, 3via ITAC AssessPatterns & Trends Distribute Lessons Learned TakeMitigativeAction

  14. Tracking aSecurity Event Event Reporting Identify & Categorize PreliminaryReport to DOE You Are Here Document Non Incidents & IMI 4’s Internally Develop Corrective Actions Prevent Recurrence Assess DirectCause &Contributions FullInquiry AssessImpact DocumentIMI 1, 2, 3via ITAC AssessPatterns & Trends Distribute Lessons Learned TakeMitigativeAction PreventSimilar Occurrences Elsewhere

  15. Tracking aSecurity Event Event Reporting Identify & Categorize PreliminaryReport to DOE You Are Here Document Non Incidents & IMI 4’s Internally Develop Corrective Actions Prevent Recurrence Assess DirectCause &Contributions FullInquiry Inquiry AssessImpact DocumentIMI 1, 2, 3via ITAC AssessPatterns & Trends Distribute Lessons Learned TakeMitigativeAction PreventSimilar Occurrences Elsewhere

  16. Tracking aSecurity Event Event Reporting Identify & Categorize PreliminaryReport to DOE You Are Here Document Non Incidents & IMI 4’s Internally Develop Corrective Actions Prevent Recurrence Documentation Assess DirectCause &Contributions FullInquiry Inquiry AssessImpact DocumentIMI 1, 2, 3via ITAC AssessPatterns & Trends Distribute Lessons Learned TakeMitigativeAction Prevent Similar Occurrences Elsewhere

  17. Tracking aSecurity Event Event Reporting Identify & Categorize PreliminaryReport to DOE You Are Here Analysis Document Non Incidents & IMI 4’s Internally Develop Corrective Actions Prevent Recurrence Documentation Assess DirectCause &Contributions FullInquiry Inquiry AssessImpact DocumentIMI 1, 2, 3via ITAC AssessPatterns & Trends Distribute Lessons Learned TakeMitigativeAction PreventSimilar Occurrences Elsewhere

  18. Tracking aSecurity Event Event Reporting Identify & Categorize PreliminaryReport to DOE You Are Here Analysis Document Non Incidents & IMI 4’s Internally Develop Corrective Actions Prevent Recurrence Documentation Assess DirectCause &Contributions FullInquiry Inquiry AssessImpact DocumentIMI 1, 2, 3via ITAC AssessPatterns & Trends Distribute Lessons Learned TakeMitigativeAction Lessons Learned PreventSimilar Occurrences Elsewhere

  19. You Are Here Reduced Likelihood of Security Incidents Tracking aSecurity Event ESTHER:Enhanced Security Through Human Error Reduction Event Identify & Categorize PreliminaryReport to DOE Document Non Incidents & IMI 4’s Internally Develop Corrective Actions Prevent Recurrence Assess DirectCause &Contributions FullInquiry AssessImpact DocumentIMI 1, 2, 3via ITAC AssessPatterns & Trends Distribute Lessons Learned TakeMitigativeAction PreventSimilar Occurrences Elsewhere

More Related