Systems Theoretic Accident Model and Process (STAMP) applied to a Royal Navy Hawk jet missile simulation exercise

Abstract The Royal Navy uses Hawk jets to simulate sea-skimming missile attacks against vessels as part of their training regulations. To best achieve these goals, pilots of the Hawk are required to fly at approximately 50 feet above sea level to accurately mimic the flight path of a missile. Despite this need the Hawk is not equipped with a radar altimeter and instead relies upon pilot skill to ensure the safe completion of the operation. Incidents whereby the Hawk jets have struck the water are however recorded, risking pilot safety. This paper explores the Hawk missile simulation task using a Systems Theoretic Accident Model and Process (STAMP) and its corresponding hazard analysis Systems-Theoretic Process Analysis (STPA) methodology to map the key stakeholders within this operation. In doing so, the method explores areas of potential risk in the system and recommends how overall systemic safety of the operation can be improved.

[1]  E. Salas,et al.  Using Simulation-Based Training to Improve Patient Safety : What Does It Take ? Human Factors Engineering , 2005 .

[2]  Neville A Stanton,et al.  Beyond human error taxonomies in assessment of risk in sociotechnical systems: a new paradigm with the EAST ‘broken-links’ approach , 2017, Ergonomics.

[3]  Neville A. Stanton,et al.  Safety in System-of-Systems: ten key challenges , 2014 .

[4]  Patrick Waterson,et al.  Systems thinking, the Swiss Cheese Model and accident analysis: a comparative systemic analysis of the Grayrigg train derailment using the ATSB, AcciMap and STAMP models. , 2014, Accident; analysis and prevention.

[5]  D. E. Embrey,et al.  SHERPA: A systematic human error reduction and prediction approach , 2013 .

[6]  Neville A. Stanton,et al.  Systems Theoretic Accident Model and Process (STAMP) safety modelling applied to an aircraft rapid decompression event , 2017 .

[7]  E. Hollnagel FRAM: The Functional Resonance Analysis Method: Modelling Complex Socio-technical Systems , 2012 .

[8]  Richard E. Barlow Fault Tree Analysis , 2006 .

[9]  Paul M Salmon,et al.  Who is in control of road safety? A STAMP control structure analysis of the road transport system in Queensland, Australia. , 2016, Accident; analysis and prevention.

[10]  Nancy G. Leveson,et al.  A new accident model for engineering safer systems , 2004 .

[11]  Guy H. Walker,et al.  Systems Thinking in Practice , 2018 .

[12]  Steven J Pereira,et al.  A System-Theoretic Hazard Analysis Methodology for a Non-advocate Safety Assessment of the Ballistic Missile Defense System , 2006 .

[13]  Neville A Stanton,et al.  Fitting methods to paradigms: are ergonomics methods fit for systems thinking? , 2017, Ergonomics.

[14]  Neville A Stanton,et al.  Quantum ergonomics: shifting the paradigm of the systems agenda , 2017, Ergonomics.

[15]  Nancy G. Leveson,et al.  Engineering a Safer World: Systems Thinking Applied to Safety , 2012 .

[16]  A. D. Swain,et al.  Handbook of human-reliability analysis with emphasis on nuclear power plant applications. Final report , 1983 .

[17]  Jens Rasmussen,et al.  Risk management in a dynamic society: a modelling problem , 1997 .

[18]  Paul M. Salmon,et al.  Systems-based accident analysis methods: A comparison of Accimap, HFACS, and STAMP , 2012 .

[19]  Neville A. Stanton,et al.  Modelling Command and Control: Event Analysis of Systemic Teamwork , 2008 .