Jackson Jones

The September session of ‘A Series of Queries’ is coming up on Friday, 29 September, and we’d love to see you there. These sessions are conducted by Susan Jaques and the Risk Engineering Body of Knowledge (REBoK) Community of Practice. The September question – What is SFAIRP, ALARP, AFAP? These acronyms are used frequently in risk management. Some are completely wedded to a particular definition, and others are less particular about the nuances between the interpretations. This question will probably raise more questions than clear answers. And that’s why we’re hosting these sessions – to allow discussion and debate. As has been said, “Discussion is good, perhaps essential, for deepening your understanding. But if you’re looking for clear answers, discussions can just be confusing.” We don’t aim to confuse you about SFAIRP, ALARP and AFAP, but we might. Hope to see you there! Meeting details: Friday, 29 September 2023 12:00 PM | 1 hour | (UTC+10:00) Canberra, Melbourne, Sydney ** No registration is required. Just join in at the start time ** Join via URL https://engineersaustralia.webex.com/engineersaustralia/j.php?MTID=m2810c52ed040adffffa17a9ba6246e25 Meeting number: 2650 814 8598 Password: xeJ2ub Join by video system Dial 26508148598@engineersaustralia.webex.com You can also dial 210.4.202.4 and enter your meeting number. Join by phone 1-800-517-287 Australia Toll Free +61-2-9338-2221 Australia Toll Access code: 265 081 48598 How the session works Susan will provide a brief introduction to the topic and some framing of the question depending on the audience, and then some short pre-arranged answers by those who have offered in advance. Then it will shift to a facilitated discussion, Q&A, and opportunity for participants to present views and ideas. This is not a webinar where attendees are hidden from each other with a one-way presentation from an expert. Rather, it’s meant to be a round-table, idea-sharing, meeting style, where participants can see and hear each other. We hope you’ll come along to participate. We will be encouraging cameras on; but you can come to listen only. This is meant to be a place for young engineers and professionals to think, organise, and then verbalise those thoughts, opinions, and views. We will be encouraging input from attendees, though we won’t force it. Series of Queries schedule: Friday, September 29th 12:00pm AEST – What is SFAIRP, ALARP and AFAP? Monday, October 30th, 2:00pm AEDT – Where does Insurance fit in with risk engineering? Thursday, November 30th (TBA) Previous Series of Queries sessions https://rebok.engineersaustralia.org.au/series-of-queries.html/ July 2023: Risk Engineering vs Risk Management August 2023: What does a Risk Engineer do?

The REBoK steering committee is continuing with its A Series of Queries to help risk practitioners, and those new to risk management, better understand risk engineering. We want to provide an opportunity to discuss and query our knowledge. The first A Series of Queries session, held in July, covered the topic of “Risk Management vs Risk Engineering”. It was a good session with over 20 people attending and good debates and discussions about the topic. The series is facilitated by long-time REBoK member, and former chair of the Steering Committee, independent consultant Susan Jaques of Sage Consulting Solutions. Susan has a background in infrastructure engineering, risk management, quality management and engineering skills development. Since her first student job evaluating risk estimation calculation methodologies, Susan has carried risk engineering throughout her career, and therefore has been very aware of the theory and practice of risk engineering. REBoK's A Series of Queries is aimed at young engineers, engineers new to risk, people who have risk management as one of their responsibilities, and anyone wanting to understand risk engineering at a high level. This series has a risk engineering focus, and so we will be looking at engineering solutions to manage risk on engineering projects, designs, operations, and on meeting safety requirements. The format: Susan will provide a brief introduction to the topic and some framing of the question depending on the audience, and then some short pre-arranged answers by those who have offered in advance. Then it will shift to a facilitated discussion, Q&A, and opportunity for participants to present views and ideas. This is not a webinar where attendees are hidden from each other with a one-way presentation from an expert. Rather, it’s meant to be a round-table, idea-sharing, meeting style, where participants can see and hear each other. We hope you’ll come along to participate. We will be encouraging cameras on; but you can come to listen only. This is meant to be a place for young engineers and professionals to think, organise, and then verbalise those thoughts, opinions, and views. We will be encouraging input from attendees, though we won’t force it. Hope to see you there! Series of Queries schedule: Thursday August 31st: What does a Risk Engineer do? Friday September 29th: What is SFAIRP, ALARP and AFAP? Tuesday October 31st: Where does Insurance fit in with risk engineering? Thursday November 30th: TBA The August question is: What does a Risk Engineer do? An alternative question might be: when I’m doing my job, when am I ‘doing’ risk engineering? This question about what a risk engineer “does” comes up often, or rather, it probably goes through people’s minds even if it isn’t spoken out loud. We’ll pose a few ideas about what constitutes the role of a risk engineer. Like risk itself, we may raise more questions than answers, but by having these discussions, we will all learn from the variety of views out there.

Webinar overview Digital transformation has been high on the agenda since the pandemic and many organisations have tried and failed to implement a digital strategy that works. One of the key challenges in a digital transformation is often not the software itself, but the data and the integration. Many projects define their own standards and implement solutions differently. The overall environment is similar across many projects where data is heavily siloed, integration is lacking, and a whole lot of different tools are in play. The result is often that there is no real insight into what is happening on a project other than what sits in each of the disconnected silos. Rather than burying information in Excel spreadsheets and WhatsApp, Luke will consider an integrated ecosystem approach for managing the data you need to collect and report on a daily basis. Learning outcomes In this presentation you will: Increase visibility across your projects. Understand the data formats and standards on your projects. Define a best practice workflow, form and data structure that can be implemented as a standard. Streamline the reporting process to support project insights. Integrate with other tools that are core to your business – there is no one solution to rule them all. About the speaker Luke Allen Managing Director, EviFile Luke has been developing web-based SaaS solutions for over 25 years and joined eviFile as MD from KPMG, in 2018. Luke leads the continued technical development of eviFile as well as the day-to-day operations of the business. Luke has been heavily involved in digitising major engineering and construction programmes in the UK and internationally since joining eviFile, leading the product and implementation teams. Covering sectors such as Rail, Utilities, Power and Renewable Energy - eviFile delivers a complete digital solution for engineering assurance and project management.

Overview This webinar will provide an overview of third party risk management what it is and why it is becoming increasingly important regardless of industry. We will discuss the risk landscape, considerations when setting up a program and walkthrough the vendor management lifecycle. This workshop will also provide an overview of the financial sector regulatory landscape and upcoming changes. This workshop would be of interest for those who are responsible for third party risk management and would like to obtain an understanding of key aspects of a third party program. This will be particularly relevant to information security teams, risk teams and procurement teams. Learning outcomes An overview of third party risk management. Different types of risk dimensions to consider. Impact of COVID. The financial sector regulatory landscape. The vendor management lifecycle. Importance of end-to-end governance. Types of third party risk assessments About the speaker Claudia Warwar (Cybersecurity and Digital Trust Director, PwC) Claudia has over 20 years of experience in Cybersecurity with a background in application development, Identity and Risk Management. Her experience includes managing various teams of Security Consultants, Architects and Pen testers. She has worked with large and small clients and address the challenges of implementing fit for purpose security uplift programs to reduce risk to the business. She has worked across industries and lately is focusing on the Financial Sector.

The REBoK steering committee is presenting A Series of Queries to help risk practitioners, and those new to risk management, better understand risk engineering. We want to provide an opportunity to discuss and query our knowledge. So, every month or so, we will pose a question to REBoK members, and discuss the topic that question raises. The series will be facilitated by long-time REBoK member, and former chair of the Steering Committee, independent consultant Susan Jaques of Sage Consulting Solutions. Susan has a background in infrastructure engineering, risk management, quality management and engineering skills development. Since her first student job evaluating risk estimation calculation methodologies, Susan has carried risk engineering throughout her career, and therefore has been very aware of the theory and practice of risk engineering. REBoK's A Series of Queries is aimed at young engineers, engineers new to risk, people who have risk management as one of their responsibilities, and anyone wanting to understand risk engineering at a high level. This series has a risk engineering focus, and so we will be looking at engineering solutions to manage risk on engineering projects, designs, operations, and on meeting safety requirements. The format: Susan will provide a brief introduction to the topic and some framing of the question depending on the audience, and then some short pre-arranged answers by those who have offered in advance. Then it will shift to a facilitated discussion, Q&A, and opportunity for participants to present views and ideas. This is not a webinar where attendees are hidden from each other with a one-way presentation from an expert. Rather, this is a round-table, idea-sharing, meeting style, where participants can see and hear each other. We hope you’ll come along to participate. We will be encouraging cameras on; but you can come to listen only. This is meant to be a place for young engineers and professionals to think, organise, and then verbalise those thoughts, opinions, and views. We will be encouraging input from attendees, though we won’t force it. Hope to see you there! Proposed Series of Queries: Monday July 31st: Risk Engineering and Risk Management - is there a difference? Thursday August 31st: Where does Insurance fit in with risk engineering? Friday September 29th: What does a Risk Engineer do? Tuesday October 31st: TBA Thursday November 30th: TBA The July question is: Risk Engineering and Risk Management - is there a difference? An alternative question might be: Which comes first, Risk Management or Risk Engineering? This question came about when the REBoK team was trying to categorise topics into a list, and there was some discussion about the two concepts of Risk Engineering and Risk Management. Like risk itself, we may raise more questions than answers, but by having these discussions, we will all learn from the variety of views out there.

A Risk Engineering Society hybrid event This presentation examines how complex systems thinking can be adopted by engineers to better understand and solve the problems of the future. Complex systems are systems that exhibit complex behaviour - they are non-linear with respect to cause and effect, they are open systems that interact with their environment, and they are adaptive and produce emergent behaviour – behaviour that was not designed into the system in the first place. Adopting a complex systems approach is not simply a new tool for engineers, it's an altogether different model for understanding the world. Event program Hybrid event: Hawken Auditorium QLD Arrival & registration – 5:30 – 6:00 PM AEST (Brisbane time) Presentation - 06:00 – 07:00 PM AEST (Brisbane time) Webinar Webinar Presentation - 7:00 – 8:00 PM AEDT (Sydney time) / 6:00 – 07:00 PM AEST (Brisbane time) Speaker Dr Sean Brady Brady Heywood Pty Ltd, Managing Director Sean is a forensic engineer and the managing director of Brady Heywood. He works with business, government and the legal sector to understand and resolve complex issues that typically require a whole system approach. Sean has acted as an expert witness in numerous proceedings involving many constructed facilities. He is a Chartered Professional Engineer, a Fellow of Engineers Australia, a director of the Society of Construction Law Australia and a member of the Singapore International Mediation Centre’s Panel of Experts. In 2020 he completed the Brady Review, an investigation into the causes of fatalities in the mining industry in Queensland. This review analysed 20 years of incident and fatality information, was data-driven and culminated in 11 recommendations for both industry and the regulator on how to lower the fatality and incident rate. He also speaks, podcasts, and writes on failure, human behaviour, data analytics and engineering disasters.

Changing Your Delivery Strategy (risk management implications for infrastructure projects) During the development and delivery of large-scale infrastructure projects it is sometimes necessary to make material changes to the delivery strategy. Factors potentially influencing such a change include market capacity issues (lack of competition), interface complexity issues (technical, organisational, contractual) and project budget pressures (tender pricing > budget). Key questions for discussion by the panel include: Recent major project delivery strategy changes and the key risks that changed as a result. How interface risks may be affected, including creation of new or additional interface risks. Potential impacts on project budget despite the project scope remaining unchanged. Techniques for evaluating risks under different delivery strategy changes. About the panel John McLuckie: Chairman, Valorem Advisory John has over 40 years’ experience in key leadership roles on large and complex infrastructure projects, covering project definition, business case, procurement, design, supply, construction, commissioning, maintenance and operations. Kay Salvair Smith: Partner, Minter Ellison Kay leads Minter Ellison's Infrastructure Consulting team and for more than 20 years has partnered with government and private clients to deliver commercial and technical infrastructure solutions in the Australian market. Dr Mike Rollo: Director, Waterman Burns & Associates With over 35 years’ experience in engineering construction and property development, Mike was the Chief Risk Officer for Leighton Holdings/CIMIC Group from 2012 to 2017, during which time he oversaw the successful tendering and delivery of many of Australia’s largest infrastructure projects. TICKETS (incl. GST) EA Members, RES Members and Students: Complimentary Non-members: $30 ENQUIRIES Email: res@engineersaustralia.org.au RES Event Flyer - Changing Delivery Strategies 7 October 2021.pdf

Criminal Manslaughter – How Not To Do It An Engineering Education Australia Virtual Workshop Industrial manslaughter is being written into workplace health and safety legislation. Serious consequences—including fines and gaol time—may arise when a senior decision-maker fails to put reasonable precautions in place and someone dies. Delivered by experienced due diligence engineers, this course explains how the new provisions in WHS legislation require engineers and organisations to move from hazard-based risk management to a precautionary approach. Using practicable examples and relevant court decisions you’ll cover: how to demonstrate safety due diligence under the WHS/OHS legislation how the SFAIRP (so far as is reasonably practicable) concept is built into legislation the difference between statute and common law and how this benefits defensibility the hierarchy of control as understood and used in court: elimination, precautions, mitigations the legal loss-of-control point (aligning the laws of man and nature) how to demonstrate the management of the laws of nature in a way that satisfies the laws of man. The course is divided into 4 one-hour interactive sessions. You'll have access to expert advisers, so you can bring your questions to the Q&A part of each session. By the end of the course, you'll understand the critical importance of safety due diligence—not just compliance—to avoid criminal negligence. You'll also learn how to make defensible decisions using recognised legal terminology and processes. Learning outcomes Legal duties of directors to show due diligence under WHS and other legislation Due diligence under common law Risk management techniques to establish due diligence, and when to use them Why regulatory compliance does not equal due diligence, especially for safety matters How to demonstrate the laws of nature prior to the laws of man How to use threat-barrier diagrams to demonstrate safety due diligence

Practical Risk Assessment Aspects of Machine Safety Standards by Roger Lim About the webinar AS4024.1303 provides several practical guidance and examples of methods. AS4024.1502 and AS4024.1503 provides risk assessment methods for the assessment of safety related parts of control systems. Key takeaways 1. Various risk assessment methods for the general assessments. 2. Specific risk assessment method for the safety related parts of control systems. About the speaker Roger Lim is a professional engineer with post graduate qualifications in robotics. He has 40 years experience in the OH&S industry, including 15 years as a Senior Engineer at the Victorian WorkCover Authority and its predecessors. He has been a member of several Australian Standards committees and represents Engineers Australia in the committee responsible for the drafting of AS 4024 Safety of Machinery series of standards.

*** EVENT POSTPONED - WE'LL UPDATE THIS PAGE ONCE A NEW DATE HAS BEEN CONFIRMED *** Mapping Systems Resilience Presented by David Skegg Description Although resilience often is defined in the context of how a “system” behaves to recover from an abnormal circumstance, resilient performance is more than that. A system is said to perform in a manner that is resilient when it can sustain required operations under both expected and unexpected conditions by adjusting its functions prior to, or following events (changes, disturbances, and opportunities). Resilience engineering (RE) looks for ways to enhance the ability of systems to succeed under varying conditions. Resilience is not a single quality as such, and a system cannot be typified as “resilient” nor is resilience a measurable quality as such – it is better to describe the system performance as being resilient in a defined context. Key takeaways Gain a better understanding of resilience Understand how to assess resilience potential Developing a model of resilience potential inputs About the speaker David is recently semi-retired, previously having held a number of affiliations, including being a Bench Justice of the Peace in Tasmania, a Member, International Commission on Occupational Health (ICOH), a Fellow of the Australian Institute of Company Directors, and a Member of the American Society of Safety Engineers. David holds a Master of Safety Science, and is Chartered Fellow and Life Member of the Australian Institute of Health and Safety. He has chaired a number of organisations, and is a former President of the historical Royal Hobart Regatta Association. *** EVENT POSTPONED - WE'LL UPDATE THIS PAGE ONCE A NEW DATE HAS BEEN CONFIRMED ***

Social Psychology of Risk Speaker Dr Tristan Casey Description It ain’t safe until we all think it’s safe: Understanding the social construction of safety, and the role of culture in shaping it. On the surface, safety seems straightforward: the reduction of risk to acceptable levels. Yet, look a little closer and the subjectivity of safety becomes apparent. Who gets to decide what is risky and what is not? What level is ‘acceptable’ when it comes to safety? In this presentation, Dr Tristan Casey will explore the social psychology of safety with a focus on group-level processes like organisational culture. He will briefly chart the evolution and ongoing controversy surrounding the concept of safety, pointing out how dominant societal beliefs have shaped and moulded the nature of safety itself, and influenced both science and practice. In a modern-day world that is filled with competing ideas about what safety is and isn’t, Dr Casey will chart a clear course through this confusion by identifying common threads across competing models, theories, and ideas. Emphasis will be placed on translating academic concepts into practical implications. About the speaker Dr Tristan Casey is a Lecturer at Griffith University’s Safety Science Innovation Lab and co-founder of ‘The Culture Effect’—a collaboration between Griffith and QUT that provides commercial research services to industry. Tristan is an experienced and endorsed Organisational Psychologist with extensive experience in work health and safety. He has an interest in teamwork, leadership and organizational culture. Tristan teaches into the Graduate Certificate of Safety Leadership and Bachelor of Social Science at Griffith University. Recently, he completed his second doctorate—this time in safety leadership. Tristan is currently working on research around the management of safety amid COVID19, psychological safety, and safety climate.

Risk Management for Major Infrastructure Projects Speaker Taylor Burns Description Key processes necessary to identify and manage risks on complex infrastructure projects have been developed over the last 20 years in order to implement risk-based approaches for better cost and schedule estimation. Cost and schedule, however, were mostly treated separately instead of integrating them into one model. This integration including the consideration of uncertainty is highly relevant as schedule delays are very often the root cause for severe cost overruns. This presentation describes an integrated probabilistic cost and schedule model. This along with the consideration of uncertainty in quantities, rates and timeframes helps to provide transparency on complex infrastructure projects. The application is based on a combination of two practice-proven approaches – the RIAAT (Risk Administration and Analysis Tool) and the Cost Estimation and Validation Process CEVP® (Reilly et al. 2004/Washington State Department of Transportation), creating a powerful tool for management of complex risk environments. About the speaker Taylor Burns has a bachelor’s degree in civil engineering from University of Technology, Sydney and has recently become the Australian representative for the Austrian based company, RiskConsult. Previously working for Public Works Advisory as a Project Manager and as a Regional Engineering Services Functional Area Coordination for NSW Engineering Emergency Management. Taylor previously took a gap year to work in Europe in and in doing so developed an interest in probabilistic cost and schedule risk management for large infrastructure projects.