VAA (Vulnerability Assessment and Analysis) is a decision support methodology that identifies and prioritizes vulnerabilities in critical equipment and systems to deliver safe and reliable operations. It works by conducting facilitated brainstorming sessions and interviews with engineering and operations staff to produce a substantial amount of information. This information is then analyzed, categorized, and prioritized to establish a list of vulnerabilities for subsequent study using methods like FMEA, fault trees, and SIL analysis. The purpose is to validate risks identified in the initial assessment and obtain more detailed information to inform risk reduction actions. VAA can be applied to any process during any phase and provides a comprehensive final report documenting the identified vulnerabilities and prioritized action plan.
14. Classical Hazop
methodology
Team of senior
representatives
e.g. design,
project, operating
staff
Understanding of
the process
under study,
condition of
equipment &
consequences of
failure
VAA is a blend
17. Pre-Assessment
- Identifying the VAA objectives
- Determining measures of success
- Finalizing what elements of the
methodology will be included
- Ensuring access to information
- Developing an assessment schedule
19. Possible objectives could include:
- Identify all critical vulnerabilities
- Identify and rank all key assets based on
a common “vulnerability maturity
matrix”
- Develop the business case for making
vulnerability reduction investments
- Enhance awareness / make VAA an
integral part of business strategy
22. Facilitated Assessment and Analysis
VAA starts with the
fullest description
of the system /
process and then
questions every
part of it
23. Post Assessment
- Ranking vulnerabilities by risk category
- Prioritizing assessment recommendations
- Developing an action plan
- Capturing lessons learned and best
practices
- Conducting periodic assessments to
report progress
27. Deliverables
A typical report may include:
- Visual representation of vulnerabilities
and criticalities
- Identification of vulnerabilities by
system or area
- Vulnerability by category
- Prioritized action list
- Action by type
28.
29.
30.
31. Summary
VAA is an over-
arching
methodology
designed to expose
and discover
vulnerabilities across
a wide segment of
possible impacts
32. Summary
FMEA, Risk
Assessment, and
RCM have a
purpose
But that purpose is
best served after the
VAA
When VAA
comes 1st it
delivers focus
more broadly on
consequences
from all parts of
the system or
process
33. About ARMS Reliability
Since 1995, ARMS Reliability has been at the forefront
of proactive asset management strategies for a range
of blue chip companies throughout the world
Through a unique blend of consulting, education and
software solutions, we enable our clients to make
better decisions to improve asset reliability.
www.armsreliability.com