Upgrade to Pro — share decks privately, control downloads, hide ads and more …

DevOpsPorto Meetup9: There is no such thing as ...

DevOpsPorto
October 14, 2017
Technology
0
160

DevOpsPorto Meetup9: There is no such thing as human error by João Miranda

Talk delivered by João Miranda

DevOpsPorto

October 14, 2017
Tweet

More Decks by DevOpsPorto

See All by DevOpsPorto
DevOpsPorto Meetup 38: Intro to FastAPI by Sebastián Ramírez
devopsporto
1
210
DevOpsPorto Meetup 38: Using cutting-edge open-source technologies to build one of the biggest industrial Data Lake of the World by Allan Sene
devopsporto
0
100
DevOpsPorto Meetup 37: Why averages lie by Filipe Oliveira
devopsporto
0
140
DevOpsPorto Meetup 36: Computing and Operations at CERN: From Physical HW to Virtualization and Containers by Ricardo Rocha
devopsporto
0
150
DevOpsPorto Meetup 35: Turbocharging Azure DevOps with Octopus Deploy by Derek Campbell
devopsporto
0
150
DevOpsPorto Meetup 34: Freelance and Remote - Is it possible in DevOps
devopsporto
0
110
DevOpsPorto Meetup 33: How DevOps supported La Redoute reinvention by Antoine Craske
devopsporto
0
200
K8s in AWS: Europe, US and The Great Wall of China
devopsporto
0
150
DevOpsPorto Meetup 31: Metrics, context driven management by Alexandre Martins
devopsporto
0
160

Other Decks in Technology

See All in Technology
B2B SaaS × AI機能開発 〜テナント分離のパターン解説〜 / B2B SaaS x AI function development - Explanation of tenant separation pattern
oztick139
2
220
マルチプロダクトな開発組織で 「開発生産性」に向き合うために試みたこと / Improving Multi-Product Dev Productivity
sugamasao
1
300
New Relicを活用したSREの最初のステップ / NRUG OKINAWA VOL.3
isaoshimizu
2
570
B2B SaaSから見た最近のC#/.NETの進化
sansantech
PRO
0
670
The Rise of LLMOps
asei
5
1.2k
第1回 国土交通省 データコンペ参加者向け勉強会③ - Snowflake x estie編 -
estie
0
120
いざ、BSC討伐の旅
nikinusu
2
780
AWS Lambdaと歩んだ“サーバーレス”と今後 #lambda_10years
yoshidashingo
1
170
テストコード品質を高めるためにMutation Testingライブラリ・Strykerを実戦導入してみた話
ysknsid25
7
2.6k
エンジニア人生の拡張性を高める 「探索型キャリア設計」の提案
tenshoku_draft
1
120
Security-JAWS【第35回】勉強会クラウドにおけるマルウェアやコンテンツ改ざんへの対策
4su_para
0
170
信頼性に挑む中で拡張できる・得られる1人のスキルセットとは?
ken5scal
2
530

Featured

See All Featured
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
126
18k
Imperfection Machines: The Place of Print at Facebook
scottboms
265
13k
Visualization
eitanlees
145
15k
Navigating Team Friction
lara
183
14k
For a Future-Friendly Web
brad_frost
175
9.4k
Building a Scalable Design System with Sketch
lauravandoore
459
33k
Reflections from 52 weeks, 52 projects
jeffersonlam
346
20k
GraphQLとの向き合い方2022年版
quramy
43
13k
Fireside Chat
paigeccino
34
3k
BBQ
matthewcrist
85
9.3k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
25
1.8k
Principles of Awesome APIs and How to Build Them.
keavy
126
17k

Transcript

  1. Human Error There is no such things as...

  2. Ego Self-Massage 17 years in the IT world: developer, scrum

    master, ALM team lead, agile coach, solution architect, engineering manager Manages (huh... tries to cope with) 10 Scrum teams Co-organizes DevOps Lisbon meetup Loves Software Engineering

  3. Favourite journalist question after an accident?

  4. “Was it a human or a technical error?”

  5. “Employing simplicity thinking and linear logic, the official findings and

    the judicial rulings determined that the train driver was “exclusively” responsible for the crash.”* * Disaster complexity and the Santiago de Compostela train derailment

  6. Amazon’s outage “Amazon’s massive AWS outage was caused by human

    error. One incorrect command and the whole internet suffers.” Recode. March 2, 2017

  7. “During the deployment of the new code, however, one of

    Knight’s technicians did not copy the new code to one of the eight SMARS computer servers. Knight did not have a second technician review this deployment (...)” Knightmare: A DevOps Cautionary Tale Knight Capital Loses $440 Million in 30 Minutes

  8. Consumer credit reporting agency. Info on 800 million consumers.

  9. Hackers exposed the Social Security numbers, drivers licenses and other

    sensitive info of 143 million customers.

  10. … yup… you’ve guessed it...

  11. “Former Equifax CEO says breach boiled down to one person

    not doing their job.” https://techcrunch.com/2017/10/03/former-equifax-ceo-says-breach-boiled-down-to-one-person-not-doing-their-job/

  12. “It’s well established that accidents cannot be attributed to a

    single cause or (...) a single individual” Industrial Accident Prevention, H.W. Heinrich, Dan Petersen, Nestor Roos, 1980 (5th edition), McGraw-Hill Book Company (ISBN 0-07-028061-4)

  13. Coping With Complexity Humans are a feature of complex systems.

    They solve the most complex issues (not computers), but they also have some blind spots.

  14. Cognitive Demands of a Domain • Dynamism • Number of

    parts and extensiveness of its interconnections • Uncertainty • Risk A domain is complex if high in all of these dimensions. * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  15. Failure to Adapt to New Events People may get fixated

    on initial assessments. * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  16. “…[people] have difficulty in dealing with exponential developments (hard to

    imagine how fast things can change, or accelerate).” Dietrich Dörner, “On The Difficulties People Have In Dealing With Complexity” (1980), via John Allspaw, “Resilience Engineering Part II: Lenses” (2012)

  17. Failure to Use External Guidance to Direct Focus E.g.: Start

    treating a cause before treating more pressing consequences. * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  18. Failures of Prospective Memory Forgetting to recall an intention for

    some future point in time. * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  19. Treating Interconnected Events as Independent E.g.: Failing to consider how

    a recently deployed change to the Users API may be causing the Check-out process to fail. * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  20. “…[people] tend to think in causal series as opposed to

    causal nets (A, therefore B) -> (A and B, therefore C and D, therefore E and A and F)” Dietrich Dörner, “On The Difficulties People Have In Dealing With Complexity” (1980), via John Allspaw, “Resilience Engineering Part II: Lenses” (2012)

  21. Over Reliance on Familiar Signs “The site is so slow.

    It must be the database again.” * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  22. • Human error is cause of failure • Engineered systems

    are safe • Make progress by protecting systems from unreliable humans “Old” View Of Human Error

  23. It’s so easy and tempting to point fingers and find

    scapegoats after the fact. But...

  24. ...we’re humans. We’re not rational or objective beings. Here’s why.

  25. Hindsight Bias “The inclination, after an event has ocurred, to

    see the event as having been predictable, despite there having been little or no objective basis for predicting it.” “Hindsight bias”

  26. It’s so obvious! How could have they missed it?

  27. Fundamental Attribution Error “Our tendency to explain someone’s behaviour based

    on internal factors, such as personality or disposition, and to underestimate the influence that external factors, such as situational influences (...).” “Fundamental Attribution Error - Definition & Overview”

  28. It’s easier to change people than basic beliefs about a

    system.

  29. “The human tendency to create possible alternatives to life events

    that have already occurred. They are thoughts that consist of ‘If I had only’.” “Counterfactual Thinking” Counterfactuals

  30. Counterfactuals can affect people’s emotions, e.g.: regret, guilt or relief.

    They can also affect how they decide who deserves blame and responsibility.

  31. Stressing what was not done explains nothing about what actually

    happened, or why.

  32. What can we do?

  33. Local Rationality Principle “People do things that make sense to

    them given their goals, understanding of the situation and focus of attention at that time. Work needs to be understood from the local perspectives of those doing the work.” “Local Rationality”

  34. The local decision is always right.

  35. Normal people, doing normal things.

  36. So… can we really find “the” cause?

  37. None

  38. Scott A. Snook, Friendly Fire: The Accidental Shootdown of U.S.

    Black Hawks over Northern Iraq

  39. We don’t find cause. We select cause.

  40. • Human error as symptom of failure • Safety is

    not inherent in systems • Human error connected to features of people, tools, tasks and operating environment “New” View On Human Error

  41. How Organizations Process Information Pathological Bureaucratic Generative Power-oriented Rule-oriented Performance-oriented

    Low co-operation Modest co-operation High co-operation Messengers shot Messengers neglected Messengers trained Responsibilities shirked Narrow responsibilities Risks are shared Bridging discouraged Bridging tolerated Bridging encouraged Failure leads to scapegoating Failure leads to justice Failure leads to inquiry Novelty crushed Novelty leads to problems Novelty implemented Ron Westrum, “A typology of organisational cultures” (2004)

  42. Four Needs an accident report must fulfill Sidney Dekker, “The

    psychology of accident investigation: epistemological, preventive, moral and existential meaning-making” (2014)

  43. Epistemological Preventive Moral Existential Most of the time they are

    in conflict.

  44. The way we look at human error focuses on moral

    and existential needs.

  45. And what do we get by focusing on those two

    needs?

  46. Blame Culture Real or perceived. It doesn’t matter.

  47. Learning from failure is at least as important as fulfilling

    moral and existential needs.

  48. A Systematic Approach to Learn From Past Events Five steps:

    from context-specific to concept-dependent. Sidney Dekker, “Reconstructing human contributions to accidents: the new view on error and performance.” (2014)

  49. 1. Layout Sequence of Events in Context-Specific Language Data about

    an incident reveals a sequence of activities — human observations, actions, assessments, decisions, as well as changes in the state of the process or system.

  50. 2. Divide Sequence of Events into Episodes If the accident

    evolves over a long period of time.

  51. 3. Find Out How the World Looked or Changed During

    Each Episode Find out what their process was doing and what data was available. Couple behaviour with situation.

  52. 4. Identify People's Goals, Focus of Attention and Knowledge Active

    at the Time What people know and what they try to accomplish (their goals) determines where they will look, hence the data that is observable to them.

  53. 5. Step Up to a Conceptual Description It’s crucial so

    that we can learn from failures and identify commonalities between different events.

  54. Now go and make your organization more humane...

  55. ...and Resilient!

  56. Human Factors & System Safety MsC and Learning Labs

  57. Q&A?