Upgrade to Pro — share decks privately, control downloads, hide ads and more …

DevOpsPorto Meetup9: There is no such thing as ...

DevOpsPorto
October 14, 2017
Technology
0
160

DevOpsPorto Meetup9: There is no such thing as human error by João Miranda

Talk delivered by João Miranda

DevOpsPorto

October 14, 2017
Tweet

More Decks by DevOpsPorto

See All by DevOpsPorto
DevOpsPorto Meetup 38: Intro to FastAPI by Sebastián Ramírez
devopsporto
1
240
DevOpsPorto Meetup 38: Using cutting-edge open-source technologies to build one of the biggest industrial Data Lake of the World by Allan Sene
devopsporto
0
120
DevOpsPorto Meetup 37: Why averages lie by Filipe Oliveira
devopsporto
0
160
DevOpsPorto Meetup 36: Computing and Operations at CERN: From Physical HW to Virtualization and Containers by Ricardo Rocha
devopsporto
0
180
DevOpsPorto Meetup 35: Turbocharging Azure DevOps with Octopus Deploy by Derek Campbell
devopsporto
0
170
DevOpsPorto Meetup 34: Freelance and Remote - Is it possible in DevOps
devopsporto
0
130
DevOpsPorto Meetup 33: How DevOps supported La Redoute reinvention by Antoine Craske
devopsporto
0
220
K8s in AWS: Europe, US and The Great Wall of China
devopsporto
0
180
DevOpsPorto Meetup 31: Metrics, context driven management by Alexandre Martins
devopsporto
0
200

Other Decks in Technology

See All in Technology
ガバクラのAWS長期継続割引 ~次の4/1に慌てないために~
hamijay_cloud
1
470
Cross Data Platforms Meetup LT 20250422
tarotaro0129
1
780
Spring Bootで実装とインフラをこれでもかと分離するための試み
shintanimoto
7
880
Goの組織でバックエンドTypeScriptを採用してどうだったか / How was adopting backend TypeScript in a Golang company
kaminashi
12
8.7k
テストって楽しい!開発を加速させるテストの魅力 / Testing is Fun! The Fascinating of Testing to Accelerate Development
aiandrox
0
120
Writing Ruby Scripts with TypeProf
mame
0
380
C++26アップデート 2025-03
faithandbrave
0
1.1k
AWSの新機能検証をやる時こそ、Amazon Qでプロンプトエンジニアリングを駆使しよう
duelist2020jp
1
280
10ヶ月かけてstyled-components v4からv5にアップデートした話
uhyo
5
290
Running JavaScript within Ruby
hmsk
3
390
技術者はかっこいいものだ!!~キルラキルから学んだエンジニアの生き方~
masakiokuda
2
280
OpenLane-V2ベンチマークと代表的な手法
kzykmyzw
0
110

Featured

See All Featured
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
32
5.4k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
23
2.7k
Adopting Sorbet at Scale
ufuk
76
9.3k
What's in a price? How to price your products and services
michaelherold
245
12k
YesSQL, Process and Tooling at Scale
rocio
172
14k
Build The Right Thing And Hit Your Dates
maggiecrowley
35
2.6k
Writing Fast Ruby
sferik
628
61k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
367
26k
Git: the NoSQL Database
bkeepers
PRO
430
65k
Documentation Writing (for coders)
carmenintech
69
4.7k
Designing for humans not robots
tammielis
253
25k
Docker and Python
trallard
44
3.3k

Transcript

  1. Human Error There is no such things as...

  2. Ego Self-Massage 17 years in the IT world: developer, scrum

    master, ALM team lead, agile coach, solution architect, engineering manager Manages (huh... tries to cope with) 10 Scrum teams Co-organizes DevOps Lisbon meetup Loves Software Engineering

  3. Favourite journalist question after an accident?

  4. “Was it a human or a technical error?”

  5. “Employing simplicity thinking and linear logic, the official findings and

    the judicial rulings determined that the train driver was “exclusively” responsible for the crash.”* * Disaster complexity and the Santiago de Compostela train derailment

  6. Amazon’s outage “Amazon’s massive AWS outage was caused by human

    error. One incorrect command and the whole internet suffers.” Recode. March 2, 2017

  7. “During the deployment of the new code, however, one of

    Knight’s technicians did not copy the new code to one of the eight SMARS computer servers. Knight did not have a second technician review this deployment (...)” Knightmare: A DevOps Cautionary Tale Knight Capital Loses $440 Million in 30 Minutes

  8. Consumer credit reporting agency. Info on 800 million consumers.

  9. Hackers exposed the Social Security numbers, drivers licenses and other

    sensitive info of 143 million customers.

  10. … yup… you’ve guessed it...

  11. “Former Equifax CEO says breach boiled down to one person

    not doing their job.” https://techcrunch.com/2017/10/03/former-equifax-ceo-says-breach-boiled-down-to-one-person-not-doing-their-job/

  12. “It’s well established that accidents cannot be attributed to a

    single cause or (...) a single individual” Industrial Accident Prevention, H.W. Heinrich, Dan Petersen, Nestor Roos, 1980 (5th edition), McGraw-Hill Book Company (ISBN 0-07-028061-4)

  13. Coping With Complexity Humans are a feature of complex systems.

    They solve the most complex issues (not computers), but they also have some blind spots.

  14. Cognitive Demands of a Domain • Dynamism • Number of

    parts and extensiveness of its interconnections • Uncertainty • Risk A domain is complex if high in all of these dimensions. * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  15. Failure to Adapt to New Events People may get fixated

    on initial assessments. * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  16. “…[people] have difficulty in dealing with exponential developments (hard to

    imagine how fast things can change, or accelerate).” Dietrich Dörner, “On The Difficulties People Have In Dealing With Complexity” (1980), via John Allspaw, “Resilience Engineering Part II: Lenses” (2012)

  17. Failure to Use External Guidance to Direct Focus E.g.: Start

    treating a cause before treating more pressing consequences. * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  18. Failures of Prospective Memory Forgetting to recall an intention for

    some future point in time. * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  19. Treating Interconnected Events as Independent E.g.: Failing to consider how

    a recently deployed change to the Users API may be causing the Check-out process to fail. * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  20. “…[people] tend to think in causal series as opposed to

    causal nets (A, therefore B) -> (A and B, therefore C and D, therefore E and A and F)” Dietrich Dörner, “On The Difficulties People Have In Dealing With Complexity” (1980), via John Allspaw, “Resilience Engineering Part II: Lenses” (2012)

  21. Over Reliance on Familiar Signs “The site is so slow.

    It must be the database again.” * David D. Woods, “Coping with complexity: The psychology of human behaviour in complex systems” (1988)

  22. • Human error is cause of failure • Engineered systems

    are safe • Make progress by protecting systems from unreliable humans “Old” View Of Human Error

  23. It’s so easy and tempting to point fingers and find

    scapegoats after the fact. But...

  24. ...we’re humans. We’re not rational or objective beings. Here’s why.

  25. Hindsight Bias “The inclination, after an event has ocurred, to

    see the event as having been predictable, despite there having been little or no objective basis for predicting it.” “Hindsight bias”

  26. It’s so obvious! How could have they missed it?

  27. Fundamental Attribution Error “Our tendency to explain someone’s behaviour based

    on internal factors, such as personality or disposition, and to underestimate the influence that external factors, such as situational influences (...).” “Fundamental Attribution Error - Definition & Overview”

  28. It’s easier to change people than basic beliefs about a

    system.

  29. “The human tendency to create possible alternatives to life events

    that have already occurred. They are thoughts that consist of ‘If I had only’.” “Counterfactual Thinking” Counterfactuals

  30. Counterfactuals can affect people’s emotions, e.g.: regret, guilt or relief.

    They can also affect how they decide who deserves blame and responsibility.

  31. Stressing what was not done explains nothing about what actually

    happened, or why.

  32. What can we do?

  33. Local Rationality Principle “People do things that make sense to

    them given their goals, understanding of the situation and focus of attention at that time. Work needs to be understood from the local perspectives of those doing the work.” “Local Rationality”

  34. The local decision is always right.

  35. Normal people, doing normal things.

  36. So… can we really find “the” cause?

  37. None

  38. Scott A. Snook, Friendly Fire: The Accidental Shootdown of U.S.

    Black Hawks over Northern Iraq

  39. We don’t find cause. We select cause.

  40. • Human error as symptom of failure • Safety is

    not inherent in systems • Human error connected to features of people, tools, tasks and operating environment “New” View On Human Error

  41. How Organizations Process Information Pathological Bureaucratic Generative Power-oriented Rule-oriented Performance-oriented

    Low co-operation Modest co-operation High co-operation Messengers shot Messengers neglected Messengers trained Responsibilities shirked Narrow responsibilities Risks are shared Bridging discouraged Bridging tolerated Bridging encouraged Failure leads to scapegoating Failure leads to justice Failure leads to inquiry Novelty crushed Novelty leads to problems Novelty implemented Ron Westrum, “A typology of organisational cultures” (2004)

  42. Four Needs an accident report must fulfill Sidney Dekker, “The

    psychology of accident investigation: epistemological, preventive, moral and existential meaning-making” (2014)

  43. Epistemological Preventive Moral Existential Most of the time they are

    in conflict.

  44. The way we look at human error focuses on moral

    and existential needs.

  45. And what do we get by focusing on those two

    needs?

  46. Blame Culture Real or perceived. It doesn’t matter.

  47. Learning from failure is at least as important as fulfilling

    moral and existential needs.

  48. A Systematic Approach to Learn From Past Events Five steps:

    from context-specific to concept-dependent. Sidney Dekker, “Reconstructing human contributions to accidents: the new view on error and performance.” (2014)

  49. 1. Layout Sequence of Events in Context-Specific Language Data about

    an incident reveals a sequence of activities — human observations, actions, assessments, decisions, as well as changes in the state of the process or system.

  50. 2. Divide Sequence of Events into Episodes If the accident

    evolves over a long period of time.

  51. 3. Find Out How the World Looked or Changed During

    Each Episode Find out what their process was doing and what data was available. Couple behaviour with situation.

  52. 4. Identify People's Goals, Focus of Attention and Knowledge Active

    at the Time What people know and what they try to accomplish (their goals) determines where they will look, hence the data that is observable to them.

  53. 5. Step Up to a Conceptual Description It’s crucial so

    that we can learn from failures and identify commonalities between different events.

  54. Now go and make your organization more humane...

  55. ...and Resilient!

  56. Human Factors & System Safety MsC and Learning Labs

  57. Q&A?