We value your privacy

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies.

Customize Consent Preferences

We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.

The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ... 

Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

No cookies to display.

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

No cookies to display.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

No cookies to display.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

No cookies to display.

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

No cookies to display.

Open Menu
April 25, 2025 | Barb Carr

Defense in Depth: Because Hope Isn’t a Safeguard

defense in depth

Let’s talk about an important concept in preventing incidents: Defense in Depth.

You may also know it as Barrier Analysis or LOPA (Layer of Protection Analysis)—but in the TapRooT® System, we call these Safeguards. Each Safeguard is a layer of protection designed to stop a hazard from becoming an incident.

Take a look at this diagram (courtesy of TapRooT® RCA creator Mark Paradies). It shows how incidents happen when multiple safeguards fail.

Defense in Depth

You might recognize the resemblance to James Reason’s Swiss Cheese Model: every layer has “holes,” but incidents occur only when the holes line up.

That’s why we focus on two things:

  1. Do we have enough layers?

  2. Are those layers working as intended?

Every safeguard has limitations, so the goal is to minimize the holes and build redundancy that prevents single points of failure.

We can also apply this to corrective actions:

  • Should we add more safeguards?

  • Can we strengthen the ones we already have?

The concept is straightforward. What’s challenging is deciding what’s “enough.” Risk is the main driver, but business realities matter too.

Let’s walk through it:

  • The task is easy, the risk is low. Keep safeguards simple when the risk is low and the potential consequences are not severe, but monitor the task.
  • The task is easy, and the risk is high: Deceptively dangerous! It feels safe because it’s simple. But if that simple task goes wrong, the consequence is severe. These situations often get underestimated, requiring careful judgment about what safeguards are needed.
  • The task is difficult, and the risk is low. Since the risk is low (and potential consequences are not severe), you might not need expensive or engineered safeguards. Written procedures and training might be good enough. These are quasi-safeguards because they rely on human behavior and aren’t foolproof.
  • The task is difficult, and the risk is high: You need multiple robust safeguards when the risk is high for a mistake with potential severe consequences. Remove or reduce the hazard, remove or guard the target, or create engineering controls (automated or built-in protections that don’t rely on people remembering or choosing the right thing).

You can create defense in depth proactively or reactively. Proactively, audit your existing layers to make sure they’re functioning. After an incident, think in terms of safeguard performance, not just what went wrong, but what failed to protect.

Want to build stronger systems? Join our 5-Day TapRooT® Advanced Root Cause Analysis Team Leader Training. Learn advanced tools like Safeguards Analysis, Change Analysis, CHAP, and how to use TapRooT® RCA for audits.

Don’t rely on hope! Keep those layers strong.

Categories
Safety
-->
Show Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

More Articles That Might Interest You...

Best Performance Improvement Initiative
January 22, 2025 Which Industry Has the Best Performance Improvement Initiatives? Read More about Which Industry Has the Best Performance Improvement Initiatives?
Thinking Person
February 4, 2025 Picking a Conference To Attend in 2025 Read More about Picking a Conference To Attend in 2025
Root Cause Failure Analysis, pump
February 14, 2024 Troubleshooting and Root Cause Analysis of Equipment Reliability Problems Read More about Troubleshooting and Root Cause Analysis of Equipment Reliability Problems
August 1, 2024 How to Become a Certified TapRooT® Instructor Read More about How to Become a Certified TapRooT® Instructor