Resilience-oriented system engineering (ROSE) is an emergent discipline in system engineering, motivated by the need for resilience assurance. Resilience is the " system ability to provide required capability in the face of adversity" ( SEBoK ... ). Practically, it is the property of mitigating the risks of incidences. Resilience assurance a systematic process in system development, intended to prevent failure during the system operation, due to mistakes or defects in fulfilling the requirements for resilience.

About this guide

This guide adopts an interdisciplinary approach ... to resilience assurance. It is a framework for practical resilience engineering ..., proposing a selection of common practices together with new, original concepts and methods.


In this guide, failure is attributed to hazards, demonstrated by incidences. Hazards are originated from various sources (the operator, hardware, software bugs, context, design mistakes, etc.). Hazards develop to incidences when they pass through holes in the defense layers, due to insufficient protection from risks (see the Extended Swiss Cheese Model ...). This guide takes the proactive approach to ensure that the defense layers are effective.

People are always tempted to assign incidences to errors, thereof hampering the effort to learn from near-misses. This guide presents a methodology and guidelines for coping with hazards of all sources, including those attributed to errors.

History of this guide

This guide was developed by Ergolight ... in cooperation and with the support by the Gordon Center for Systems Engineering ... at the Technion, IIT, Haifa, Israel....

The guide is based on a pilot version reported by Zonnenshain & Harel (2015). This version extends the overview ... presented in the INCOSE 2015 conference ( link ) and on comments received by reviewers.

Please, help us improve this guide.

Send your comments to

  This work is licensed under the Design Science License

Updated on 05 Apr 2017.