The APERO method (Analysis for the Evaluation of Operational Risks) was developed by Cybelius to federate in a single method the risk analyses of an industrial IT project : operational safety, cybersecurity, even physical safety or malicious acts.
It’s function-oriented using a variable level of decomposition of SADT type, and is based on EBIOS concepts for input, output and function support data. This approach links quite naturally the functional analyses of the automation specialists and the DICT analyses on the data of the computer specialists. The APERO method also takes into account contextual aspects and qualitative criteria that reinforce the relevance of a simple functional decomposition.
APERO makes it possible to identify, at all stages of a project, the security points which deserve a particular analysis (SdF or cyber) and allows to have very quickly a stable and precise vision of the risks, according to identical metrics.