United States
Change Country Homepage
  • Canada
  • Japan
  • Mexico
  • Netherlands
  • South Africa
  • United Kingdom
  • Member Login
  • |
  • Safety Automation Element List
  • |
  • Contact
  • |
  • COMPANY
    • About Us
    • Locations
    • Key Consultants
    • Clients
    • Career Opportunities
  • SERVICES
    • Certification
    • End User
    • OEM
    • Security
    • Alarm Management
  • SOFTWARE
    • exSILentia
    • PHAx
    • SILAlarm
    • SILStat
    • SERHViewer
    • Software Support
    • All Software
  • TRAINING
    • Course Dates
    • Online Training
    • On-Site Training
    • Virtual Classroom
  • WEBINARS
    • About
    • Scheduled Webinars
    • Recordings
    • Webinar Wednesdays
  • BOOKS
    • Alarm Management for Process Control
    • Certified Functional Safety Expert / Professional (CFSE / CFSP) Study Guide
    • Control Systems Safety Evaluation and Reliability, 3rd Edition
    • Electrical & Mechanical Component Reliability Handbook, 3rd Edition
    • Final Elements and the IEC 61508 and IEC 61511 Functional Safety Standards
    • Functional Safety - An IEC 61508 SIL 3 Compliant Development Process, 2nd Edition
    • Practical SIL Target Selection - Risk Analysis per the IEC 61511 Safety Lifecycle
    • Safety Book Package
    • Safety Equipment Reliability Handbook - 3rd Edition
    • Safety Instrumented Systems Verification - Practical Probabilistic Calculations
  • RESOURCES
    • Safety Automation Element List
    • Features
    • Brochures / Flyers
    • White Papers
  • WEB STORE
  • BLOG

Blog - exida explains

exida : Blog : Babies, Bathwater, and Australian Safety Laws
Eric Scharpf's photo
Dr. Eric Scharpf
Principal Partner

Gavin Strack, CFSE

Lead Control Systems Engineer, Sinclair Knight Merz

Babies, Bathwater, and Australian Safety Laws

Thursday, February 16, 2012

Viewed 2122 times

Risk Communication • (1) Comments • Permalink

The old saying goes, “Don’t throw the baby out with the bathwater.” But it looks like a number of people in Australia may be in danger of doing just that with their response to the country’s newly harmonized health and safety laws.

Australia’s new Work Health and Safety Act says company officers “… must exercise due diligence to ensure that the person conducting the business or undertaking complies with that duty or obligation.” An organization also must ensure “workers and other persons should be given the highest level of protection against harm to their health, safety and welfare from hazards and risks arising from work … as is reasonably practical.”

So far, the Act is consistent with what most people would regard as commonsense ALARP (As Low As Reasonably Practicable) risk management. It is, in fact relatively easy to argue that the safety lifecycle approach is the most logical method of ensuring a company can achieve the highest level of protection from harm as reasonable practicable.

But some critics are interpreting the Act as a rejection of the safety lifecycle standards such as IEC/AS61508, IEC/AS61511 and IEC/AS62061. They assert that, because these standards allow a company to set a fixed risk tolerance and thus potentially ignore other reasonable means of further risk reduction, the standards should be rejected completely. The problem is not with the standards. The problem is using them to justify bare-bones risk management that ignores intelligent, practical means of risk reduction once an arbitrary fixed target is reached. In the extreme, one could set a high risk target, say that no safety is needed to achieve that target and then claim standards compliance. This was never the intention of the standards. Such theoretical extremes do not justify rejecting the widely accepted good engineering practice of risk analysis, safety equipment specification, design, and operation within the new legal framework.

The problem of risk management engineering and the law centers on the fundamental difference between engineering and the legal system. As engineers, we deal with the unknown, but reasonably predictable future. Legal cases deal with the fully known past. It is our challenge as engineers to both understand the potential risks in the future and take all reasonable means to ensure they are managed. This standards-based approach will minimize the number of legal cases and, if a case does go to court, show that we did the best reasonable job at the time. The legal case can then focus on the assessment of what is reasonable with the information to make that assessment intelligently.

These engineering and legal challenges are all the more reason to apply good practices and methods such as those in the safety lifecycle standards. But that is not enough. We must also apply them in the context of an existing industry with other existing means of risk reduction to ensure that we do apply all reasonable means at our disposal or, in the current phrase of the moment, “exercise due diligence.” So the new Australian legislation does not reject the safety lifecycle standards. Rather, the Act requires that the standards be used to assess risk intelligently, apply all reasonable means of risk reduction including SIL rated SIFs, and monitor equipment operation to ensure that reality is consistent with the predictions and make any reasonable changes as needed to fix any identified problems.

However, we must not fall into the trap of choosing risk targets much higher than is broadly acceptable and then using safety lifecycle standards to justify this instead of using them as part of an ALARP approach. The safety lifecycle standards are tools to achieve a level of risk, and the choice of accepting that risk should be based on ALARP according to the new laws. The safety lifecycle standards should not be rejected, but rather used intelligently in achieving the desired result of ALARP risk.

Tagged as: work health and safety act, sil, sif, safety lifecycle, risk reduction, risk management, iecas62061, iecas61511, iecas61508, fixed risk tolerance, eric scharpf, alarp,

(1) Comments

  1. 2
    alistaryeoman
    Said This 01 March 2012

    I agree that the problem is using standards to justify minimal risk management that ignores practical means of risk reduction. The fundamental difficulty with the concept of ALARP is that the term is inherently circular and self-referential.

    2. You Must Be Logged In To Comment

    Become a Registered Member

Blog RSS Feed

  • Click to Subscribe

Categories

  • Alarm Management (9)
  • Control System Security (10)
  • Failure Data (16)
  • Functional Safety Certification (38)
  • General (9)
  • Layer of Protection Analysis (LOPA) (2)
  • News (1)
  • Proof Testing (1)
  • Risk Communication (7)
  • Safety Instrumented System (1)
  • Software (9)

Most recent entries

  • Fire, Aim, Ready!Added 5 days ago
  • Safety Training Benefits Safety CultureAdded 11 June 2013
  • If There Was ONE THING to Know About Functional SafetyAdded 06 June 2013
  • Why Do We Need You?Added 04 June 2013
  • Make IEC 61511 into a Cookbook?Added 30 May 2013
  • When is an Independent Protection Layer (IPL) Not a Safeguard?Added 28 May 2013
  • How do You Compare?Added 22 May 2013
  • The exida SchemeAdded 16 May 2013
  • Root Cause AnalysisAdded 14 May 2013
  • Certificate Forgery!Added 09 May 2013
  • Which Edition of IEC 61508 is Relevant to Me?Added 07 May 2013
  • Setting the PaceAdded 02 May 2013
  • How Do You Certify to IEC 61508?Added 30 April 2013
  • Practice Makes Perfect…AlmostAdded 25 April 2013
  • PHA: A must or a MUST?Added 24 April 2013

Contact exida

Germany +49-89-49000547
USA +1-215-453-1720
South Africa +27 31 2671564
United Kingdom +44 (0) 2476 214 794
Canada +1-403-475-1943
Mexico +52-55-1-5-18-05-73
Asia +65 6222-5160

Stay Informed

  • Get Updates Via Facebook
  • Follow us on Twitter
  • Youtube Channel
  • RSS Feed of exida News

Resources

Safety Automation Element List
Blog
Features
White Papers
Company Brochures
Web Seminars

Newsletter

Receive our Newsletter that goes out to over 10,000 industry professionals every month.

Copyright 2000 - 2013 . exida.com LLC | Site Map