Editor's Choice
Analytical Instrumentation & Environmental Monitoring
Data Acquisition & Telemetry
Electrical Power & Protection
Enclosures, Cabling & Connectors
Fieldbus & Industrial Networking
Flow Measurement & Control
Industrial Computer Hardware
Industrial Wireless
IS & Ex
IT in Manufacturing
Level Measurement & Control
Maintenance, Test & Measurement, Calibration
Mass Measurement
Motion Control & Drives
News
Operator Interfaces, Switches & Relays
PLCs, DCSs & Controllers
Pneumatics & Hydraulics
Pressure Measurement & Control
SAIMC
SCADA/HMI
Sensors & Transducers
Smart Home Automation
System Integration & Control Systems Design
Temperature Measurement
Training & Education
Valves, Actuators & Pump Control


Editor's Choice



Print this page printer friendly version

When safety instrumented systems and inadequate operators collide

September 2022 Editor's Choice

A safety instrumented system (SIS) is intended to reduce the risk of a harmful incident. This is achieved using a combination of hardware and software controls implemented on every unit in operation. A layered approach to protection is usually followed. Examples of instrumented controls include hardwired trip systems, interlocks and alarms.

Minimising the risk of failure

Containing the residual risk requires each of the control measures to be effective. During the design phase, teams of engineers and subject matter experts will perform a systematic analysis of the process to identify each possible hazard and then identify what controls need to be in place. The HAZOP is an example of such a technique.

Whichever method is used, it is worth remembering that the SIS itself can fail. We need to eliminate, as far as possible, the risk of underlying process failure coinciding with SIS failure, thereby leading to an incident. There are techniques for quantifying the reliability of SIS systems so that the real risk is adequately understood and mitigated. One example is the Safety Integrity Level (SIL) analysis.

Engineers tend to focus on physical equipment and not people

As instrument and automation engineers, we are trained to be comfortable with physical systems – but less so with systems involving people. When we review the causes of a significant incident, it is tempting to point to a hardware device as the underlying root cause of the failure. We tend to gloss over the importance of humans in the sequence of events that led up to such failure.

The consequences of people getting it wrong

In March 2005, the BP Texas City Refinery experienced a significant safety incident that resulted in 15 fatalities and 180 injuries, after a “geyser of flammable hydrocarbon liquid and vapour erupted from a blowdown stack, creating a huge fire”. Inexperienced operators had continued pumping flammable feedstock into the raffinate tower.

During the engineering design, the HAZOP and LOP (layer of protection) analysis should have picked up the scenario where liquid could be pumped for an extended period into a unit in operation without observing a rise in levels. Whether or not this possibility had been identified, the systems must have failed because, at the time, no alarm alerted the operators of what was happening, and the pump did not trip.

The investigation report made a very insightful observation. It noted that it is easy to identify the physical device that failed and that subsequently led to the incident. Investigators are prone to locate the person most closely associated with the failure of that device, be they operators, maintenance personnel, managers or others. The investigation often recommends a simple technical solution: fix the device, add some more SIL hardware and all will be well.

In the BP Refinery incident, the investigation concluded that there were more underlying problems than just the physical safety integrity system. The issues also lay with poor training and inexperienced people. This, combined with poorly maintained and deteriorating equipment, led to a high-risk situation that was an accident waiting to happen. In addition, while the plant’s deteriorating condition was understood to be a risk, fixing this would have required an extended shutdown, resulting in significant shareholder pain. The record will show that the shutdown did not happen in time.

Is it time to share our lessons learned between IT and OT?

IT managers and CIOs are all too familiar with system failure. Some would argue that this is due to a lack of proper methodology and discipline. However, as with industrial operations, IT projects rarely fail owing only to a technical issue. IT projects are particularly challenging because people need to change how they do things to take advantage of the system.

It occurred to me that this hard-earned experience from the world of IT can also be applied in the operations environment. With the convergence of IT and OT, best practices from the respective disciplines can be shared in ways that previously might not have been obvious.

Poor training and inexperience are disastrous in the world of IT projects – even more so when operating a hazardous refinery. Is it not time to get our heads together and come up with a more holistic solution that incorporates both the physical and engineering aspects, as well as the people factors, to keep our plants running safely and reliably?

About Gavin Halse


Gavin Halse.

Gavin Halse is a chemical process engineer who has been involved in the manufacturing sector since mid-1980. He founded a software business in 1999 which grew to develop specialised applications for mining, energy and process manufacturing in several countries. Gavin is most interested in the effective use of IT in industrial environments and now consults part time to manufacturing and software companies around the effective use of IT to achieve business results.




Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

The thermal combustion balancing act
Editor's Choice
From carbon taxes to export tariffs, and cost containment to security of supply and sustainability, companies are under increasing pressure to switch to greener fuel sources. Associated Energy Services warns that this pivotal change has some potentially serious knock-on effects.

Read more...
What’s driving the IE3 motor revolution?
WEG Africa Editor's Choice
The International Efficiency 3 (IE3) motor standard will soon become South Africa’s legal minimum standard, mandating that local suppliers offer more efficient electric motors. What is driving this change, and how does it affect the many industries that rely on these modern electric workhorses?

Read more...
Unlocking the smart factory
ElectroMechanica Editor's Choice Motion Control & Drives
At ElectroMechanica, we recognise that transitioning to smart automation isn’t just about adopting new technology; it’s about solving real challenges. Labour shortages, rising costs and downtime due to outdated machinery make digital transformation essential for long-term competitiveness.

Read more...
Case History 197: Bad reboiler temperature control.
Michael Brown Control Engineering Editor's Choice Flow Measurement & Control
It is very important that reboiler temperature controls operate well in petrochemical refineries, or the product quality can really suffer. I was asked to check such a control in a refinery where they were having problems with one of these controls.

Read more...
The future of industrial automation: fieldbus and industrial networking
LAPP Southern Africa Editor's Choice
As a global leader in integrated solutions in the field of cable and connection technology, LAPP recognises that fieldbus and industrial networking technologies are pivotal in shaping the future of manufacturing and production processes.

Read more...
AI-driven innovations with CCTV and cyber security
RJ Connect Editor's Choice Fieldbus & Industrial Networking
The fast progress of artificial intelligence (AI) and video analytics is redefining the rail surveillance landscape. Advancements have bolstered proactive event detection, predictive maintenance and enhanced situational awareness.

Read more...
Loop signature 27: SWAG tuning of simple integrating processes.
Editor's Choice
The chief control engineer of one of the largest petrochemical refineries in South Africa once sent me an email after a course at his plant. He wrote that he had found the section on SWAG tuning of simple integrating processes one of the most informative of the whole course.

Read more...
Harnessing industrial AI agents for reliable automation
Editor's Choice IT in Manufacturing
The excitement around generative AI (GenAI) has been undeniable, promising wide-ranging changes across industries. However, for those of us in the world of industrial control and automation, the realities of implementing these powerful technologies are a little more nuanced.

Read more...
Futureproof your industrial network security with OT-centric cyber security
RJ Connect Editor's Choice
To achieve digital transformation, industrial operators must first address the daunting task of merging their information technology (IT) and operational technology (OT) infrastructure. In this article, we focus on the importance of strong OT network security and provide some tips on how to strengthen cybersecurity for industrial operations.

Read more...
The symbiotic relationship between OEMs and SIs
Schneider Electric South Africa Editor's Choice System Integration & Control Systems Design
While businesses tend to turn directly to original equipment manufacturers OEMs or vendors when embarking on IT projects, the role of the SI as a key facilitator and partner cannot be overstated.

Read more...











Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  Hi-Tech Security Solutions
»  Hi-Tech Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd | All Rights Reserved