Professional Documents
Culture Documents
Selección de Controles Críticos
Selección de Controles Críticos
9 Treat risks
Risk treatment involves developing and implementing specific cost-effective strategies and
action plans to increase benefits and reduce costs. The strategies and plans usually involve
the improvement of existing controls or the introduction of new controls to reduce the risk.
Type 3 engineering controls are usually inherent in the physical design of plant or
equipment. Engineering controls are ‘automatic’ and do not require human intervention to
be effective. Control reliability is achieved by having an adequate margin between the
critical engineering characteristic of the control device and the system’s potential range of
variability.
Type 4 system-based controls are executed by people within the bounds of a defined
management system. Execution is based on a prescribed approach governed by set rules
and protocols. Examples include physical barriers on plant that must be removed and
replaced for maintenance, or hazard monitoring systems that require an operator to initiate
action in response to a condition such as an elevated gas level or an offsite water release.
Control reliability is achieved through the system surrounding the control, including
management review and follow-up.
Type 5 procedure-based controls rely on people acting in accordance with written rules or
guidelines. Control reliability is achieved through the effective design of the procedure,
through the training and competency of people required to execute the procedure, and
through monitoring of performance.
Type 6 PPE controls are generally for safety and are mitigative, relying on the cultural
mindset of the organisation for effectiveness, such as wearing goggles as protection.
Where they are used to control critical risks, they need to be supported by a strong process
for checking and sign-off, such as for PPE use in a confined space.
Type 7 administrative controls are typically used in health risk management, where people
are rotated to minimise exposures to prescribed levels. Such controls should be considered
temporary while more reliable controls in levels 1 to 6 of the hierarchy are sought.
Type 8 controls are people-based controls relying on the skills, knowledge and experience
of individuals to identify a hazardous situation, assess the potential consequences and react
accordingly. Control reliability is very low and is achieved by the inherent experience and
capability of the people and their capacity to adapt that knowledge to situations that are
often changing.
There can be overlap between these characteristics and existing controls. For example, a
specific control may have some characteristics of a procedural control and some elements
of a system-based control. In general, the following principles apply:
■ Engineering or system-based controls are more reliable than procedural or people-
based controls but are generally more expensive or difficult to implement,
particularly if they are not included in the original design.
■ Increasing confidence in risk management is achieved by applying highly effective
controls to risks with high-potential consequences.
■ Risk tolerability can be established to some degree by setting the minimum type of
control for a given severity of potential consequences.
■ Controls for material risks should have documented control objectives and related
performance requirements, whether they are engineering, system, procedural or
people-based. The control objective is a statement of the design intent of the
control. The reliability target for engineering controls usually specifies the required
level of repeatability of the control or, conversely, the maximum allowable ‘failure on
demand’ for the control.
These elements provide the basis by which the ongoing effectiveness of the control can be
assessed.
For this handbook, two types of control analysis methods are suggested: first the bow-tie
analysis method to identify controls related to a priority risk event; second, a method to
discuss and establish control effectiveness. The assumption is that an inherently high risk
or consequence will be tolerable only if the controls are adequately effective. Therefore, the
question must be answered: do I have the right controls and, if so, are they effective?
Bow-tie analysis is often chosen because it helps to visually represent controls and their
effectiveness. The output of the bow-tie method includes:
The bow-tie is discussed in Section 3.7.3 and in Appendix 1; a more detailed description
and application guidance are in Appendix 2.
Four steps are recommended for selecting and optimising critical risk controls (ACARP
2015):
■ Step 3) Identify optimal controls to achieve the required risk reduction by using bow-
tie analysis in the sequence below (which is discussed in detail in Appendix 2):
Each step is discussed in more detail below. It is important to remember that this process
should be iterative, and the bow-tie analysis output should be a set of live documents that
are regularly reviewed and updated.
Unwanted events are scenarios that have potential adverse effects on important objectives,
such as operations, safety, health, the environment, communities, and legal and financial
performance. Unwanted events can emerge from threats, variability, incomplete knowledge
and drifts in performance.
Once unwanted events are identified, it may be appropriate to prioritise them for further
analysis.
Step 2: Select best risk treatment options for the unwanted event
The most effective way to manage an unwanted event is to eliminate the hazard that can
cause it. If elimination is not an option, consider substituting the hazard with something
that has less risk and minimises exposures. If elimination, substitution and reducing
exposure levels do not reduce the risks to an acceptable level, identify the unwanted events
that can emerge from the hazard and select and optimise controls that help ensure the
effective protection of people, assets and the environment. The risk treatment options are
summarised in Figure 9.
Step 3: Identify optimal controls to achieve the required risk reduction using
bow-tie analysis
As a minimum, a bow-tie analysis should have the following characteristics:
Critical control management is part of examining the overall priority site risks, is part of the
overall risk management approach for the life cycle of the business, and needs to be
applied at all phases of the cycle.
Figure 11 outlines the nine steps of the critical control management process, six of which
are needed to plan the critical control management plan program before the final three
implementation steps (ICMM 2015).
There are many iterative loops in Figure 11, in which a step may require a revisiting of the
previous step to achieve the desired output. For example, the loop from step 7 to step 6
indicates the potential need to revisit information from the planning steps when site
implementation is defined. This might occur because a control’s performance on site varies
from assumptions made in the planning steps.
Businesses should recognise that this may be a major change in the way risk is treated and
that it may be necessary to take steps to prepare for critical control management before
embarking on planning and implementation. Once the nature of the process is understood,
including the essential leadership involvement, it is recommended that the company review
its readiness to adopt critical control management. The ICMM provides a tool for
undertaking that assessment.
3.9.4 Critical equipment management
A defined critical equipment management program is an effective way to manage risks
associated with equipment failure. An effective critical equipment management program
includes:
■ a maintenance work order process that differentiates work planning and completion
reporting; management reporting on completion of critical equipment testing and
maintenance; a critical equipment disablement or bypass approval procedure;
process safety; and workforce training.