Non-Prescriptive Standards

Performance-Based Standards



Home

Bookshop
Seminars/Webinars

Incidents
Management
  BBS
  Stop Work Authority
  DWH Black Swan
  Op Excellence
  Participation
  Performance-Based
  Risk Management
  Safety Cases
Industries
PSM
Regulations/Standards
SEMS
Safety Analysis

Affiliates / Social Sites
Meetings

Contact Us

Join Our Email List
Email:

Prescriptive Standards This  page provides an overview of the concept of performance-based vs. goal-based standards (that are sometimes risk-based). It was written to help understand the nature of the proposed SEMS II rule.

Introduction

In late 2011 the Bureau of Safety and Environmental Enforcement (BSEE) introduced the “Revisions to SEMS Rule”, more commonly known as SEMS II. Public comments have been received but the rule itself is still in draft form.

Some safety management professionals feel that SEMS II is too prescriptive and should be modified before being released in its final form. The purpose of this short article is to contribute to the discussion by providing information and thoughts on prescriptive and non-prescriptive standards. The article is organized into the following sections:
  • Prescriptive standards
  • Non-prescriptive/risk-based standards
    • All standards fundamentally non-prescriptive
    • Acceptable risk
    • ALARP
  • Use of management elements
  • SEMS II

Prescriptive Standards

Non-Prescriptive Standards A prescriptive standard is one that specifies exactly what has to be done — it provides no flexibility. For example, a rule may require that a handrail be between 3' and 3' 6" high. Such a rule makes life quite simple: the designers know what to install and the auditors and regulators know what to check for.

A prescriptive approach can also be used for engineering design. For example, API RP 14C, which has been incorporated into SEMS, states the following with regard to safety systems.

The safety system should provide two levels of protection to prevent or minimize the effects of an equipment failure within the process. The two levels of protection should be independent of and in addition to the control devices used in normal process operation. In general, the two levels should be provided by functionally different types of safety devices for a wider spectrum of coverage.

So, when designing a system to control high pressure in a vessel two levels of protection are needed, and they should be independent. In practice, the designers will usually meet this requirement by installing a high pressure interlock (instrumentation) and a pressure safety relief valve (mechanical device). No risk analysis is needed; the designers just follow the rules.

Many experts believe that the RP 14C standard is out of date given the sophistication and reliability of modern instrumentation systems. And those experts may be right. But a design engineer has to follow the rule as written. If someone disagrees with the rule, then they have to work on revising that rule.

Prescriptive standards are sometimes criticized for being “just a checkbox”. But “checking the box” provides a foundation for other, more subjective types of risk analysis and measurement. For example the SEMS rule to do with operating procedures states, “(a)(6) You must develop and implement written procedures . . that address . . . Bypassing and flagging out-of-service equipment.” If an auditor or inspector goes on to a platform and finds that there are no procedures for safely bypassing equipment then he or she will certainly “check the box”, and rightly so.

With regard to the audits the prescriptive approach offers the following benefits:
  • It keeps costs down. Conducting full-scale risk analyses is time-consuming and expensive, whereas simply following a set of rules can generally be done quickly and easily.
  • It does not require that auditors possess a high level of technical expertise. For example, the auditor is not required to be a highly trained expert in issues such as modern safety instrumentation.
  • It is fair. The results of an audit should not affected by the opinions or judgment of the auditor.
  • It provides a level playing field in which all parties are measured against the same standards.

Non-Prescriptive Standards  

Non-Prescriptive StandardsMost process safety management programs, including much of the SEMS rule, are fundamentally non-prescriptive; that is, the regulations and standards generally provide very little specific detail as to what has to be done. Basically they say, “Do whatever it takes on your facility not to have accidents”.

It is up to the managers, technical experts and the operations/maintenance personnel to determine how this goal is to be achieved. This lack of detail explains why process safety standards, such as OSHA’s PSM or BSEE’s SEMS, are so short. These standards simply require that a program be in place, that it be followed and that it works, i.e., that it be effective in reducing the number of incidents. The program that they develop and implement is unique to that facility.

Non-prescriptive management programs have to be performance-based because the only measure of success is success. Hence the only true measure of success of the program is not to have incidents. But, from a theoretical point of view, such a goal is impossible to achieve. No matter how well run a facility may be accidents will occur; risk can never be zero. For this reason some PSM professionals chose not to use the terms “compliance” on the grounds that true compliance can never be achieved.

The example provided above to do with operating procedures is basically non-prescriptive. There must be a (prescriptive) procedure for bypassing out-of-service equipment, but the SEMS rule provides no guidance as to how that procedure should be written, how detailed it should be or how it should be communicated to the facility personnel. Each facility will do what it considers to be the best for its own operation, and a program developed in one location may not work elsewhere.

All Standards Fundamentally Non-Prescriptive

It can be argued that, in the limit, all standards are non-prescriptive. Standards such as RP 14C are typically written by a committee. The committee consists of highly experienced experts in the field. They share their experiences and knowledge to come up with a prescriptive standard, but one that is — at root — subjective, i.e., it is still based on judgment.

Acceptable Risk

If it is decided to follow a non-prescriptive approach to the setting of standards then criteria are needed to decide what level of risk is acceptable. For example, if an engineering design team decides not to follow the requirements of RP 14C regarding the number and type of safety devices on a pressure vessel, then that team must justify whatever risk criteria it does choose. They can do this with the following approach.
  • A level of acceptable risk is selected, say one fatality per ten thousand workers per year
  • A quantitative estimate of risk is carried out assuming no safeguards are in place. The risk is determined by identifying hazards and then estimating their consequences and their predicted frequency.
  • Safeguards are added to the design and the new level of risk is estimated.
  • If the risk is higher than acceptable then additional safeguards are installed until the level of risk does become acceptable.
Boundaries of risk that are ‘definitely acceptable’ or ‘definitely not acceptable’ are established as shown in the sketch below, which is an F-N curve. Between those boundaries, a balance between risk and benefit must be established.


Non-Prescriptive Standards

As Low as Reasonably Practicable Risk - ALARP

The concept of ‘As Low as Reasonably Practical’ is sometimes used to determine acceptable risk. This term is usually abbreviated to ALARP (sometimes facetiously referred to ‘As Low as Regulators Permit’). The idea behind this term is that risk should be reduced to a level that is as low as possible without requiring ‘excessive’ investment.

One panel has developed the following guidance for giving a value to ALARP.
  • Use of best available technology capable of being installed, operated and maintained in the work environment by the people prepared to work in that environment;
  • Use of the best operations and maintenance management systems relevant to safety;
  • Maintenance of the equipment and management systems to a high standard;
  • Exposure of employees to a low level of risk.
A fundamental difficulty with the concept of ALARP is that the term is inherently circular and self-referential. For example, the phrase ‘best available technology’ used in the list above can be defined as that level of technology which reduces risk to an acceptable level - in other words to the ALARP level. Terms such as ‘best operations’ and ‘high standard’ are equally question-begging. Therefore the ALARP concept provides less assistance than might be expected.

Use of Management Elements

Most discussions to do with performance-based standards, including what has been written so far in this article, tend to assume that success will be measured through a quantitative assessment of risk. However another approach is to develop standards around management elements. Most safety management systems are made up of a mix of technical and management elements, as can be seen in the following list which consists of the elements of SEMS.
  • Safety and Environmental Information
  • Hazards Analysis
  • Management of Change
  • Operating Procedures
  • Safe Work Practices
  • Training
  • Assurance of Quality and Mechanical Integrity
  • Pre-Startup Review
  • Emergency Response and Control
  • Investigation of Incidents
  • Audit of Safety and Environmental Management Elements
  • Records and Documentation
It is possible to develop a safety management system around each of these elements. For example, using Operating Procedures once more, management can recruit a team of experts to look at the procedures and set standards for issues such as readability, level of detail and linkages to training. Such an approach is non-prescriptive, but it is not risk-based.

The Regulator's Dilemma

Regulator-DilemmaWith regard to non-prescriptive, goal-based rules, however, regulators face something of a dilemma. In these situations facility owner/operators develop their own safety programs that are designed to meet their specific circumstances.

If a regulator approves those programs then he or she has implicitly stated that the program is satisfactory and that the assumed level of risk is acceptable. If, later on, a deficiency is found with the program (either during an audit or an incident investigation) then the regulator must take some responsibility (and the owner/operator can deny all responsibility).

The UK HSE (2005) responded to this difficulty with the following statement,

. . . “acceptance” requires satisfaction with the duty holder’s approach to identifying and meeting health and safety needs. HSE “accepts” the validity of the described approach as being capable, if implemented as described, of achieving the necessary degree of risk control, but HSE does not confirm the outcomes of that approach.

A further difficulty that most regulators face is that they are not likely to have a sufficient number of qualified people to fully evaluate the safety management system for each and every offshore facility.

Finally, regulatory agencies in particular will never place a numerical value on human life and suffering because any number that they develop would inevitably generate controversy. Hence they cannot develop quantitative, risk-based measurement criteria.

SEMS II

This paper started out by considering whether the proposed SEMS II rule could be considered prescriptive or non-prescriptive.

In one regard SEMS II is written at the same level as the existing SEMS standard, and can be seen as being an extension of SEMS. As such, it uses a mixed approach. However, in addition to adding more requirements to existing elements such as Recordkeeping and Documentation Requirements, six new sections have been added to the proposed rule. They are:

  1. A Stop Work provision
  2. Definition of authority
  3. Employee participation
  4. Reporting of unsafe conditions
  5. The use of independent third party auditors
  6. Additional requirements for Job Safety Analyses

Each of these new sections are written in much the same way as elements of the original SEMS rule. They are of about the same length and contain about the same level of detail. However, the titles themselves suggest a broader management approach, and so one that is considerably less prescriptive than SEMS. This comment applies in particular to the third of the above elements: Employee Participation. This element contains five paragraphs, of which the first is key,

(a) Management must consult with their employees on the development and implementation of the company’s SEMS program.

This paragraph is both broad and comprehensive in scope and provides no detailed guidance, as evidenced by use of the word “consulting”. Hence it is most certainly non-prescriptive. However the concept of quantitative, risk-based analysis is not introduced. Hence the effectiveness of this and similar elements in SEMS II is measured by an assessment of management systems rather than formal risk analysis.


home| top of page | view cart

Copyright © Sutton Technical Books 2007-2012. All rights reserved

PO Box 2217
Ashland, VA  23005-9998