Slide 18
InstMC FS2016 V1.3
Nicol Instrument Engineering Limited
SIS design and engineering
Clarification on designing interfaces and
separation with the BPCS;
–
BPCS device not to be used by a SIS if a failure of
the device causes a demand or dangerous failure of
the SIF.
SIS design includes providing the necessary
resilience against an identified security risks.
Management controls is required for Bypass
switches or other means to inhibit a SIS or SIF;
includes the maximum time the SIS is allowed to
be in bypass while safe operation of the process
is continued.