Safety Instrumented System (SIS)
What is Safety Instrumented System (SIS)?
Safety Instrumented System (SIS)An independent control system that brings a process to a safe state when monitored variables exceed defined limits, protecting people, environment, and assets.
A Safety Instrumented System (SIS) is a dedicated, certified control system whose only job is to detect dangerous process conditions and automatically take the plant to a safe state — typically by closing valves, tripping motors, or venting pressure. It is engineered, segregated, and certified to functional-safety standards such as IEC 61508 and IEC 61511, with a required Safety Integrity Level (SIL) derived from a hazard and operability study. Common products include Triconex, Honeywell Safety Manager, Siemens S7-1500F, and Yokogawa ProSafe-RS. SIS must be logically and physically separated from the basic process control system (BPCS); the TRITON attack on a Triconex SIS in 2017 demonstrated the catastrophic potential when this separation fails.
● Examples
- 01
An ESD system on an offshore platform that automatically isolates wells when gas detectors trip.
- 02
A burner management system that shuts down a furnace when flame detection is lost.
● Frequently asked questions
What is Safety Instrumented System (SIS)?
An independent control system that brings a process to a safe state when monitored variables exceed defined limits, protecting people, environment, and assets. It belongs to the OT / ICS / IoT category of cybersecurity.
What does Safety Instrumented System (SIS) mean?
An independent control system that brings a process to a safe state when monitored variables exceed defined limits, protecting people, environment, and assets.
How does Safety Instrumented System (SIS) work?
A Safety Instrumented System (SIS) is a dedicated, certified control system whose only job is to detect dangerous process conditions and automatically take the plant to a safe state — typically by closing valves, tripping motors, or venting pressure. It is engineered, segregated, and certified to functional-safety standards such as IEC 61508 and IEC 61511, with a required Safety Integrity Level (SIL) derived from a hazard and operability study. Common products include Triconex, Honeywell Safety Manager, Siemens S7-1500F, and Yokogawa ProSafe-RS. SIS must be logically and physically separated from the basic process control system (BPCS); the TRITON attack on a Triconex SIS in 2017 demonstrated the catastrophic potential when this separation fails.
How do you defend against Safety Instrumented System (SIS)?
Defences for Safety Instrumented System (SIS) typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Safety Instrumented System (SIS)?
Common alternative names include: SIS, Emergency Shutdown System (ESD), Safety system.
● Related terms
- ot-iot№ 328
Distributed Control System (DCS)
An integrated ICS architecture in which controllers, operator stations, and engineering tools are distributed across a plant and tightly coupled by a vendor backbone.
- ot-iot№ 529
Industrial Control System (ICS)
An umbrella term for systems that automate and supervise industrial processes, including SCADA, DCS, PLCs, RTUs, and safety controllers.
- ot-iot№ 513
IEC 62443
The IEC family of standards for the cybersecurity of industrial automation and control systems, addressing asset owners, integrators, and product suppliers.
- ot-iot№ 1174
TRITON / TRISIS
Malware discovered in 2017 that targeted Schneider Triconex Safety Instrumented Systems at a Saudi petrochemical plant, attributed to a Russia-linked actor.
- ot-iot№ 762
Operational Technology (OT)
Hardware and software that monitor and control physical processes, devices, and infrastructure such as factories, power plants, and utilities.
- ot-iot№ 881
Purdue Enterprise Reference Architecture
A layered reference model for industrial networks that segments business IT from process control, widely used to design ICS network segmentation.