FUNCTIONAL SAFETY SERVICES

FUNCTIONAL SAFETY MANAGEMENT
(FSM) DOCUMENTATION

Summary

Build the management framework your safety lifecycle depends on. Define responsibilities, control changes, and maintain the documented evidence that safety-critical decisions were made and tracked correctly.

Why Functional Safety Management Cannot Be Informal

Every activity in the functional safety lifecycle, from initial hazard identification through to decommissioning, depends on people, processes, and decisions being managed with appropriate rigor. Technical work of high quality can still produce an unsafe outcome if the management framework around it is weak. Who is responsible for each activity? Are they competent to perform it? How are changes to the design controlled after the HAZOP? What happens when a safety system reveals an unexpected failure mode during operation?

Functional Safety Management is the discipline that answers those questions. IEC 61511 Clauses 5 and 6 require organizations to establish and maintain a formal FSM framework, documented in an FSM Plan, that defines how safety will be managed across the complete lifecycle of every safety instrumented system under their responsibility.

When FSM documentation is absent, inadequate, or treated as a compliance exercise rather than a working management tool, the consequences appear in functional safety assessments, regulatory audits, and incident investigations. Gaps in competency records, undocumented management of change decisions, and lifecycle documentation that cannot be traced back to its originating requirements are among the most consistently cited findings when functional safety programs are reviewed after incidents.

We develop FSM documentation that organizations can actually use, maintain, and demonstrate to internal and external stakeholders as evidence that their safety management is working.

What Is Functional Safety Management?

Functional Safety Management is the planned and systematic set of activities that ensures functional safety is properly established, implemented, and maintained throughout the safety lifecycle of a safety instrumented system. It is not a single document or a one-time activity. It is an ongoing management commitment that spans the entire life of the system.

IEC 61511 requires FSM to address:

  • The overall strategy and approach for managing functional safety across the lifecycle
  • The allocation of roles, responsibilities, and authorities for every safety lifecycle activity
  • Competency requirements for all persons and organizations performing safety lifecycle activities
  • The procedures and practices that will be used to manage safety lifecycle documentation and records
  • The procedures for managing changes to safety-related systems, including the assessment of change impact on functional safety
  • The procedures for internal assessment and audit of the FSM system itself
  • The arrangements for learning from safety-related incidents, near-misses, and dangerous occurrences

All of this is captured in the FSM Plan, the master document that governs how functional safety is managed on a project or across an operating facility.

The FSM Plan: What It Must Cover

The FSM Plan is the foundational document of every compliant functional safety program. IEC 61511 Clause 6 defines its required content. A complete FSM Plan addresses the following:

Scope and Lifecycle Coverage

The FSM Plan defines the scope of the functional safety program, identifying the safety instrumented systems and lifecycle phases to which it applies. It confirms which phases of the IEC 61511 lifecycle are covered, who is responsible for each phase, and how transitions between phases are managed and documented.

Roles, Responsibilities, and Authorities

The FSM Plan assigns clear responsibility for every safety lifecycle activity, from HAZOP facilitation through SIL determination, SRS development, design, verification, commissioning, validation, operation, maintenance, and decommissioning. It identifies the organizations, roles, and individuals responsible for each activity and defines the authority to approve key deliverables.

Competency Requirements and Assurance

IEC 61511 requires that persons performing safety lifecycle activities are competent to do so. The FSM Plan defines the competency requirements for each safety lifecycle role, the evidence that will be used to confirm competency, and the process for managing competency gaps. This includes both technical competency in functional safety methods and process knowledge specific to the facility and industry.

Documentation and Configuration Management

The FSM Plan defines the documentation structure for the safety lifecycle, naming each required deliverable, its content requirements, the responsible author, the review and approval process, and the version control and storage arrangements. Configuration management requirements ensure that as-built documentation accurately reflects the installed and maintained system throughout its operating life.

Management of Change

Changes to safety-related systems, whether to hardware, software, operating procedures, process conditions, or risk assumptions, must be assessed for their impact on functional safety before implementation. The FSM Plan defines the management of the change process, including the trigger criteria for a formal safety impact assessment, the required level of review, and the documentation requirements for approved changes.

FSM Audit and Internal Assessment

The FSM Plan defines the schedule and scope of internal audits of the FSM system itself. FSM audits confirm that safety lifecycle activities are being carried out in accordance with the plan, that documentation is complete and current, and that non-conformances are being identified and resolved.

Incident Investigation and Learning

The FSM Plan defines how safety-related incidents, dangerous occurrences, and near-misses are investigated, how findings are documented, and how corrective actions are tracked to closure and fed back into the safety management system.

Standards Alignment

Our FSM documentation work is structured to meet the requirements of:

  • IEC 61511-1: Functional safety lifecycle requirements, which define the documentation, traceability, and management system requirements that digitization must support and maintain
  • IEC 61511-1 Clause 6: FSM Plan requirements for documentation control, configuration management, and management of change, which digital systems must reflect and operationalize
  • IEC 61508 Part 3: Software lifecycle requirements applicable to safety management software tools used in the functional safety lifecycle
  • ISA/IEC 62443: Security requirements for industrial automation and control systems, applied to the OT-connected digital platforms that support functional safety management
  • IEC 27001: Information security management principles applied to the protection of safety lifecycle data and the systems that hold it
FSM Across the Safety Lifecycle

Functional Safety Management is not a project-phase activity. It runs in parallel with every phase of the safety lifecycle and continues through the operating life of the system. The key FSM touchpoints are:

  • Concept and design phases: FSM Plan development, role and competency assignments, documentation framework establishment, project-phase transition approvals
  • Hazard analysis and SIL determination: competency confirmation for study facilitators and team members, record-keeping requirements, and independent review arrangements
  • SRS and design: document control, design review and approval records, management of change trigger confirmation
  • Verification and validation: V&V plan approval, test record management, deviation tracking and closure, PSSR sign-off authorities
  • Operation and maintenance: proof test scheduling and record management, management of change for operational modifications, ongoing competency maintenance, incident reporting, and investigation
  • Decommissioning: lifecycle closure documentation, record retention, and safety case handover
Our Approach

We develop FSM documentation that is practical, proportionate, and aligned to how the organization actually works. An FSM Plan that does not reflect the real structure of the project or facility is not a working management tool.

01

Scope and Context Assessment

We review the project or facility scope, the organizational structure, the applicable standards, and any existing safety management documentation. We identify what FSM documentation is required, what already exists, and what gaps need to be closed.

02

FSM Plan Development

We develop the FSM Plan in full, covering all required content under IEC 61511 Clause 6. Where the organization has existing management system frameworks, we align the FSM Plan with those frameworks rather than creating a parallel structure that adds administrative burden.

03

Supporting Procedures and Templates

We develop the supporting procedures, forms, and templates that make the FSM Plan operational. This includes management of change assessment forms, competency record templates, audit checklists, incident investigation forms, and document control procedures tailored to the project or facility.

04

Review, Training, and Handoff

We review the completed FSM documentation with the responsible team, confirm that roles and responsibilities are understood, and ensure the documentation is ready for use from the first safety lifecycle activity through to decommissioning.

Industries We Protect
Oil & Gas
OIL & GAS

Securing exploration, production, and distribution systems.

Manufacturing
MANUFACTURING

Securing exploration, production, and distribution systems.
Energy & Utilities
ENERGY

Safeguarding generation, transmission, and control centers.
Automotive
UTILITIES

Enabling resilient and secure operations for utility providers.

Pharmaceuticals
PHARMACEUTICALS

Ensuring compliance, protecting formulas and IP.
Automotive
MINING

Defending smart factories and connected production lines.

What Comprehensive FSM Documentation Helps You Achieve
  • Confidence that every person performing safety lifecycle work is competent to do so, with records to demonstrate it
  • A controlled, traceable change management process that ensures modifications to safety-related systems are assessed, approved, and documented before implementation
  • Audit-ready lifecycle documentation that supports functional safety assessments at every stage, from early design through to operation and decommissioning
  • A working incident investigation and learning process that feeds safety management improvement back into the FSM system
Typical Deliverables
  • FSM Plan covering all IEC 61511 Clause 6 requirements, including scope, lifecycle coverage, roles and responsibilities, competency requirements, documentation framework, management of change, audit schedule, and incident investigation arrangements
  • A competency matrix defining requirements for each safety lifecycle role and the evidence accepted to demonstrate compliance
  • Management of change procedure and assessment form
  • Document control and configuration management procedure
  • FSM audit checklist and schedule
  • Supporting forms and templates for each lifecycle phase as required
  • Incident investigation procedure and reporting template
Why Arista Cyber for FSM Documentation?

Safety management in modern industrial environments must account for a dimension that IEC 61511 did not fully anticipate when it was first written: the role of software, firmware, and networked OT systems in the functional safety lifecycle. A management of change process that covers mechanical and electrical modifications but has no defined procedure for firmware updates, configuration changes to programmable logic controllers, or modifications to safety network architecture is incomplete.

What clients value about working with us:
  • FSM documentation that reflects the full scope of modern SIS environments, including cybersecurity-relevant change management and configuration control requirements for software-intensive safety systems
  • Practical, proportionate FSM plans that give organizations a working management framework rather than a compliance document that sits on a shelf
  • Alignment with existing management system structures, reducing duplication, and making FSM processes easier to embed into day-to-day operations
  • Lifecycle thinking: FSM documentation developed with a clear understanding of how it will be used at every phase, from design through to long-term operation and modification
  • Deep operational experience across high-consequence sectors, including oil and gas, energy, pharmaceuticals, and process manufacturing

We do more than produce documents. We help organizations build a functional safety management culture that keeps people, plant, and environment protected throughout the full operating life of their safety systems.

Ready to Build Your Functional Safety Management Framework?

Reach out to our functional safety team. We will assess your current FSM documentation, identify what is required under IEC 61511, and develop a plan and supporting documentation that fits your organization and project.

Book Your Free Consultation