Ch. 1 (Intro)
- CAFO ensures that we operate the lab safely and in complicance with federal law and DOE policies
- Directorates operating accelerator facility elements need DAFOs, which must include BASs and BLAs and a USI process
Ch. 2 (Inventory of Accelerators)
- We need a list of the accelerators and RGDs on site
- Chief Safety Officer is responsible for maintaining that list
Ch. 3 (Roles and Responsibilities)
- Has a table with all of the accelerator facilities, the associates science programs, the programmatic responsibilities, and the operational responsibilities
- Accelerator facilities are a little different from the accelerator facility elements, e.g. the Linear Accelerator Facility is an accelerator facility and the copper linac is an accelerator facility element
- Lists a whole bunch of different roles at the lab (lab director, senior management, and so on down the list) and explains what each person's duties are
Ch. 4 (Hazard Analysis)
- Talks about building / modifying accelerator facilities, how to be safe during that process
- Mentions the need for ARRs as part of the hazard analysis for new facilities
- First place that SAD and ASE are mentioned as well as ODH documents
- Explains what these documents are, what they should look like, and who's responsible for making and updating them
- More discussion of different roles at the lab and their responsibilities specifically relating to hazard analysis
Ch. 5 (Operations Processes, Procedures, and Documentation)
- Lays out all of the controlled documents that need to exist at the directorate level if you want to run an accelerator (DAFO, SAD, ASE, BAS, BLA, ODH, and various more specific safety documents relating to PPS, BCS, etc.)
- Search procedures, safety system testing, alarm definition, emergency response, and so on
- Also discusses requirements for the documentation system in which these various controlled documents live. Basically, what do those documents need to include (e.g. signatures), where do they live, how do they get updated, and so on.
- More roles and responsibilities related to this stuff specifically
Ch. 6 (Operations Scheduling and Coordination)
- There must exist scheduling committees for the accelerator facilities and they should have certain people on them (a rep from each accelerator facility element and somoene from Facilities)
- Once schedules are made they need to be approved by the lab director and to ALDs of the relevant directorates, then shared with everyone
- These schedules can then get used for shift planning, electrical power purchasing, and so on
- There can exist other schedules (e.g. shift schedules, machine development, and so on) but they should also have their own rules laid out in controlled documents
- Yet more roles and responsibilities!
Ch. 7 (Training & Qualification)
- "Each directorate responsible for operating an accelerator facility element must have a documented training and qualification program that addresses the following minimum content for workers who require unescorted access to the facility element" --> radiological, cryogenic, worker safety and facility integrity
- Directorates operating AFEs must have a documented training and qualification program for people with special safety responsibilities (operating controls, searching, etc.)
- When training materials are updated, that has to be communicated to the staff somehow
- Roles and responsibilities
Ch. 8 (Accelerator Specific Hazards and Safety Systems)
- Starts by talking about how accelerators have accelerator-specific hazards and general industrial ones. The general industrial ones are handled in the ES&H Manual; the accelerator-specific ones are covered in CAFO.
- Talks about how we'll handle the main categories of accelerator-specific hazard (prompt ionizing radiation & ODH)
- Lists the important components of the Radiation Safety System (RSS) - shielding, BSOICs, BCS, and so on
- Mentions that radiation safety systems are discussed in greater detail in the Radiation Safety Systems Technical Basis Document and the Radiological Control Manual
- Gotta have a BAS for electron facilities / BLA for photon facilities if you want to run beam
- If you want to modify any items listed in the BAS or BLA, you have to go through the configuration management processes laid out in chapter 10. Gotta have WPC, gotta use the RSWCF process and also screen for USIs.
- As with the RSS, lists the things that are important for the ODH safety systems (air monitoring systems, warning systems, ventilation, safe zones)
- There is a document called the ODH Safety Review Form that looks specifically at ODH hazards and controls on a per-facility basis (CAFO tells you who's responsible for making that document)
- Working on ODH stuff follows a process that parallels the radiation protection stuff - there's an ODH Safety Work Control Form and you have to do a USI screening
- Roles and responsibilities
Ch. 9 (Credited Controls and Defense-In-Depth Controls)
- "DOE O 420.2C Order [1] defines Credited Controls as controls determined through safety analysis to be essential for safe accelerator facility operation directly related to the protection of personnel or the environment."
- There's a lot of detail at the beginning of this chapter - I think it's really worth reading since the credited vs. defense-in-depth thing is confusing
- Basically, credited controls are for more hazards things and DiD controls are for less hazardous things, but the distinction is kind of fuzzy. Both are mentioned in the SAD but DiD controls are not called out in the ASE, whereas credited controls are. They are both mentioned in BASs and BLAs.
- Since DiD controls are not in the ASE, if they are found broken that is not considered a violation of the ASE (and therefore a USI)
- Some examples of each type of control are given (helpful)
- "ESH Manual describes how engineered, administrative, and personal protective equipment controls are designated as credited or non-credited (Defense-in-Depth) controls and managed based upon that designation"
- Once shit is installed it has to undergo initial testing and then periodic re-testing to make sure it still works
- Roles and Responsibilities
- There's a helpful table showing a Venn Diagram of accelerator-specific and non-accelerator-specific credited and DiD controls and which documents mention them
Ch. 10 (Configuration Management for Accelerator Safety Systems)
- 420.2C says we have to have a configuration management program related to accelerator safety, so this chapter explains how we implement that at SLAC for all of our safety processes and equipment
- Conduct of Engineering document needs to be followed when designing and installing shit
- Whenever a change will be made, it can't result in a reduced level of safety afterwards. Everything needs to be reviewed and planned.
- Lays out the work planning and control process for safety systems step by step
- When different safety systems interact, there must be an interface control document (ICD) detailing how they interact and who's responsible for maintaining what
- Roles & responsibilities
Ch. 11 (Accelerator Sub-Systems)
- There are lots of sub-systems that accelerators rely on and this chapter talks about who provides resources to ensure they work properly and who's responsible for what
- There's a table of sub-systems that tells you who's responsible for what and which accelerator facilities rely on what
- Roles & responsibilities
Ch. 12 (Unreviewed Safety Issues (USIs))
- We document the hazards and how we're mitigating them in the ASE and SAD
- When we do stuff that has a big impact on safety we need to follow the USI process to evaluate the impact
- This also applies if we discover a hazardous situation (or a failed element of the ASE, or an oversight in the SAD)
- Safety systems have to follow the configuration management rules laid out in chapter 8, and normal work on these systems can be controlled by more routine processes like RSWCFs
- There's a helpful list of events that trigger the USI process, as well as a flowchart at the end of the chapter
- Anyone who notices a USI needs to report it and it then needs to go up the chain of command
- Specifies who's on the USI screening team
- If a USI screening is positive, the relevant accelerator facility has to be shut down until everything is resolved and the ALD, lab director, and DOE site office approve restart
- Roles & responsibilities (I think this is just every chapter so I'll stop listing this)
Ch. 13 (Contractor and Quality Assurance)
- Lots of very vague stuff about how the lab is going to ensure that it doesn't mismanage itself into oblivion
- Quality assurance program
- Work planning and control
- Enterprise risk management (interesting because each directorate has to conduct an annual review of organizational risks - wonder if lack of staffing made it into that). To be clear, I think these are organizational risks - not safety risks.
- More incomprehensible gobbledygook about ensuring excellence and how we track and respond to the issues raised during self-assessment by various organizations
- Lots of rules about what has to be tracked in the SLAC Issues and Improvements Management System (SIIMS) software
- This is great - there's a rule that boils down to "managers need to actually pay attention to their shit to make sure everything's still working and safe"
- Lessons learned is actually a formal thing - we have to share them around
Ch. 14 (Accelerator Readiness Reviews)
- Restates a bunch of previously stated stuff about how we assess and mitigate hazards (ASE, etc.)
- ARRs have to happen before requesting DOE permission for beam operation
- Lists all the shit you should have in order to pass an ARR
- Talks about pre-ARR reviews that managers can initiate if they want
Ch. 15 (Accelerator Facility Post-Operations Planning)
- This chapter's about how we shut down, decommission, and deconstruct stuff after we're done with it
- Lists the various different plans that need to be written up when shutting a facility down
- When shutting a facility down, we're supposed to think about how parts can be re-used and enter them into the DOE's database of inventory
Appendix A - definitions and acronyms
Appendix B - references (has links to lots of other documents)
Appendix C - example DAFO (pretty long)
Appendix D - USI screening form (also has instructions on how to use the form and some examples of potential USI situations)