OSHA reports 18,000 injuries and more than 800 deaths every year from workplace accidents involving machines. While your workplace may have the proper machine safety standards in place, many do not.
“Employee exposure to unguarded or inadequately guarded machines is prevalent in many workplaces.” — OSHA
If one of your workers is injured on the job, you may have significant liability. Work injuries cost companies an average of $43,000 per incident. Deaths average $1.4 million. Plus, there can be additional medical and legal fees associated with lawsuits.
Accidents also shut down your production lines and stop throughput. Every year, more than 70 million hours of productivity are lost from work-related injuries, accounting for more than $53 billion in productivity and wage losses. That doesn’t include $59 billion in administrative costs or any damage to your equipment.
Automation and modern workplaces have made machine safety more complex. Physical machine guarding is essential, but they are not always sufficient, especially if you operate equipment that spans multiple modes or require frequent human interaction.
This guide covers:
- OSHA machine guarding requirements and regulatory compliance
- International safety standards. including ISO 13849 and IEC 62061
- Robot safety and collaborative automation considerations
- Machine safety risk assessment methodology
- Implementation strategies and manufacturing safety program management
- Advanced considerations for software-driven safety systems
OSHA Machine Guarding Requirements
OSHA 29 CFR 1910.212 establishes performance-based OSHA machine guarding requirements. While defining what must be protected, it does not explicitly detail how to implement machine and manufacturing safety. This approach allows modern methods, such as presence-sensing and safety-rated control systems but places the responsibility on employers to demonstrate that the method they choose provides effective protection.
Machine guarding violations consistently rank among OSHA’s most frequently cited standards, alongside lockout/tagout and hazard communication.
Core OSHA Requirements
Employers must protect employees from hazards at points of operation, rotating components, and power transmission systems, using safeguards appropriate to the machine, task, and operating conditions.
Point-of-operation guarding applies wherever material is cut, formed, or otherwise processed. For example, dies, blades, presses, and forming tools require protection through safety guards, devices, or distance. Power transmission guarding is needed for belts, chains, gears, shafts, pulleys, and sprockets, which present entanglement and pinch hazards even outside the primary work area.
Machine guarding intersects with several related OSHA standards, including:
- Lockout/tagout requirements: Energy control during servicing and maintenance
- Electrical safety standards: Grounding, shock hazards, and arc exposure
- Employee training: Training on machine hazards and safeguarding methods
Machine Guarding Types and Selection
The type of safety guards you choose should match operational needs, risk, and frequency levels.
Fixed Machine Guards
Fixed guards are permanent barriers and offer simple, reliable protection where access is infrequent. Because they are simple devices, there’s also little maintenance. However, they can be inconvenient when service is needed. If they aren’t well-designed or matched to the right access level, it can encourage employees to remove them.
Interlocked Machine Guards
Interlocked guards allow frequent access without sacrificing protection. Guard interlocking prevents workers from opening machines until all potentially hazardous motion has stopped. This is especially important for machines that may take time to wind down. At the same time, it also prevents motion when safety guards are open.
Switch technologies include mechanical contacts or coded RFID systems, with higher coding levels offering greater resistance to defeat.
Adjustable Machine Guards
Adjustable and self-adjusting guards accommodate a range of material sizes and are commonly used on saws and similar equipment. These designs require careful attention to gap prevention to avoid exposure during adjustments or during operation.
Presence-sensing Devices
Presence-sensing devices such as light curtains, laser scanners, and pressure mats enable access without physical barriers. Effectiveness, however, depends on correct application, response time calculations, installation integrity, and validation.
International Safety Standards Framework
While OSHA establishes enforceable requirements, there are several international standards that are industry standards with proven, structured methods for risk assessment and demonstrating machine safety in the workplace.
Standards Hierarchy
Machine safety standards follow a three-tier hierarchy:
- Type A standards define general principles and terminology.
- Type B standards address specific safety aspects or safeguarding devices.
- Type C standards provide detailed requirements for specific machine categories and take precedence when applicable.
It’s not that simple, however. Modern equipment often requires applying multiple standards simultaneously. For example, a robotic cell may require Type C robot safety standards as well as Type B interlock or sensing standards and Type A risk assessment principles.
ISO 13849: Safety-Related Parts of Control Systems
ISO 13849, revised in 2023, governs the design of safety-related control systems across mechanical, hydraulic, pneumatic, electrical, and electronic technologies. It is foundational for machinery incorporating programmable safety controls.
As part of this process, you need to consider performance levels and risk assessments, adjust for architectural categories, and measure your diagnostic coverage.
Performance Levels
Performance Levels range from PL a to PL e and correspond to the probability of dangerous failure.
Risk Assessment
Risk assessment will determine the required Performance Level based on injury severity, exposure frequency, and avoidance possibility. Your control system must achieve or exceed this requirement.
Architectural Categories
Architectural categories will define structural approaches. In some cases, this might mean basic safety controls and design. Other uses may require redundant systems with high fault detection.
Diagnostic Coverage
Diagnostic coverage measures how effectively dangerous failures are detected, while Mean Time to Dangerous Failure (MTTFD) quantifies component reliability. Together, these parameters determine the Performance Level achieved.
Validation
Manufacturing safety systems must also be tested and validated. This means validating systems work properly in place, rather than just in the lab or in simulations. It’s important to test the most common cases but also edge cases that may occur infrequently.
At the same time, you also need to consider less-than-optimal conditions. For example, a light curtain or scanner can drift over time, or an interlock may work when new, but performance may suffer as components degrade over time.
Concept | Purpose |
Performance Level (PL) | Defines probability of dangerous failure |
Architecture Category | Defines system structure and redundancy |
MTTFd | Measures component reliability |
Diagnostic Coverage | Measures fault detection effectiveness |
Validation | Confirms achieved PL meets requirements |
Avoiding Common Mistakes When Implementing ISO 13849
Common implementation errors include:
- Assuming catalog values apply without validation
- Overstating diagnostic coverage
- Failing to document the link between risk assessment and safety system design.
- Limited testing across core and edge cases
- No traceable documentation.
IEC 62061: Functional Safety of Electrical Control Systems
IEC 62061 focuses on the electrical, electronic, and programmable safety-related systems. The standard aligns closely with ISO 13849, allowing consistent safety performance across mixed systems.
Safety Integrity Levels
Safety Integrity Levels (SILs) map directly to performance levels:
- SIL 1: Lowest safety integrity, required for lower-risk applications.
- SIL 2: Intermediate safety integrity.
- SIL 3: Highest safety integrity required for high-risk machinery.
However, IEC 62061 places a greater emphasis on software development discipline, including structured coding practices, verification, and configuration management.
Safety Requirement Specification
The Safety Requirement Specification (SRS) translates your risk assessment results into detailed safety function definitions, including:
- Response times
- Fault behavior
- Safe states
- Mode-specific operation.
SRS documentation is used to govern industrial and manufacturing safety and for validation.
Robot Safety and Collaborative Automation
It’s estimated that there are more than six million industrial robots in service in 2026, and that number continues to grow. Likewise, collaborative robots (cobots) are also growing, increasing at about 20% per year. Many applications combine high-speed segregated operation with collaborative modes for specific tasks, requiring safety systems capable of switching behavior based on specific operating conditions.
Anytime there is the possibility of human-machine interactions, safety must be a priority.
Robot Safety Requirements
Robot safety standards should define:
- Perimeter guarding
- Presence sensing
- Safe limiting functions, such as safe torque off, safe speed, and safe position.
The Robotics Industries Association (RIA) updated its machine guarding regulation several years ago to align with ANSI R15.06, making risk assessments mandatory. Unfortunately, documentation focuses on training and checklists and often skips the risk assessment phase. This is critical to most operating cases, including teaching, maintenance, and tooling changes.
Even when organizations do proper testing and validation, the lack of risk assessment can miss scenarios or fail to guide robot safety strategies. That’s a big risk. In case of an incident, a lack of a risk assessment can open you up to greater liability.
Machine Safety Risk Assessment Methodology
Let’s look at how various regulations approach risk assessment:
- OSHA expects hazard evaluation, but it does not mandate a specific method.
- ANSI B11.0 promotes task-based risk assessment.
- ISO 12100 provides an internationally accepted framework.
A task-based approach is favored because it examines various use cases to find hazards that might otherwise be missed with state-based methods. For example, specific hazards during setup, cleaning, and maintenance.
An effective risk assessment process follows three distinct phases that build upon each other to systematically identify hazards, quantify their risks, and determine your mitigation strategies.
Hazard Identification
Hazard identification examines all potential sources of harm across mechanical, electrical, thermal, noise, vibration, and ergonomic categories.
This phase requires you to take a look at every operational mode, including normal production, setup and changeover, material loading, jam clearing, adjustment, maintenance, and cleaning. Each mode presents different access requirements and exposure patterns you need to document.
Risk Estimation
Risk estimation combines three elements to quantify the level of risk:
- Severity: Considers whether harm is reversible or irreversible and ranges from minor injuries to fatalities.
- Probability: Evaluates the likelihood of incidents based on historical data and failure mode analysis.
- Frequency of exposure: Focuses on how often and how long workers tend to enter hazardous zones.
Typically, a matrix is used to combine these parameters into overall risk ratings while individual elements provide guidance on the highest risks that require testing and validation.
Cybersecurity in Machine Safety
Automated systems are often networked, and the convergence of OT and IT creates new cybersecurity risks. Unless you have a hard-wired architecture, cybersecurity needs to be built into your machine safety design. Without safeguards, you’re risking a threat actor infiltrating your system and doing damage.
These types of incidents aren’t theoretical. A compromised machine safety system in an Iranian steel mill overrode safety protocols and effectively turned them into a weapon, causing a massive fire on the factory floor. In another incident, hackers launched malware called Pipedream that was built specifically to communicate and disrupt safety and control protocols used by hundreds of different PLCs.
Your safety systems must employ the same high-level cybersecurity that guards your networks, including:
- Zero Trust Network Access (ZTNA)
- Robust access control and authentication
- Network segmentation
- Software integrity verification
Don’t underestimate cybersecurity risks in your risk assessment.
Building an Effective Machine Safety Program
Industrial machine safety programs require integrating regulatory compliance, engineering standards, and operational realities, often in complex environments. The risks of poor assessment, integration, or documents are high, so you want to work with expert controls systems integrators who understand every aspect of machine safety.
The TÜV-certified functional safety engineers at Pacific Blue Engineering can support you at every step, including risk assessment, machine safety consulting, and integration.
FAQs — Frequently Asked Questions About Modern Machine Safety
What is the difference between ISO 13849 and IEC 62061?
ISO 13849 covers all control technologies, while IEC 62061 focuses specifically on electrical and programmable systems, though both standards align with similar safety performance levels.
When is a machine safety risk assessment required?
Risk assessments are required when installing or modifying equipment, after incidents, and periodically to verify continued effectiveness.
What are the most common OSHA machine guarding violations?
The most frequent violations include inadequate point-of-operation protection, missing guards on power transmission components, and improperly interlocked guards allowing access during hazardous motion.
How do I choose between fixed guards and interlocked guards?
Fixed guards provide simple, reliable protection when you don’t need routine access. Interlocked guards work best when you need frequent access to machinery.
How often should safety systems be validated and tested?
Initial validation occurs during commissioning, with annual functional testing (at a minimum), plus additional validation after any modifications, incidents, or operational changes to maintain manufacturing safety.
For all of your machine safety needs, contact Pacific Blue Engineering for a free consultation.
