Board Safety Oversight: 7 Questions Directors Should Ask Before the Next SIF

Board safety oversight is the discipline of asking whether the organization can prevent, detect, and govern serious injury and fatality risk before the next event makes the weakness public. A board that reviews TRIR once a quarter may feel informed, although it may still know very little about SIF exposure, failed controls, contractor risk, or the decisions that operations deferred.

Why board safety oversight cannot stop at the dashboard

A safety dashboard is useful only when it helps directors challenge whether serious-risk decisions are being made at the right level. The board does not need to manage permits, audits, or toolbox talks, but it does need evidence that executives can see the exposures that could kill someone.

The legal language around board duty varies by jurisdiction, and this article is not legal advice. The practical governance principle is simpler. Directors are expected to exercise informed oversight over material risks, and a fatality, repeated serious incident, regulator intervention, or public enforcement action can become material very quickly.

Across 25+ years leading EHS at multinationals, Andreza Araujo has seen a recurring failure in executive rooms. Leaders discuss safety as a values statement, then ask for a lagging-rate chart that cannot show whether the most dangerous work is controlled today. The thesis here is that board safety oversight should test decisions, not admire indicators.

1. Which SIF exposures are on the board agenda this quarter?

The first board question should name the serious injury and fatality exposures that could credibly occur in the business. If the agenda only says safety performance, the discussion can drift toward averages, campaign activity, and the absence of recordable injuries.

SIF risk is uneven. One business unit may have low TRIR and high exposure to working at height, energized work, mobile equipment, confined spaces, or contractor lifting. Another may show more minor injuries while carrying less fatal potential. The board should not treat those profiles as equivalent.

The practical test is whether management can identify the top five SIF scenarios, the critical controls attached to each scenario, and the owner who can fund or stop the work if a control fails. That connects board oversight with SIF precursor metrics that reveal fatal risk, because the question moves from how many injuries occurred to which severe pathways remain open.

2. What evidence proves the critical controls work in the field?

Directors should ask for evidence that critical controls are working where exposure happens, not only that corporate standards exist. A policy, audit score, or signed permit can be real and still fail to prove that the worker was protected during the job.

As Andreza Araujo argues in Safety Culture: From Theory to Practice, declared culture and operated culture separate most clearly under pressure. Declared culture says the board has a standard for isolation, lifting, guarding, or rescue. Operated culture shows whether supervisors verify the barrier before people rely on it.

A board-ready answer should include field verification results, failed-control trends, repeat gaps, and the decisions triggered by those findings. The evidence standard should resemble critical control verification, where the question is whether the barrier can interrupt the credible severe outcome, not whether the file looks complete.

3. Which safety metric could be hiding the largest risk?

The board should ask which metric is most likely to create false confidence. TRIR, LTIFR, DART, and severity rate can all help governance, although each one can also hide serious exposure when it is read without context.

The trap is especially visible in organizations that celebrate a recordable-rate decline while near-miss reporting collapses, contractor observations disappear, or SIF precursors remain unchanged. That pattern can mean performance improved, but it can also mean the organization learned to report less.

Andreza Araujo's Portuguese title Muito Alem do Zero, glossed in English as Far Beyond Zero, challenges the belief that zero is always a clean managerial signal. The board should ask for one uncomfortable metric beside every favorable rate, such as serious near misses, critical-control failures, open high-risk actions, or underreporting signals the board should challenge.

4. Who can stop work when a board-level risk is visible?

Board safety oversight becomes weak when authority does not match exposure. If a site manager can see a failing control but cannot stop a production campaign, delay a launch, reject a contractor, or request capital, the risk has outrun the governance model.

This is not a request for directors to intervene in daily operations. It is a request for directors to verify that escalation lines work before a fatality tests them. Serious-risk governance should show who can pause work, who decides restart, and what evidence is required before exposure resumes.

During the PepsiCo South America tenure, where the accident ratio fell 50% in six months, Andreza Araujo learned that improvement depended on decision speed as much as technical knowledge. The board should therefore ask for examples from the last 90 days in which safety evidence changed an operational decision.

5. What happens after the first warning sign?

A board should know how management treats weak signals before they become serious incidents. Repeated near misses, bypassed controls, overdue corrective actions, and informal contractor complaints are not administrative noise when they point to the same severe pathway.

James Reason's work on defenses and latent conditions remains useful because it keeps leaders from treating the last person in the chain as the whole cause. A board that asks only who made the error misses whether leadership saw the warning pattern and failed to act.

The stronger question is procedural and cultural at the same time. When the first warning appears, who receives it, how fast is it escalated, what decision can it trigger, and how is closure tested in the field? If the answer is training, memo, and closed action, the board has not yet seen proof that risk changed.

6. Are contractors inside the same governance system?

Contractor risk belongs on the board agenda when outsourced work carries SIF exposure. Many companies govern employee safety with one rhythm and contractor safety with another, even though the fatality does not respect the payroll boundary.

In more than 250 cultural-transformation projects supported by Andreza Araujo's team, contractor safety often exposes the gap between procurement language and field control. The contract may demand compliance, but the worksite may reward speed, lowest price, or weak supervision.

Directors should ask whether contractor selection, mobilization, field verification, and post-job evaluation use the same serious-risk logic as internal operations. The board does not need every contractor scorecard, but it does need to know whether high-risk vendors can be blocked, coached, or removed before a severe event.

7. What is the first 72-hour governance routine after a serious incident?

The board should understand the first 72 hours after a serious incident before the organization needs that routine. In the first three days, leadership decisions shape care for people, evidence preservation, regulator communication, family contact, investor confidence, and the credibility of the investigation.

A weak plan treats the first 72 hours as a communications exercise. A stronger plan separates emergency response, family support, operational stabilization, evidence control, board notification, and executive decision rights. Those streams overlap, but they cannot be improvised by the same exhausted leadership group.

This is where safety leadership connects with serious incident communication. The board should ask for a tested playbook, named owners, and one simulation per year that includes the CEO, legal, operations, EHS, HR, and site leadership.

Each quarter in which the board reviews safety without testing SIF exposure, control evidence, and escalation authority leaves directors informed about activity while possibly blind to material risk.

Board safety oversight questions that change decisions

These questions make safety visible as a board responsibility without turning directors into site supervisors. They force the executive team to prove that the organization can see severe exposure, act on weak signals, and govern controls before harm occurs.

Conclusion

Board safety oversight should make serious-risk decisions visible before a fatality, regulator action, or public crisis exposes the weakness. The board does not need more safety theater. It needs evidence, escalation, and decision quality.

If your executive team needs to connect board governance, safety culture, and SIF control assurance, request a diagnostic through Andreza Araujo. Safety is about coming home, and the board has a role in making that sentence operational.