The task of responding to brake pipe emergencies or penalties relied extensively on a driver’s memory, with limited processes in place to facilitate or cross-check a driver’s performance to ensure all safety-critical actions were completed.
Although BHP’s risk assessment for a rail-mounted equipment interaction incident identified numerous causes and critical controls for such an incident, it was broad in scope and had limited focus on the causes and critical controls for a train runaway event. In addition, the risk assessment did not include the procedure for responding to brake pipe emergencies and penalties as a critical control and BHP’s material risk control assessments (MRCAs) did not test the effectiveness of this procedural control for preventing an uncommanded movement of a train during main line operations.
There were inconsistences with Sydney Trains’ application of their fatigue management system, in particular the the use of a bio-mathematical model to predict individual fatigue risk. (Safety issue)
Sydney Trains did not provide supervision at Granville signal box to ensure there was adequate coverage on both signalling panels. (Safety issue)
The ASB rule NWT 308 and procedure NPR 703 did not provide sufficient description for the task of using protecting signals for an alternative route. (Safety issue)
The absence of authority-overrun protection (such as TPWS) at signal SST535 increased the potential consequences of a SPAD.
The train crew had not been trained to use forced lead function which would likely have allowed the train crew to regain control of the locomotives
Aurizon did not ensure train crews had a consistent understanding of how to safely change ends on banking locomotives
The park brakes were ineffective in holding the locomotives on the grade in Ardglen Yard
There was an unapproved practice occurring during Track Work Authority of asking the Outer Handsignaller to remove Railway Track Signals from the track as a train was closely approaching in order to let it run free, which placed the Outer Handsignaller at risk of being struck by the train.
Prior to the signal passed at danger (SPAD) occurrence in January 2018, Queensland Rail did not routinely and systematically analyse recorded data to determine driver compliance with key operational rules that had been designed to minimise the risk of SPADs.
After mandating the use of risk triggered commentary driving (in 2011) to mitigate the risk of signals passed at danger, Queensland Rail Citytrain did not provide the necessary support to its trainers, assessors and drivers to effectively maximise the potential benefits of the technique and minimise the potential limitations or risks associated with the technique.
The automatic warning system (AWS) provided the same audible alarm and visual indication to a driver on the approach to all restricted signals (that is, double yellow, yellow, flashing yellow and red aspects). The potential for habituation, and the absence of a higher priority alert when approaching a signal displaying a red aspect, reduced the effectiveness of the AWS to prevent signals passed at danger (SPADs). This placed substantial reliance on procedural or administrative controls to prevent SPADs, which are fundamentally limited in their effectiveness.
Queensland Rail’s management oversight of the Citytrain driver maintenance of competency (MOC) process did not include planned assurance activities or regular and effective auditing of how the MOC assessments were being conducted, even after there were multiple indications that the process was not being conducted as designed.
Pacific National’s inspection processes did not identify key structural points for inspection on RRYY class wagons, including the susceptibility to cracking in the junction between container loading outriggers, pull rod boxed opening, and the bottom centre sill sections. This reduced the likelihood of cracks being detected.
The ARTC systems for managing track lateral stability did not lead to the location being managed as a location potentially vulnerable to instability.
Response by Australian Rail Track Corporation (ARTC)
Pacific National's Freight Loading Manual did not require the use of radial unitising straps to prevent telescoping on jumbo coils where the thickness of the steel was greater than 2 mm.
Pacific National did not demonstrate that the load restraint system provided by demountable cradles carrying jumbo coils was safe and fit for purpose.
Pacific National's Freight Loading Manual did not require a combination of radial unitising straps on jumbo coils positioned such that a strap was always free from contact with the cradle. The provision of straps in this configuration would have reduced the risk of the coil telescoping in the event of strap breakage due to contact with the cradle.
Pacific National's Freight Loading Manual, specific to the loading and unitising of jumbo coils, did not require the use of rubber load mat on cradles. Consequently, there was no requirement to consider the condition of load mat during inspection and maintenance. This allowed the continued use of cradles without load mat, which decreased their effectiveness at restraining loads.
