Are environmental, social, and governance (ESG) programs mostly about environmental sustainability?

Culture & Values Governance, Risk & Compliance

331 views3 Upvotes4 Comments

Sort by:

CISO in Real Estate3 years ago

Broadening in definition rapidly, Carbon neautrality, decarbonisation, financial risk management based on climiate risk analysis , this is a new sector in development and certified B corp companies pushing hard to help us all realise our responsibilities.

President and National Managing Principal in Software3 years ago

ESG is an area that's pivoted out of traditional sustainability talks. It may start with the environment, but you can't have an ESG program without employee social governance aspects as well. It's a bit of a loaded question because ESG is now being reported on in companies’ 10-K reports, but that's where we were going.

CEO in Software3 years ago

I often struggle to think of sustainability without thinking about how a company can stay sustainable without considering employees. I see staffing as part of ESG.

CxO and Startup Advisor in Software3 years ago

ESG is an area that's had an increased amount of attention not only because of the environmental cost of climate change, which is a big risk to growth, but because of people as well. The social piece is becoming even more important. For example, people are discussing the ethics around leadership pay as billionaires have become even bigger billionaires during COVID. It's an ESG focus that will put controls around that.

Content you might like

What are the fundamental leadership capabilities that are needed for an era of exponential technology and AI innovation?

What is the biggest barrier to introducing more technology in classrooms, courses and companies?

The software costs too much30%

It takes too long to set things up and getting started41%

There is just not enough time to introduce anything at all19%

It is not clear that there are any benefits for us6%

There is not enough good technology2%

View Results

What are some ways that a leader can show their software staff that experimentation and failure are not only acceptable, but encouraged?

I am looking for insights on establishing an Architecture Review Board (ARB) within our organization. As we aim to enhance our architectural governance and ensure alignment with our strategic objectives, we recognize the importance of setting up an effective ARB. To this end, I would greatly appreciate your guidance on the following aspects: 1. Establishing a Charter: What key elements should be included in the ARB charter to clearly define its purpose, scope, and authority? 2. Member Selection: What criteria should we consider when selecting members for the ARB to ensure a diverse and knowledgeable board? 3. Review Process: Could you share best practices for structuring the review process to ensure thorough and consistent evaluations of architectural proposals? 4. Decision-Making: What are effective methods for making decisions within the ARB, and how can we ensure transparency and accountability? 5. Documentation and Communication: What templates or tools would you recommend for documenting reviews and communicating decisions to stakeholders? 6. Measuring Success: How can we establish criteria for measuring the success and impact of the ARB on our architectural practices? Your expertise and experience in this area would be invaluable to us as we embark on this initiative. Any additional insights or resources you could provide would be greatly appreciated.

How does your organization handle security team involvement in change requests submitted to CAB/RAB — specifically in relation to formal security review and approval?

Always required – Security must formally review and approve every change request.11%

Required for security-impacting changes – Security reviews only changes flagged as having potential security implications. Please comment : Who decides which changes require security review and which do not ? Is this determination manual or automated? How do you avoid gaps or oversights in this process ?82%

Not required – Security does not review changes submitted CAB/RAB by other teams. 7%

Risk-based or automated – Security involvement is determined by a tiered model or automated risk scoring within ITSM.