ESG and C: Does Cybersecurity Deserve Its Own Pillar in ESG Frameworks?

Share:

The ransomware attack on the Colonial Pipeline in May 2021 was just one of many signs that environmental and cybersecurity risk are closely connected. Thefts of personal information during a cybersecurity breach erode trust on the part of customers investors, employees and other stakeholders, demonstrating the link between cyber risk and social risk. The new disclosure and reporting requirements embedded in the Security and Exchange Commission’s latest regulations governing the oversight of cybersecurity underline the link between governance risk and cyber risk.

All this evidence shows that either cybersecurity is already part of ESG, and, perhaps, a more appropriate abbreviation should be ESGC. Most enterprise risk management policies have already expanded their oversight from purely financial risk to these other areas, including cybersecurity. Cyber risk can be as harmful to a company’s reputation and value as any other ESG issue, and the damage is inflicted and experienced in much the same way. As cyberattacks increase in size and frequency, the direct and indirect damage to companies — including loss of customer confidence, reputational damage, potential impact on the stock price and possible regulatory actions or litigation — arguably touches all aspects of ESG.

This convergence of these of risks is widely recognized across companies, investors and governments. The World Economic Forum’s Global Risk Report 2022 notes that the five main areas of risk are economic, geopolitical, social, environmental and technological. According to an RBC Global Asset Management Responsible Investment Survey, asset managers rank cybersecurity as their second-biggest concern among ESG-related themes. That places it above the environmental risks of climate change and water and the governance risk of shareholder rights and voting. The only ESG-related theme of higher concern is the governance-related risk of anti-corruption.

Cybersecurity is ranked at four on a scale where five means “Make or Break investment decisions” in almost all jurisdictions (U.S., Europe, Canada, and Asia, according to the RBC survey). Only in Asia did most respondents rank it at 3. Climate risk and cybersecurity/data privacy were also the two factors with the highest increase in percentage points in terms of what managers were “most closely focusing on” between 2020 and 2021. The response to the ransomware attack on the Colonial Pipeline, which involving a wide range of government bodies, also indicates how authorities are taking notice of ESGC.

It’s important for companies to respond to growing stakeholder concern about these issues through transparent disclosures that detail how they manage these risks across all the ESG pillars and, in some cases specifically, focus on the “C” of cybersecurity. Board oversight of cybersecurity and technological risk may be strengthened if it is handled by the same committee that oversees ESG risk.

Finally, companies should consider using cyber risk ratings to identify issues across public facing networks in the same way they use third-party environmental and social (sustainability) ratings. Like other ESG factors, cybersecurity risks need to be managed carefully all along the supply chains and not just in a company’s core business.

https://corpgov.law.harvard.edu/2022/11/14/esg-and-c-does-cybersecurity-deserve-its-own-pillar-in-esg-frameworks/

ESG and C: Does Cybersecurity Deserve Its Own Pillar in ESG Frameworks?

Leave a Comment

Your email address will not be published. Required fields are marked *

loader-image
London, GB
12:40 pm, Jul 10, 2025
weather icon 29°C
L: 27° | H: 30°
scattered clouds
Humidity: 42 %
Pressure: 1022 mb
Wind: 3 mph NNW
Wind Gust: 7 mph
UV Index: 0
Precipitation: 0 mm
Clouds: 25%
Rain Chance: 0%
Visibility: 10 km
Sunrise: 4:55 am
Sunset: 9:16 pm
DailyHourly
Daily ForecastHourly Forecast
Today 10:00 pm
weather icon
27° | 30°°C 0 mm 0% 7 mph 58 % 1022 mb 0 mm/h
Tomorrow 10:00 pm
weather icon
20° | 31°°C 0 mm 0% 8 mph 69 % 1021 mb 0 mm/h
Sat Jul 12 10:00 pm
weather icon
19° | 30°°C 0 mm 0% 10 mph 73 % 1018 mb 0 mm/h
Sun Jul 13 10:00 pm
weather icon
18° | 31°°C 0 mm 0% 5 mph 64 % 1015 mb 0 mm/h
Mon Jul 14 10:00 pm
weather icon
20° | 29°°C 1 mm 100% 15 mph 81 % 1018 mb 0 mm/h
Today 1:00 pm
weather icon
28° | 28°°C 0 mm 0% 5 mph 41 % 1022 mb 0 mm/h
Today 4:00 pm
weather icon
29° | 30°°C 0 mm 0% 6 mph 38 % 1022 mb 0 mm/h
Today 7:00 pm
weather icon
29° | 29°°C 0 mm 0% 7 mph 35 % 1021 mb 0 mm/h
Today 10:00 pm
weather icon
23° | 23°°C 0 mm 0% 7 mph 58 % 1021 mb 0 mm/h
Tomorrow 1:00 am
weather icon
20° | 20°°C 0 mm 0% 4 mph 64 % 1021 mb 0 mm/h
Tomorrow 4:00 am
weather icon
20° | 20°°C 0 mm 0% 3 mph 69 % 1021 mb 0 mm/h
Tomorrow 7:00 am
weather icon
21° | 21°°C 0 mm 0% 3 mph 64 % 1021 mb 0 mm/h
Tomorrow 10:00 am
weather icon
26° | 26°°C 0 mm 0% 3 mph 46 % 1021 mb 0 mm/h
Name Price24H (%)
Bitcoin(BTC)
€94,678.20
1.92%
Ethereum(ETH)
€2,368.32
5.93%
Tether(USDT)
€0.85
0.02%
XRP(XRP)
€2.08
2.99%
Solana(SOL)
€134.19
2.69%
USDC(USDC)
€0.85
0.00%
Dogecoin(DOGE)
€0.154079
4.52%
Shiba Inu(SHIB)
€0.000011
4.04%
Pepe(PEPE)
€0.000009
8.74%
Scroll to Top