KPMG guide shows ESG becoming a board-level audit issue

ESG is moving from messaging to sign-off

ESG has stopped behaving like a communications topic and started looking like a board-level audit problem. KPMG’s guide for audit committees frames the shift plainly: what matters now is what is being reported, how it is measured, which controls support the data, and where assurance is needed.

For auditors and advisors inside KPMG, that changes the job. ESG work is no longer just about helping a client shape a narrative; it is about building a defensible file, escalating judgment calls, and standing up evidence that can survive audit committee scrutiny, regulator questions, and, in some cases, public challenge.

Why the pressure is rising now

The timing is not accidental. KPMG’s 2026 audit committee agenda says audit committees face an expanded remit driven by uncertainty, regulatory change, and technological disruption. In KPMG’s 2026 survey, 82% of board members said corporate reporting obligations have become a greater challenge, and 81% said the current regulatory landscape makes the director experience increasingly challenging.

That pressure lands directly on ESG because the reporting frameworks are no longer theoretical. KPMG identifies three main regimes as finalized: IFRS S1 and S2, the European Union’s CSRD and ESRS, and the SEC climate rule. IFRS S1 is effective for annual reporting periods beginning on or after 1 January 2024, and the European Commission says the first companies subject to CSRD had to apply the new rules for the first time in the 2024 financial year, with reports published in 2025.

The result is a faster-moving, more crowded reporting environment. Audit committees are being asked to oversee ESG disclosures at the same time they are dealing with financial reporting pressure, AI, cybersecurity, and data governance. KPMG’s Board Leadership Centre treats sustainability reporting as part of that broader oversight agenda, not as a standalone side project.

What this means for audit committees

The guide’s core message is that ESG now belongs in the same governance lane as other high-risk reporting matters. Audit committees need to know not only whether a company is publishing ESG disclosures, but whether those disclosures are complete, measured consistently, and backed by controls that can be tested.

That creates a more demanding set of questions for the room. Which disclosures are actually in scope? Which management controls are still missing? How do teams prepare for assurance over non-financial data? How do they explain judgment calls to boards and, if needed, to regulators?

Those questions matter because climate change is no longer framed as a soft-skill issue or a pure strategy conversation. KPMG says it now carries financial risk. Once that happens, ESG moves from the sustainability team into the same oversight zone that audit committees already use for other reporting risks.

The assurance gap is where the work piles up

The most practical pressure point is assurance. KPMG says external assurance over non-financial ESG disclosures can build trust in the accuracy and reliability of what organizations report. It also gives audit committees and boards more comfort about progress against targets and commitments.

But the guide also points to a common weakness: many organizations have standalone ESG teams that lack expertise in designing, implementing, and operating internal controls over non-financial data. That matters because ESG reporting only becomes board-ready when the underlying data is governed the way financial data is governed, with clear ownership, testing, and evidence trails.

For KPMG professionals, that translates into a bigger scope of work. Audit teams may need to probe data lineage, challenge calculation methods, document assumptions, and test whether management controls really work in practice. Advisory teams may need to help clients build those controls before assurance even starts. Either way, the work is moving deeper into process, documentation, and liability management.

The SEC and Europe show how unsettled the field remains

The global picture adds another layer of uncertainty. The SEC adopted climate disclosure rules on March 6, 2024, then later voted to end its defense of those rules. That sequence is a reminder that even when a framework looks settled, it can still become legally and politically unstable.

Europe is further along in implementation, but that does not make life easier for teams trying to align reporting across jurisdictions. CSRD and ESRS are now part of the live workload, and the European Commission’s timing means 2025 reporting is already in view for companies newly in scope. KPMG’s guide is useful precisely because it helps audit committees think through these moving parts as an oversight problem, not just a sustainability update.

For multinational clients, the challenge is no longer whether ESG will be reported. The challenge is which framework applies where, how controls differ across business units, and what evidence will satisfy both management and the audit committee when the numbers do not line up neatly across systems.

What the shift means for KPMG careers

This is also a professional-services story about capability. The ESG work now rewarding the most attention is the kind that already defines strong audit and advisory careers: evidence gathering, risk assessment, documentation, issue escalation, and clear communication with stakeholders.

That has a direct career consequence inside KPMG. Managers and senior managers who can read ESG through an audit committee lens will be better positioned than peers who only know the terminology. Partners will be expected to defend not just the client story, but the integrity of the reporting process behind it. And for staff coming up the track, ESG is becoming another place where the quality of the file matters as much as the quality of the idea.

The broader lesson is simple: ESG at KPMG is being pulled into the same discipline that governs financial reporting. The firms that handle that shift well will be the ones that can document more, challenge harder, and explain risk in language audit committees trust.