Takeaways
- Sustainability risk and opportunity assessment helps Malaysian companies identify ESG matters that may affect strategy, financial performance, resilience, and reporting readiness.
- IFRS S1 and NSRF require companies to connect sustainability-related risks and opportunities with governance, strategy, risk management, metrics, targets, and business prospects.
- Companies should assess both risks and opportunities, including climate-related physical risks, transition risks, regulatory expectations, supply chain exposure, and sustainable business growth opportunities.
- Finance, sustainability, risk, operations, and senior management teams should work together to ensure sustainability disclosures are practical, evidence-based, and connected to business decision-making.
- Early preparation allows organisations to strengthen ESG governance, improve data quality, integrate sustainability into enterprise risk management, and prepare for future assurance expectations.
Sustainability is no longer only a corporate social responsibility topic. For Malaysian companies, it is becoming a boardroom, financial, operational, and reporting priority.
With the introduction of Malaysia’s National Sustainability Reporting Framework (NSRF) and the adoption of IFRS S1 and IFRS S2, companies are increasingly expected to explain how sustainability-related risks and opportunities may affect their business model, strategy, financial performance, cash flows, access to finance, and long-term resilience.
For companies that are still at the early stage of preparation, our article on ESG and NSRF Readiness for Malaysian Public Listed Companies: Where Should You Start? provides a useful starting point for understanding how organisations can strengthen their sustainability reporting foundation.
This article focuses on one important part of that preparation: sustainability risk and opportunity assessment.
A sustainability risk and opportunity assessment helps companies understand what could affect their business, where they are exposed, what opportunities may arise, and how these matters should be reflected in strategy, enterprise risk management, sustainability reporting, and climate-related disclosures.
Table of Contents
What Is a Sustainability Risk and Opportunity Assessment?
A sustainability risk and opportunity assessment is a structured process used to identify ESG and sustainability-related matters that may affect an organisation’s performance, resilience, value creation, and stakeholder confidence.
It typically examines risks and opportunities across areas such as:
- Climate change and extreme weather events
- Greenhouse gas emissions and decarbonisation
- Energy, water, waste, and resource efficiency
- Supply chain resilience and responsible sourcing
- Labour practices, health and safety, and human rights
- Regulatory changes and compliance requirements
- Market expectations, customer requirements, and investor scrutiny
- Reputation, governance, ethics, and transparency
For companies preparing for IFRS S1 and NSRF reporting in Malaysia, the assessment should not only ask, “What ESG issues are important?” It should also ask, “How could these sustainability matters affect our business prospects over the short, medium, and long term?”
Why This Matters Under IFRS S1 and NSRF
IFRS S1 requires companies to disclose material information about sustainability-related risks and opportunities that could reasonably be expected to affect the organisation’s prospects. This includes how these matters may influence cash flows, access to finance, cost of capital, business model, value chain, strategy, and decision-making.
Under the NSRF, Malaysian companies will need to progressively strengthen sustainability-related disclosures in line with ISSB standards. This creates new expectations for boards, senior management, finance teams, sustainability teams, and risk functions.
A company that has not assessed its sustainability risks and opportunities may struggle to answer key reporting questions, such as:
- What sustainability-related risks and opportunities are material to the business?
- How are these risks governed and monitored?
- How could they affect strategy and financial planning?
- What processes are used to identify, assess, prioritise, and manage them?
- What metrics and targets are used to monitor progress?
- How are climate-related risks connected to IFRS S2 disclosures?
This is why sustainability risk and opportunity assessment should be treated as a foundation for NSRF, IFRS S1, and IFRS S2 readiness.
Sustainability Risk Assessment vs Materiality Assessment
Many companies confuse sustainability risk assessment with materiality assessment. Although they are connected, they serve different purposes.
A materiality assessment helps identify the ESG topics that are most significant to the organisation and its stakeholders. It is often used to guide sustainability reporting content, stakeholder engagement, and ESG strategy.
A sustainability risk and opportunity assessment focuses more directly on the business implications of sustainability matters. It examines how sustainability-related issues may create financial, strategic, operational, regulatory, reputational, and market impacts.
For IFRS S1 and NSRF reporting, companies should ensure that material sustainability matters are translated into business-relevant risks and opportunities. This helps sustainability reporting become more decision-useful and better connected to governance, strategy, risk management, metrics, and targets.
Companies that want to strengthen their reporting foundation may also find our insight on Preparing for Sustainability Reporting Assurance in Malaysia useful, especially as sustainability disclosures become more data-driven and assurance-ready.
Common Sustainability Risks Malaysian Companies Should Consider
The specific risks will differ by sector, business model, location, and value chain. However, many Malaysian companies may need to consider the following categories.
1. Regulatory and reporting risks
Companies may face increasing expectations from regulators, investors, customers, lenders, and business partners to provide credible sustainability disclosures. Poor preparation may lead to reporting gaps, weak data quality, assurance challenges, and reputational concerns.
2. Climate-related physical risks
Floods, heat stress, water scarcity, storms, and other extreme weather events may affect assets, operations, supply chains, employee safety, insurance costs, and business continuity.
3. Climate-related transition risks
Policy changes, carbon pricing, customer requirements, technology shifts, energy transition, and market pressure may affect operating costs, competitiveness, product demand, and capital allocation.
4. Supply chain and procurement risks
Companies may be exposed to supplier ESG performance, labour practices, traceability issues, deforestation concerns, resource availability, logistics disruption, and international customer requirements.
5. Human capital and social risks
Workforce wellbeing, occupational safety, diversity, talent retention, skills development, and labour standards can affect productivity, compliance, reputation, and long-term business performance.
6. Governance and reputational risks
Weak ESG governance, greenwashing, poor internal controls, and inconsistent disclosures can undermine stakeholder trust and increase scrutiny from investors, regulators, customers, and the public.
Sustainability Opportunities Companies Should Not Overlook
A good assessment should not only focus on risks. IFRS S1 also requires companies to consider sustainability-related opportunities that could affect business prospects.
Examples of sustainability opportunities include:
- Cost savings from energy efficiency and resource optimisation
- Access to green financing, sustainability-linked loans, or investor interest
- Stronger customer relationships through improved ESG performance
- Product and service innovation linked to low-carbon or sustainable solutions
- Improved supply chain resilience and operational efficiency
- Better employee engagement and talent attraction
- Enhanced brand reputation and market differentiation
- Stronger readiness for climate-related disclosures and future assurance
For decision-makers, sustainability opportunities should be connected to business strategy, revenue growth, cost reduction, risk mitigation, and long-term resilience.
How Companies Can Conduct a Sustainability Risk and Opportunity Assessment
A practical assessment does not need to begin with a highly complex framework. Companies can start with a clear, structured process.
Step 1: Define the scope and business context
Start by clarifying the assessment scope. This may include business units, operations, subsidiaries, value chain activities, geographic locations, or specific reporting boundaries.
Companies should also review their business model, strategy, financial priorities, key stakeholders, regulatory obligations, and existing ESG commitments.
Step 2: Identify relevant sustainability matters
Identify sustainability-related risks and opportunities that may affect the organisation. Sources may include:
- Existing enterprise risk registers
- Sustainability reports and ESG disclosures
- Stakeholder feedback
- Customer and investor requirements
- Regulatory developments
- Industry standards and peer benchmarking
- Internal workshops with management and operational teams
- Climate-related risk and opportunity assessments
Companies that are assessing climate-related risks should also consider whether scenario analysis is required to better understand exposure under different future conditions. Our article on What CEOs and CFOs Should Know About Climate Scenario Analysis under IFRS S2 offers a helpful explanation for leadership teams.
Step 3: Assess business and financial implications
For each sustainability matter, assess how it may affect the business. Consider:
- Revenue and market demand
- Operating costs and capital expenditure
- Asset value and impairment risk
- Financing and insurance costs
- Supply chain reliability
- Regulatory compliance
- Reputation and stakeholder confidence
- Business continuity and operational resilience
This step is important because IFRS S1 focuses on sustainability-related risks and opportunities that may affect the company’s prospects.
Step 4: Prioritise risks and opportunities
Companies should prioritise identified matters based on likelihood, impact, time horizon, and strategic relevance.
It is useful to categorise risks and opportunities across:
- Short-term, medium-term, and long-term time horizons
- Financial, operational, regulatory, strategic, and reputational impact
- Current and anticipated effects
- Level of management control or influence
- Degree of stakeholder concern
The output may include a sustainability risk and opportunity register, prioritisation matrix, heatmap, or board-level summary.
Step 5: Integrate findings into governance and ERM
The assessment should not remain as a standalone sustainability document. It should be integrated into governance structures, enterprise risk management, internal controls, strategic planning, and reporting processes.
Boards and senior management should understand:
- Who is responsible for monitoring sustainability-related risks and opportunities
- How these matters are escalated to the board or relevant committees
- How sustainability risks are linked to corporate risk registers
- How mitigation plans, action owners, and timelines are tracked
- How sustainability opportunities are considered in strategy and investment decisions
Step 6: Link the assessment to metrics, targets, and reporting
The final step is to connect the assessment with disclosure readiness. Companies should identify relevant metrics, targets, data owners, reporting processes, and evidence required to support sustainability reporting.
Examples include:
- Scope 1, Scope 2, and Scope 3 greenhouse gas emissions
- Energy consumption and renewable energy use
- Water withdrawal and waste generation
- Health and safety indicators
- Supplier ESG assessment results
- Climate-related exposure indicators
- Capital expenditure linked to sustainability initiatives
- Progress against sustainability targets
For companies preparing greenhouse gas emissions data, our articles on What Malaysian Companies Need to Prepare Before a GHG Verification and How to Implement ISO 14064 for Verification in Malaysia: A Practical Guide for Companies can support better data readiness and assurance preparation.
What Companies Should Prepare Next
To prepare for IFRS S1 and NSRF reporting, companies should start strengthening their internal processes before reporting deadlines become urgent.
Practical next steps include:
- Establish a cross-functional sustainability reporting working group
- Identify sustainability-related risks and opportunities across the business and value chain
- Align ESG matters with the enterprise risk management framework
- Engage the board and senior management on sustainability governance
- Review current data availability, data owners, and internal controls
- Assess climate-related risks and opportunities in line with IFRS S2 expectations
- Develop a sustainability risk and opportunity register
- Link priority matters to metrics, targets, action plans, and reporting evidence
- Review gaps against NSRF, IFRS S1, and IFRS S2 disclosure expectations
Companies that take these steps early will be better prepared to produce credible, practical, and assurance-ready sustainability disclosures.
Conclusion
Sustainability risk and opportunity assessment is a practical foundation for companies preparing for IFRS S1, IFRS S2, and NSRF reporting in Malaysia.
By identifying business-relevant risks and opportunities early, organisations can strengthen ESG governance, improve reporting readiness, and make more informed decisions for long-term resilience.
Contact us to find out how Bernard Business Consulting can support your organisation with practical advisory, training, reporting, and implementation support related to Sustainability Risk and Opportunity Assessment.
eBook
The C-Suite Guide to Malaysia’s National Sustainability Reporting Framework (NSRF)
Developed by BBC’s ESG and sustainability consultants, this practical roadmap guide helps leaders understand, plan and apply the NSRF effectively. It provides a clear roadmap to strengthen governance, enhance reporting and create business value.