Every organisation I speak with across the Caribbean acknowledges that ESG matters. They have policies. They have committees. Several have published sustainability reports. What very few of them have is the ability to answer, with confidence and supporting evidence, the questions that regulators, investors, and sophisticated counterparties are now asking.

Questions such as: How do you know your Scope 1 emissions figure is accurate? Can you demonstrate that your board’s ESG oversight is functioning as your governance framework describes? What is the control that prevents your social programme metrics from being overstated? What evidence can you provide that your supply chain human rights commitments are being implemented and monitored?

These are audit questions. And the gap between having ESG policies and being able to answer ESG audit questions is, in most Caribbean organisations, very wide. This article is a practitioner’s guide to closing that gap — structured around Dawgen Global’s DAWGEN ESG Assurance Framework™ (DESGAF™) and the internationally recognised standards that underpin it.

 

Core Insight ESG policies create obligations. ESG controls create accountability. ESG audit creates credibility. Organisations that conflate the first with the latter two will find themselves exposed when regulators, investors, or journalists test the gap between stated commitments and demonstrable practice.

Step One: Know What You Are Auditing

The first discipline of credible ESG assurance is defining scope with precision. ESG is a broad construct spanning dozens of potential topics — from carbon emissions and water use to board diversity, supply chain labour conditions, anti-corruption programmes, and climate scenario analysis. No single audit engagement can address all of them meaningfully.

The DESGAF™ framework begins with a structured materiality assessment review to determine which ESG topics are most significant to the organisation and its stakeholders, and therefore warrant audit attention. This is consistent with the GRI Standards’ concept of double materiality — assessing both the financial impact of ESG issues on the organisation and the organisation’s impact on the environment and society — and with IFRS S1’s requirement to disclose material sustainability-related risks and opportunities.

 

Audit Scope Definition Checklist

• Obtain and review the organisation’s most recent materiality assessment. Is it current (within two years)? Was it externally validated? Does it reflect stakeholder input?
• Map material ESG topics to the organisation’s applicable reporting frameworks (GRI Standards, IFRS S1/S2, sector-specific standards).
• Identify the ESG disclosures that carry the highest stakeholder reliance and regulatory exposure. These are the priority audit areas.
• Confirm the reporting boundary: which entities, facilities, and time periods are in scope for the sustainability report and therefore for the audit?
• Establish the applicable criteria against which ESG information will be assessed (GRI Standards, IFRS S1/S2, or a hybrid framework).

 

Step Two: Audit the Governance Layer

ESG governance audit is frequently undervalued relative to data and disclosure audit. This is a strategic error. Governance is the foundation upon which controls and data quality are built. Weak governance — unclear accountability, absent board oversight, unpopulated policies — is predictive of weak controls and unreliable data.

Under IFRS S1, organisations are required to disclose information about the governance processes, controls, and procedures used to monitor, manage, and oversee sustainability-related risks and opportunities. This disclosure must be substantiated. Internal audit’s role is to determine whether the governance structures described in the disclosure actually exist and function as described.

 

Key Governance Audit Procedures

1. Inspect the board charter and committee terms of reference. Confirm that ESG oversight responsibilities are explicitly assigned and are not merely implied.
2. Review board and committee minutes for the audit period. Assess whether ESG matters are discussed substantively, not merely acknowledged.
3. Evaluate the ESG information reported to the board. Is it timely, accurate, and sufficient for the board to discharge its oversight responsibilities?
4. Assess whether ESG-related executive compensation linkages exist and are functioning as disclosed.
5. Review the organisation’s ESG policy suite. Confirm policies are current (approved within the past two years), signed by appropriate authority, and communicated to relevant personnel.
6. Evaluate whether the organisation has conducted a formal stakeholder engagement process to inform its ESG strategy and reporting.

 

Audit Alert: The Governance Disclosure Trap A common finding in ESG governance audits is what practitioners call the ‘governance disclosure trap’: organisations disclose detailed governance frameworks (sustainability committees, ESG board reporting, executive accountability) that, on audit examination, are largely aspirational. Committee terms of reference exist but committees have never convened. ESG reporting to the board occurs annually rather than quarterly as disclosed. These gaps are critical findings that carry regulatory and reputational consequences.

Step Three: Test the Controls

Controls are the mechanisms through which ESG policies are implemented in practice. ISO 14001 and ISO 45001 provide structured frameworks for environmental and occupational health and safety control systems respectively. The internal auditor’s task is to assess both design effectiveness (are the right controls in place?) and operating effectiveness (are those controls working?).

Environmental Controls (ISO 14001)

For organisations operating under or seeking alignment with ISO 14001, the audit should evaluate:

• Whether all significant environmental aspects and impacts have been identified and are current.
• Whether a current legal register exists and is reviewed at least annually against applicable environmental regulations.
• Whether environmental objectives are measurable, monitored, and linked to operational plans.
• Whether monitoring data (energy, emissions, waste, water) is collected systematically and accurately, with appropriate management review.

 

OHS Controls (ISO 45001)

ISO 45001 audits focus on the effectiveness of hazard identification, risk assessment, and control implementation. Critical audit procedures include:

• Reviewing a sample of hazard assessments to confirm completeness and currency.
• Testing incident reporting data against source records (accident registers, first aid logs) to assess completeness and accuracy.
• Verifying that corrective actions from prior incidents are formally tracked and closed out with evidence.
• Assessing worker consultation mechanisms to confirm they are operational, not cosmetic.

 

Step Four: Verify the Data

ESG data verification is the most technically demanding component of an ESG audit. It requires the auditor to trace reported metrics from the published sustainability disclosure back to the source data — whether that is utility invoices, meter readings, HR system exports, or production records — and to independently confirm that the figures are mathematically accurate, definitionally consistent, and appropriately aggregated.

 

The Five Data Quality Tests

 

1	Accuracy Reperform calculations independently from source data. For emissions: recalculate Scope 1 and 2 using raw consumption data and current emission factors. Compare to reported figures. Variances above 5% warrant investigation.

 

2	Completeness Confirm all in-scope entities, facilities, and reporting periods are included in the reported figures. Cross-check the entity list in the sustainability report against the legal entity structure. Identify any unexplained exclusions.

 

3	Consistency Compare metric definitions, calculation methodologies, and boundary conditions year-on-year. Identify any changes in methodology. Confirm that material changes are disclosed and prior year comparatives are restated where appropriate.

 

4	Transparency Verify that the assumptions, emission factors, conversion factors, and methodological choices underlying reported figures are disclosed in the sustainability report or methodology notes. Undisclosed assumptions are a red flag.

 

5	Governance Assess the data governance framework: are there formal data owners for each ESG metric? Is there a documented review and sign-off process? Are version controls maintained for ESG data workbooks and systems?

 

Step Five: Assess the Disclosure

The final step is evaluating whether the sustainability disclosure — the report, filing, or disclosure package — fairly represents the organisation’s ESG performance and is compliant with the applicable reporting framework.

 

GRI Standards Compliance Assessment

Under the GRI Standards, organisations claiming to report ‘in accordance’ with GRI must meet specific disclosure requirements under GRI 2 (General Disclosures) and GRI 3 (Material Topics), and must report on all applicable topic standards for their material topics. The auditor evaluates:

• Whether all required GRI 2 disclosures are present and accurate.
• Whether the materiality determination process (GRI 3-1 and 3-2) is documented, credible, and current.
• Whether all material topic disclosures are present and supported by the data verified in Step Four.
• Whether the organisation’s GRI content index is complete and accurately references the relevant sections of the report.

 

IFRS S1 & S2 Assurance Considerations

For organisations subject to IFRS S1 and S2 — whether by regulatory requirement or voluntary adoption — the disclosure audit covers four domains: Governance, Strategy, Risk Management, and Metrics and Targets. For IFRS S2 specifically, the auditor must assess:

• Whether climate-related risks and opportunities have been identified through a robust process, including physical and transition risks across short, medium, and long time horizons.
• Whether climate scenario analysis has been conducted using credible, published scenarios and whether the analysis has informed the organisation’s strategy.
• Whether Scope 1, 2, and (where required) Scope 3 emissions are reported in accordance with the GHG Protocol Corporate Standard.
• Whether climate-related targets are disclosed with clear baselines, timelines, and interim milestones.

 

The Assurance Report: Concluding with Credibility

The culmination of the DESGAF™ audit process is an assurance report that communicates conclusions clearly, transparently, and in a manner consistent with the applicable assurance standard. For internal audit engagements, this takes the form of an internal audit report rated by finding severity. For external assurance engagements conducted under ISAE 3000 or ISAE 3410, the report follows the prescribed format for limited or reasonable assurance conclusions.

In either case, the quality of the assurance conclusion is directly determined by the quality of the evidence gathered. A well-executed DESGAF™ engagement produces a working paper trail that documents every test performed, every source examined, every calculation reperformed, and every judgement made. This documentation is the foundation of defensible, credible ESG assurance.

 

The Bottom Line for Caribbean Organisations ESG assurance is no longer optional for organisations seeking regulatory compliance, investor confidence, and stakeholder trust. The question is not whether to pursue ESG assurance — it is how to pursue it credibly. Dawgen Global’s DESGAF™ framework provides the structured methodology, working papers, checklists, and practitioner expertise to deliver ESG audit with the rigour that the moment demands.

Dawgen Global is a multidisciplinary professional services firm serving the Caribbean region with capabilities spanning audit and assurance, tax advisory, risk management, IT governance, cybersecurity, and ESG advisory. DESGAF™ is a proprietary methodology developed exclusively by Dawgen Global.

 

Is Your ESG Assurance Programme Audit-Ready? Dawgen Global’s DESGAF™ specialists provide end-to-end ESG internal audit support — from engagement scoping and working papers to final assurance reports and board presentations. Send us your enquiry today Email: [email protected]  |  Tel: +1 (876) 929-3670  |  +1 (876) 665-5926  |  US: 1-855-354-2447 www.dawgen.global  —  Big Firm Capabilities. Caribbean Understanding.

About Dawgen Global