Accounting
IAASB rolls out ISSA 5000 sustainability assurance standard
The International Auditing and Assurance Standards Board is preparing for the adoption of its International Standard on Sustainability Assurance 5000 early next year as companies look to get outside approval from auditing firms on their environmental efforts.
The IAASB
Policymakers, regulators and other standard-setting bodies in multiple jurisdictions have already indicated plans to adopt this new standard. Earlier this year the U.S. Securities and Exchange Commission recognized the IAASB’s work and standards in this area for the purpose of allowing assurance on climate disclosures, even though the SEC’s own
“ISSA 5000, which is our sustainability assurance standard, is meant to serve as a global baseline for sustainability assurance practices,” said IAASB chair Tom Seidenstein.
Once the PIOB certifies the IAASB standard, the IAASB plans to offer a range of guidance and educational materials to help people and other standard-setters with the application and implementation of ISSA 5000. So far, the IAASB has heard positive responses from standard-setters in various jurisdictions, including Australia, Canada, Brazil, Turkey and the European Union, about their intention of adopting some or all of the standard for their requirements. “That’s just the earliest stages,” said Seidenstein. “They were all waiting for us to finish the standard, and we’ll have to see how those considerations progress.”
ISSA 5000 builds on two of the IAASB’s existing standards on assurance:
“With the growing desire to have sustainability reporting throughout the world and the emergence of some of the leading reporting frameworks, we were urged to take what we had and make it specific to sustainability reporting,” said Seidenstein. “We took a pretty broad-based, principles-based framework that applied to all assurance and really focused it in, took our best practices on the assurance side, grabbed some of the key concepts that we’ve brought into the audit side, and made a sustainability-specific standard. Now what’s really important about this is it will work with all sustainability information prepared with any suitable reporting framework.”
That means it would work with not only the
The IAASB developed the standards so they could work with various frameworks. “Our standard covers any sustainability information, so that would be covered as long as the reporting framework fulfills certain criteria, then our standard will work against that,” said Seidenstein. “You’re assuring against a framework. Reporting standard-setters will set the framework.”
ISSA 5000 addresses both limited and reasonable assurance. “Most assurance engagements these days are on a limited assurance basis,” said Seidenstein, noting that both the SEC and CSRD rules require only limited assurance. But he believes investors will eventually be demanding the more stringent “reasonable assurance.”
“We wanted to have a clear pathway in our standards with a differentiation between limited and reachable assurance requirements, and ISSA 5000 provides both,” said Seidenstein.
Reasonable assurance is similar to the level of assurance offered in financial audits. “The assurance practitioner does a number of inquiries, does the risk assessment, responds to it and reduces the risk of material misstatement down to an acceptable level,” Seidenstein explained. “That’s really important, and will give a high-level degree of confidence that the sustainability reports are stated correctly. In the world of limited assurance, there’s less work done. It’s stated in a negative way, that there’s nothing that’s come to the attention of the practitioner that would lead them to believe that the statements are materially misstated. That’s really about a different type of risk assessment, different lines of inquiry, in responding to areas of risk, whereas a reasonable assurance engagement is much more robust. Most people are focused on limited right now to develop the capacity, knowledge and understanding as we then transition to reasonable assurance over time.”
However, the standards should help investors assess the reliability of a company’s sustainability reporting.
“What these standards will do, just like audit standards and just like assurance today, but in a much more specific way, will give the users of information more confidence that an external third party that’s independent and expert has reviewed the sustainability reports and can either provide a limited assurance or reasonable assurance opinion against the sustainability report, and that should give confidence,” said Seidenstein. “It’s the same thing as you would expect on the financial reporting side. It’s precisely why audits are important that you have an independent expert third party look at it to make sure that there’s no material misstatements.”
An
Auditors would follow many of the same basic approaches and methodologies in the world of financial auditing, from the planning to the conclusion to the reporting stages. “We focus very much on the planning, the risk assessment phase, the risk response phase of audits, so it’s very similar in many concepts, but translated to a sustainability context,” said Seidenstein. “What is slightly different in this world is first of all, you have much more qualitative and prospective information than you would in the financial reporting context, so you’re very focused on the process, the controls, the approach to making sure that the disclosures are materially correct.”
The IAASB wrote the standard so it can be used by both accountants and non-accountants since some other types of consulting firms that aren’t accounting firms have also been providing assurance on sustainability reporting, particularly when it comes to greenhouse gas emissions. IFAC’s
The report found the IAASB’s assurance standard, International Standard on Assurance Engagements 3000 (Revised), continues to be used most frequently. In the most recent year for which data is available (2022), 92% of firms applied ISAE 3000 (Revised) in their sustainability assurance engagements, 98% of companies reported some level of detail on sustainability, and 69% obtained assurance on at least some of their sustainability disclosures. But the mix of reporting standards used by companies remains fragmented
For ISSA 5000, non-accountant practitioners would still need to adhere to the IAASB’s quality management standards as well as the ethics standards developed by its sister standard-setting board, the International Ethics Standards Board for Accountants. IESBA has also been developing ethics standards for sustainability reporting. The International Organization of Securities Commissions has
“We’re clearly proud of this work, that we were able to turn this around in under two years’ time with robust due process, and we met the timeline particularly set forward by IOSCO in their recommendation to both us and IESBA in terms of supporting sustainability reporting requirements,” said Seidenstein.
Even though the SEC’s climate rule is on hold, he believes the standards will still be useful for U.S. accountants.
“In the United States, there are many different companies that will be seeking assurance, or already do seek assurance, on their sustainability reporting,” said Seidenstein. “So many companies have ESG reports or sustainability reports on a voluntary basis. There are a number of companies that are likely to adopt ISSB standards beyond that on a voluntary basis, or report on some other set of standards currently and are seeking assurance. There are many companies that will be required to conform with the European Corporate Sustainability Reporting Directive, and they will be required to have assurance under the CSRD and potentially be required to use our set of standards. The European Commission asked the CEAOB, which is the Committee of European Audit Oversight Boards, to advise the Commission on how to implement assurance requirements. It said specifically to look at our work on 5000 in that regard. American companies may have that requirement and could be in the value chain of companies that require sustainability reporting, whether it’s in Europe or elsewhere, and would also require assurance. There are a number of ways that our work could be relevant to American companies, irrespective of the climate rule.”
A recent
ISSA 5000 promises to be widely useful for auditing firms in providing assurance on these important metrics. “We believe that this will establish a global baseline on the assurance side to complement what’s happening on the reporting side, and you really can’t have one without the other,” said Seidenstein.
The International Auditing and Assurance Standards Board is proposing to tailor some of its standards to align with recent additions to the International Ethics Standards Board for Accountants’ International Code of Ethics for Professional Accountants when it comes to using the work of an external expert.
The
- ISA 620, Using the Work of an Auditor’s Expert;
- ISRE 2400 (Revised), Engagements to Review Historical Financial Statements;
- ISAE 3000 (Revised), Assurance Engagements Other than Audits or Reviews of Historical Financial Information;
- ISRS 4400 (Revised), Agreed-upon Procedures Engagements.
The IAASB is asking for comments via a digital response template that can be found on the
In December 2023, the IESBA approved an exposure draft for proposed revisions to the IESBA’s Code of Ethics related to using the work of an external expert. The proposals included three new sections to the Code of Ethics, including provisions for professional accountants in public practice; professional accountants in business and sustainability assurance practitioners. The IESBA approved the provisions on using the work of an external expert at its December 2024 meeting, establishing an ethical framework to guide accountants and sustainability assurance practitioners in evaluating whether an external expert has the necessary competence, capabilities and objectivity to use their work, as well as provisions on applying the Ethics Code’s conceptual framework when using the work of an outside expert.
President Donald Trump’s tariffs would effectively cause a tax increase for low-income families that is more than three times higher than what wealthier Americans would pay, according to an
The report from the progressive think tank outlined the outcomes for Americans of all backgrounds if the tariffs currently in effect remain in place next year. Those making $28,600 or less would have to spend 6.2% more of their income due to higher prices, while the richest Americans with income of at least $914,900 are expected to spend 1.7% more. Middle-income families making between $55,100 and $94,100 would pay 5% more of their earnings.
Trump has
Economists have warned that costs from tariff increases would ultimately be passed on to U.S. consumers. And while prices will rise for everyone, lower-income families are expected to lose a larger portion of their budgets because they tend to spend more of their earnings on goods, including food and other necessities, compared to wealthier individuals.
Food prices could rise by 2.6% in the short run due to tariffs, according to an
The Yale Budget Lab projected that the tariffs would result in a loss of $4,700 a year on average for American households.
Artificial intelligence is just getting started in the accounting world, but it is already helping firms like technology specialist
Schellman CEO Avani Desai said there have definitely been some shifts in headcount at the Top 100 Firm, though she stressed it was nothing dramatic, as it mostly reflects natural attrition combined with being more selective with hiring. She said the firm has already made an internal decision to not reduce headcount in force, as that just indicates they didn’t hire properly the first time.
“It hasn’t been about reducing roles but evolving how we do work, so there wasn’t one specific date where we ‘started’ the reduction. It’s been more case by case. We’ve held back on refilling certain roles when we saw opportunities to streamline, especially with the use of new technologies like AI,” she said.
One area where the firm has found such opportunities has been in the testing of certain cybersecurity controls, particularly within the SOC framework. The firm examined all the controls it tests on the service side and asked which ones require human judgment or deep expertise. The answer was a lot of them. But for the ones that don’t, AI algorithms have been able to significantly lighten the load.
“[If] we don’t refill a role, it’s because the need actually has changed, or the process has improved so significantly [that] the workload is lighter or shared across the smarter system. So that’s what’s happening,” said Desai.
Outside of client services like SOC control testing and reporting, the firm has found efficiencies in administrative functions as well as certain internal operational processes. On the latter point, Desai noted that Schellman’s engineers, including the chief information officer, have been using AI to help develop code, which means they’re not relying as much on outside expertise on the internal service delivery side of things. There are still people in the development process, but their roles are changing: They’re writing less code, and doing more reviewing of code before it gets pushed into production, saving time and creating efficiencies.
“The best way for me to say this is, to us, this has been intentional. We paused hiring in a few areas where we saw overlaps, where technology was really working,” said Desai.
However, even in an age awash with AI, Schellman acknowledges there are certain jobs that need a human, at least for now. For example, the firm does assessments for the FedRAMP program, which is needed for cloud service providers to contract with certain government agencies. These assessments, even in the most stable of times, can be long and complex engagements, to say nothing of the less predictable nature of the current government. As such, it does not make as much sense to reduce human staff in this area.
“The way it is right now for us to do FedRAMP engagements, it’s a very manual process. There’s a lot of back and forth between us and a third party, the government, and we don’t see a lot of overall application or technology help… We’re in the federal space and you can imagine, [with] what’s going on right now, there’s a big changing market condition for clients and their pricing pressure,” said Desai.
As Schellman reduces staff levels in some places, it is increasing them in others. Desai said the firm is actively hiring in certain areas. In particular, it’s adding staff in technical cybersecurity (e.g., penetration testers), the aforementioned FedRAMP engagements, AI assessment (in line with recently becoming an ISO 42001 certification body) and in some client-facing roles like marketing and sales.
“So, to me, this isn’t about doing more with less … It’s about doing more of the right things with the right people,” said Desai.
While these moves have resulted in savings, she said that was never really the point, so whatever the firm has saved from staffing efficiencies it has reinvested in its tech stack to build its service line further. When asked for an example, she said the firm would like to focus more on penetration testing by building a SaaS tool for it. While Schellman has a proof of concept developed, she noted it would take a lot of money and time to deploy a full solution — both of which the firm now has more of because of its efficiency moves.
“What is the ‘why’ behind these decisions? The ‘why’ for us isn’t what I think you traditionally see, which is ‘We need to get profitability high. We need to have less people do more things.’ That’s not what it is like,” said Desai. “I want to be able to focus on quality. And the only way I think I can focus on quality is if my people are not focusing on things that don’t matter … I feel like I’m in a much better place because the smart people that I’ve hired are working on the riskiest and most complicated things.”
Warren Buffett’s top stock picks come with 15% income bonus in new ETF
What student loan forgiveness opportunities still remain under Trump
Americans are getting flashbacks to 2008 as tariffs stoke recession fears
New 2023 K-1 instructions stir the CAMT pot for partnerships and corporations
The Essential Practice of Bank and Credit Card Statement Reconciliation
Are American progressives making themselves sad?
-
Economics1 week agoChina targets U.S. services and other areas after decrying ‘meaningless’ tariff hikes on goods
-
Personal Finance1 week agoHere’s why retirees shouldn’t fully ditch stocks
-
Blog Post7 days agoDocumenting Bookkeeping Processes and Procedures
-
Personal Finance1 week agoIRS’ free tax filing program is at risk amid Trump scrutiny
-
Economics6 days agoDonald Trump wants a certain kind of immigrant: the uber-rich
-
Economics7 days agoTrump’s approval rating on economy at lowest of presidential career
-
Economics1 week ago‘He should bring them down’
-
Economics6 days agoTrump tariffs could cause summer economic slump: Chicago Fed president