From Awareness to Action:
Building a Climate Risk Program
for a Major U.S. Utility
A Case Study Presented by ACCO and GoPedal | Aegis Annual Conference
July 15, 2026
Quick Facts
| Client | Large electric and gas utility |
|---|---|
| Initial Engagement | 18 months |
| Central Outcome | Enterprise Climate Adaptation & Resilience Program approved by executive leadership on first submission |
WHY UTILITIES FACE OUTSIZED CLIMATE RISK
Climate-related risks are becoming increasingly important components of enterprise risk, particularly for utilities. Several factors make utilities among the most susceptible to climate-related risks:
• Long-lived infrastructure. Many utility assets are built to last decades, not years. Poles, lines, conduit, pipes, and drainage systems are likely to be in service decades from now when climate conditions will look very different. Today’s design, engineering and capital improvement decisions can thus have long-term consequences.
• Distributed networks. Utility infrastructure is by nature spread across wide geographic service areas, and much of that infrastructure is fixed in required locations (e.g., existing rights of way). This makes it difficult or impossible to mitigate climate impacts simultaneously across entire networks. A single climate event — a storm, a wildfire, an extended heat wave — can create hundreds or thousands of simultaneous failure points across a region, and relocating facilities or assets to mitigate risks often is not possible.
• Exposure to the elements. Above-ground poles, conductors, and pipes are directly exposed to weather events that climate change is making more frequent and severe, including extreme heat, flooding, high winds, ice storms, and wildfires. Even underground assets such as water and gas pipes can be vulnerable to flooding.
• Community dependence. Service outages aren't just a revenue problem. Hospitals, water treatment facilities, emergency services, and households depend on uninterrupted power and gas.
• Regulatory accountability. Utility commissions increasingly expect utilities to demonstrate they are managing climate-related risks proactively. Well-documented formal programs are becoming an expectation.
• Cost management pressure. Utilities are expected to manage costs responsibly to keep services affordable. At the same time, reactive responses to climate impacts — emergency repairs, unplanned outages, accelerated asset replacement — are far more expensive than proactive mitigation built into planned capital programs.
Building an enterprise-wide program to assess and manage climate risks isn't simple. Enterprise-wide programs require engaging multiple functions, including design and engineering, operations, capacity planning, enterprise risk management, and regulatory affairs. ACCO and GoPedal were engaged to help architect an enterprise-wide climate risk assessment and mitigation program. Their experience reflects what many utilities across the country are navigating.
WHY THE TIME TO ACT IS NOW
A common question: Why build a formal program now, when many of the most significant climate impacts are still years or decades away and many regulators aren’t requiring it yet?
There are two compelling answers.
The cost of waiting is much higher than the cost of acting.
Climate risks that are addressed proactively, through systematic resilience programs and planned capital investments, cost a fraction of what reactive responses cost. Emergency repairs, unplanned outages, accelerated asset replacements, and customer impact from service disruptions all carry costs that dwarf the investment required to address risks in advance. For utilities with billions of dollars in infrastructure assets, even modest reductions in unplanned failure rates translate to significant financial benefits.
The question isn't whether to invest in climate resilience. It's whether to do it now on your terms — or wait until your hand is forced.
Early movers can shape the regulatory environment.
Utility commissions are increasingly active on climate risk, but formal regulatory requirements are still being developed in many jurisdictions. Utilities that build rigorous programs now are better positioned to participate in those policy conversations, share their methodologies, and influence how requirements are written. Utilities that wait are more likely to find themselves reacting to requirements designed by others, under timelines they didn't set. And if a major climate-driven event results in widespread outages, a utility that has implemented a comprehensive program is in a much better position to respond to subsequent regulatory scrutiny and defend against potential litigation from impacted customers and/or shareholders.
Utilities that act now can help write the rules. Those that wait will have to live with them.
Disclosure is not the same as a program.
Most organizations have addressed climate risk primarily through the lens of disclosure – identifying risks at a general level and crafting general language that satisfies reporting obligations by highlighting the uncertainty of those risks. That process is not designed to quantify risk or identify specific mitigation strategies, and it typically leaves significant gaps between (1) identifying the existence of a risk, (2) understanding the actual vulnerability, and (3) taking actions to mitigate the vulnerability.
A comprehensive risk assessment and mitigation program fills those gaps. Once implemented, it enables a fundamentally different kind of disclosure that identifies both the risks an organization faces and the specific program it has put in place to assess and address those risks.
A rigorous program tells you where not to spend, not just where to spend.
A disciplined climate risk assessment program brings clarity to capital allocation decisions by systematically evaluating which assets face the greatest exposure and consequence of failure. This allows utilities to prioritize investments where they matter most and avoid spending ratepayer dollars on upgrades that aren't justified by the actual risk profile. That message resonates with regulators, ratepayers, and investors alike.
CHALLENGES OF BUILDING A COMPREHENSIVE PROGRAM
ACCO has been at the forefront of researching the specific barriers that prevent large organizations in both the public and private sectors from taking action to address the risks presented by climate change. ACCO’s research shows that, across multiple industries, understanding climate science does not automatically translate into understanding the operational implications of climate change, and understanding those implications does not automatically prompt organizations to take action. This awareness-action gap exists because building a program that actually works across a large, complex organization can be hard for multiple reasons:
Risk, sustainability and operations expertise are separated. Responsibility for climate resilience in large organizations often sits in corporate sustainability groups. These teams tend to focus on environmental stewardship and reduction of the organization’s environmental impact, not operational management of external risks. They often lack enterprise risk management expertise, and they don't typically have the cross-functional authority to drive changes in operations, engineering, capital planning, or regulatory strategy. At the same time, ERM functions lack subject-matter expertise related to the impacts of climate change and tend to operate on shorter planning horizons. Climate risk assessment requires specific subject matter expertise and a fundamentally longer view, particularly for utilities with assets that will be in service for decades. Getting an enterprise-wide program off the ground requires coordination across functions that don't always work together.
Widely varying asset lives, planning cycles and vulnerability. Expected asset lives in utilities can range from fewer than 5 years to more than 50 years depending on asset type. Planning cycles can range from annual to five years or longer. And vulnerability to climate risks varies significantly depending on the type of asset (e.g., transmission facilities vs. distribution facilities) and location (e.g., coastal vs. inland). Meaningfully incorporating forward-looking climate risk into existing planning processes requires a methodology that takes these variables into account instead of using a one-size-fits-all approach.
Incorporating existing work. In many large utilities, climate-related work has already begun in some areas but not others. A program that ignores existing work wastes resources and creates friction. One that doesn't address gaps risks leaving the organization exposed.
The quantification problem. Connecting forward-looking climate projections to specific operational impacts is technically complex. Climate models produce outputs in terms of temperature, precipitation, and sea level — not in terms of downed power lines, transformer failure rates or projected flood impacts. Bridging that gap requires a combination of sophisticated data analysis where feasible and qualitative analysis where data is insufficient or unavailable.
Regulatory defensibility requirements. A climate risk program must be designed to withstand regulatory scrutiny. That means a defensible methodology based on valid data, with rigorous documentation and reproducible results.
Organizational change is slow. Even the best-designed program stalls without widespread internal support. Getting buy-in from dozens of stakeholders across multiple operating companies, business functions, and leadership levels takes time and intention.
HOW WE ADDRESSED THESE CHALLENGES:
THE CLIENT ENGAGEMENT
Over the course of 18 months, ACCO and GoPedal worked with the utility’s subject matter experts to design a comprehensive, enterprise-wide climate risk program — and get it approved by executive leadership on the first try. Here's how we did it.
Step 1 — Stakeholder Discovery
ACCO and GoPedal started by conducting in-depth interviews with more than 30 stakeholders — primarily at the VP and Director level — spanning both the parent company and its individual operating companies. These conversations gave us a granular view of how different business functions were thinking about climate risk, what work was already underway, and where the most significant gaps were.
Step 2 — Program Architecture
The program was built following basic risk assessment principles familiar to risk management professionals: for each asset type, the assessment would determine risk by taking into account (i) vulnerability to climate hazards (which in turn takes into account exposure, sensitivity and adaptive capacity), (ii) likelihood of those hazards materializing, and (iii) consequences of failure of that asset type. Consequences may include factors such as customers affected, restoration time, restoration cost, and equity considerations. Connecting vulnerability to consequence allows for rating the risk level from low to high for specific asset classes or assets, and the assessments can be done by geographic area.
Three design principles guided every decision about applying these principles to climate change risk assessment:
Leverage existing business processes and structures wherever feasible instead of asking the organization to rebuild from scratch.
Use familiar terminology to reduce the learning curve and increase the likelihood of adoption.
Fill gaps in ways that are sustainable given the organization's existing resources without creating obligations the organization can't fulfill.
The program incorporated existing reliability and resilience metrics work already underway within the organization, added a structured process for selecting forward-looking climate models and scenarios, and established a methodology for translating climate projections into operational impacts — the gap our client’s engineers identified as the biggest barrier to forward-looking risk assessments.
Bridging that gap required a specific methodology. The raw output of climate models — temperature projections, precipitation forecasts, sea level scenarios — didn't tell engineers what they needed to know about projected impacts to the network and operations. We needed an approach that would map forward-looking climate projections, expressed as the projected frequency of extreme events, to the predicted impact of those events on the network.
One way to do this is to use available data about the impacts of those events when they occur today (e.g., when temperatures, precipitation levels, or wind speeds exceed operationally significant thresholds). Mapping that operational data to the climate projections, downscaled to meaningful geographic areas within a service territory, provides a meaningful projection of the impact of climate change on the network and operations. The engineering teams validated that this approach was exactly what they needed to inform risk assessment and, for the highest risk areas and assets, the additional work of developing mitigation recommendations. Those recommendations could include upgrades, replacement, relocation, smart switching technologies, and other options.
Step 3 — Governance
A program without clear ownership is just a document. We worked with the client to design a governance framework that gave key stakeholders a formal role in implementing the program — building accountability and organizational buy-in simultaneously.
- Define system performance measures for climate hazards.
- Set baseline and performance targets.
- Project climate impacts to metrics.
- Select climate models and scenarios.
- Explore available datasets.
- Evaluate industry best practices.
- Establish asset and hazard inventory.
- Assess vulnerability and failure consequence.
- Propose mitigation recommendations.
- Integrate recommendations into processes.
- Create methodology for organization-wide information sharing.
Step 4 — Organizational Alignment
After designing the program architecture, we went back to every impacted department — at both the corporate and operating company level — to gather feedback and adjust the program as needed. This allowed us to achieve buy-in throughout the organization before the program was presented to the executive leadership team. The program was approved without modification the first time it was presented.
Step 5 — Training
Training was woven into the program at two levels. Before even starting to architect a program, the client provided company-wide climate training to establish a baseline level of climate literacy across the organization. After the program was approved, ACCO developed and delivered targeted training sessions for participants in the working groups, ensuring that the people responsible for implementing the program had the specific knowledge and context to do it well.
RESULTS
| What Was Achieved | Why It Matters |
|---|---|
| Comprehensive enterprise-wide program | Covers physical risk quantification, scenario modeling, resilience metrics, and mitigation — a full lifecycle approach utilizing the client’s existing resources. |
| Governance structure with steering committee and 4 working groups | Structure without ownership is just paperwork. Giving key stakeholders a role in shaping the working groups combined with executive oversight creates the accountability needed to carry the work forward. |
| Broad-based organizational buy-in before executive presentation | Every impacted department had a voice in shaping the program. By the time leadership reviewed it, the organization was already aligned, making it that much easier for senior management to say yes. |
| A risk assessment framework designed to produce prioritized, defensible mitigation recommendations | Once the working groups complete their assessments, the program is designed to produce asset-level risk ratings by asset class and geographic area, linked directly to mitigation recommendations. The result will be a defensible, auditable basis for decision-making: a clear picture of where to act on climate risk and, equally important, where the risk doesn’t justify the investment. |
KEY LESSONS FOR THE INDUSTRY
Start with questions, not answers. The most important investment in this engagement was the discovery process. Thirty interviews before a single program element was designed. That investment is what allowed us to build something that fit the organization, not just something that looked good on paper.
Design for adoption, not just compliance. A program that requires everyone to change everything they're doing is a program that won't survive first contact with the real organization. Building around existing processes, using familiar language, and spreading work sustainably across the organization dramatically increases the likelihood that the program actually gets implemented.
Alignment is the work, not a step after the work. Executive approval without revision didn't happen because the program was technically perfect. It happened because every part of the organization had already weighed in. The alignment process isn't separate from the design process — it is the design process.
The risks are real and the window for proactive action is closing. Our client didn’t build this program to check a box. They built it because climate change poses real operational and financial risks to infrastructure and customers, and because waiting until those risks materialized would mean it was already too late to get ahead of them. For risk management professionals, that calculus should look familiar.