The formation of the ESG strategy of corporate-type enterprises depends on the adequate direction of development of corporate social responsibility chosen by enterprises. Global Sustainable Development Goals are the criteria for selecting the most important segments of companies' impact on environmental and social development. At the same time, an adequate system of corporate governance, including corporate controlling, is needed to implement both the strategy and key tasks. First, it is the integration into the organizational and managerial corporate structure of institutional support mechanisms. Second, it integrates the provisions of the ESG strategy into the overall corporate strategy. And of course, the integration of key provisions of the ESG strategy in the operational, investment and financial spheres of operation of enterprises, regardless of their economic activities and organizational and legal forms. The implementation of the provisions of the ESG strategy involves interaction with key stakeholders, or as it is considered stakeholders or groups influencing the company. It is important that each company clearly identifies them, identifies the strength of influence, key interests and features of social corporate communications with key stakeholders. In world practice, there are a number of methodological approaches, methods of identifying stakeholders and determining their impact on the company. The algorithm for developing the ESG strategy is practically no different from others and includes the following stages: diagnosing the state of the company in the field of sustainable development (social responsibility, corporate social responsibility); development of new provisions in the field of sustainable development; implementation of strategic plans for the implementation of sustainable development goals. During the implementation of the ESG strategy, special attention should be paid to corporate risk management. Currently, the most widespread in the world for enterprise risk management is the model COSO ERM (Enterprise Risk Management - enterprise risk management).