ISA (NZ) 220 (Revised)

Quality Management for an Audit of Financial Statements

Mandatory Date:
{{ matches.count }} matches for: {{ matches.query }}

Statement of Authority

INTERNATIONAL STANDARD ON AUDITING (NEW ZEALAND) 220 (REVISED)

Quality Management for an Audit of Financial Statements (ISA (NZ) 220 (Revised))

This Standard was issued on 8 July 2021 by the New Zealand Auditing and Assurance Standards Board of the External Reporting Board pursuant to section 12(b) of the Financial Reporting Act 2013.

This Standard is a disallowable instrument for the purposes of the Legislation Act 2012, and pursuant to section 27(1) of the Financial Reporting Act 2013 takes effect on 5 August 2021.

An auditor that is required to apply this Standard is required to apply it for audits of financial statements for periods beginning on or after 15 December 2022. However, early adoption is permitted.

In finalising this Standard, the New Zealand Auditing and Assurance Standards Board has carried out appropriate consultation in accordance with section 22(1) of the Financial Reporting Act 2013.

This Standard has been issued as a result of International Standard on Auditing 220 being revised.

This Standard, when applied, supersedes International Standard on Auditing (New Zealand) 220 Quality Control for an Audit of Financial Statements.

This compilation was prepared in June 2023 and incorporates amendments up to and including June 2022.

 

Copyright

© External Reporting Board (“XRB”) 2021

This XRB standard contains copyright material and reproduces, with the permission of the International Federation of Accountants (IFAC), parts of the corresponding international standard issued by the International Auditing and Assurance Standards Board (“IAASB”), and published by IFAC. Reproduction within New Zealand in unaltered form (retaining this notice) is permitted for personal and non-commercial use subject to the inclusion of an acknowledgement of the source.

Requests and enquiries concerning reproduction and rights for commercial purposes within New Zealand should be addressed to the Chief Executive, External Reporting Board at the following email address: enquiries@xrb.govt.nz

All existing rights (including copyrights) in this material outside of New Zealand are reserved by IFAC, with the exception of the right to reproduce for the purposes of personal use or other fair dealing. Further information can be obtained from IFAC at www.ifac.org or by writing to permissions@ifac.org

ISBN 978-1-99-100508-3

 

How to Read this Statement

International Standard on Auditing (ISA) (NZ) 220 (Revised), Quality Management for an Audit of Financial Statements, should be read in conjunction with ISA (NZ) 200, Overall Objectives of the Independent Auditor and the Conduct of an Audit in Accordance with International Standards on Auditing.

Table of pronouncements – ISA (NZ) 220 (Revised) Quality Management for an Audit of Financial Statements

This table lists the pronouncements establishing and amending ISA (NZ) 220 (Revised).

Pronouncements

Date approved

Effective date

International Standard on Auditing (New Zealand) 220 (Revised)

July 2021

Effective for audits of financial statements for periods beginning on or after 15 December 2022.

Conforming Amendments to International Standards on Auditing (New Zealand) and Other Pronouncements Arising from the Quality Management Projects

July 2021

Effective for audits of financial statements for periods beginning on or after 15 December 2022.

Conforming and Consequential Amendments to ISAs (NZ) and Other Pronouncements arising from ISA (NZ) 600 (Revised)

June 2022

Effective for audits of group financial statements for periods beginning on or after 15 December 2023.

 

Table of Amended Paragraphs in ISA (NZ) 220 (Revised)

Paragraph affected

How affected

By…[date]

Footnote 10

Amended

Conforming Amendments to International Standards on Auditing (New Zealand) and Other Pronouncements Arising from the Quality Management Projects [July 2021]

A1, A21A, A24, A25, A38, A53, A54, A60,
A76, A92,
Footnote 15,
Footnote 38

Amended, inserted, deleted

Conforming and Consequential Amendments to ISAs (NZ) and Other Pronouncements arising from ISA (NZ) 600 (Revised) [June 2022]

Scope of this ISA (NZ)

1. This International Standard on Auditing (New Zealand) (ISA (NZ)) deals with the specific responsibilities of the auditor regarding quality management at the engagement level for an audit of financial statements, and the related responsibilities of the engagement partner. This ISA (NZ) is to be read in conjunction with relevant ethical requirements. (Ref: Para. A1, A38)

The Firm’s System of Quality Management and Role of Engagement Teams

2. Under Professional and Ethical Standard 31, the objective of the firm is to design, implement and operate a system of quality management for audits or reviews of financial statements, or other assurance or related services engagements performed by the firm, that provides the firm with reasonable assurance that: (Ref: Para. A13–A14)

  1. The firm and its personnel fulfil their responsibilities in accordance with professional standards and applicable legal and regulatory requirements, and conduct engagements in accordance with such standards and requirements; and

  2. Engagement reports issued by the firm or engagement partners are appropriate in the circumstances.2

3. This ISA (NZ) is premised on the basis that the firm is subject to PES 3 and PES 43 or to national requirements that are at least as demanding. (Ref: Para. A2–A3)

4. The engagement team, led by the engagement partner, is responsible, within the context of the firm’s system of quality management and through complying with the requirements of this ISA (NZ), for: (Ref: Para. A4–A11)

  1. Implementing the firm’s responses to quality risks (i.e., the firm’s policies or procedures) that are applicable to the audit engagement using information communicated by, or obtained from, the firm;

  2. Given the nature and circumstances of the audit engagement, determining whether to design and implement responses at the engagement level beyond those in the firm’s policies or procedures; and

  3. Communicating to the firm information from the audit engagement that is required to be communicated by the firm’s policies or procedures to support the design, implementation and operation of the firm’s system of quality management.

5. Complying with the requirements in other ISAs (NZ) may provide information that is relevant to quality management at the engagement level. (Ref: Para. A12)

6. The public interest is served by the consistent performance of quality audit engagements through achieving the objective of this standard and other ISAs (NZ) for each engagement. A quality audit engagement is achieved through planning and performing the engagement and reporting on it in accordance with professional standards and applicable legal and regulatory requirements. Achieving the objectives of those standards and complying with the requirements of applicable law or regulation involves exercising professional judgement and exercising professional scepticism.

7. In accordance with ISA (NZ) 200,4 the engagement team is required to plan and perform an audit with professional scepticism and to exercise professional judgement. Professional judgement is exercised in making informed decisions about the courses of action that are appropriate to manage and achieve quality given the nature and circumstances of the audit engagement. Professional scepticism supports the quality of judgements made by the engagement team and, through these judgements, supports the overall effectiveness of the engagement team in achieving quality at the engagement level. The appropriate exercise of professional scepticism may be demonstrated through the actions and communications of the engagement team. Such actions and communications may include specific steps to mitigate impediments that may impair the appropriate exercise of professional scepticism, such as unconscious bias or resource constraints. (Ref: Para. A33–A36)

Scalability

8. The requirements of this ISA (NZ) are intended to be applied in the context of the nature and circumstances of each audit. For example:

  1. When an audit is carried out entirely by the engagement partner, which may be the case for an audit of a less complex entity, some requirements in this ISA (NZ) are not relevant because they are conditional on the involvement of other members of the engagement team. (Ref: Para. A13–A14)

  2. When an audit is not carried out entirely by the engagement partner or in an audit of an entity whose nature and circumstances are more complex, the engagement partner may assign the design or performance of some procedures, tasks or actions to other members of the engagement team.

The Engagement Partner’s Responsibilities

9. The engagement partner remains ultimately responsible, and therefore accountable, for compliance with the requirements of this ISA (NZ). The term “the engagement partner shall take responsibility for…” is used for those requirements that the engagement partner is permitted to assign the design or performance of procedures, tasks or actions to appropriately skilled or suitably experienced members of the engagement team. For other requirements, this ISA (NZ) expressly intends that the requirement or responsibility be fulfilled by the engagement partner and the engagement partner may obtain information from the firm or other members of the engagement team. (Ref: Para. A22–A25)

Effective Date

10. This ISA (NZ) is effective for audits of financial statements for periods beginning on or after 15 December 2022.

1 Professional and Ethical Standard (PES) 3 Quality Management for Firms that Perform Audits or Reviews of Financial Statements, or Other Assurance or Related Services Engagements

2 PES 3, paragraph 14

3 Professional and Ethical Standard (PES) 4 Engagement Quality Reviews

4ISA (NZ) 200, Overall Objectives of the Independent Auditor and the Conduct of an Audit in Accordance with International Standards on Auditing, paragraphs 15‒16 and A20‒A24

11. The objective of the auditor is to manage quality at the engagement level to obtain reasonable assurance that quality has been achieved such that:

  1. The auditor has fulfilled the auditor’s responsibilities, and has conducted the audit, in accordance with professional standards and applicable legal and regulatory requirements; and

  2. The auditor’s report issued is appropriate in the circumstances.

12. For purposes of the ISAs (NZ), the following terms have the meanings attributed below:
  1. Engagement partner5 – The partner or other individual, appointed by the firm, who is responsible for the audit engagement and its performance, and for the auditor’s report that is issued on behalf of the firm, and who, where required, has the appropriate authority from a professional, legal or regulatory body. 

    Public Sector Considerations

    [NZ] Engagement partner includes an employee of the Auditor-General, whom the Auditor- General has appointed under the Public Audit Act 2001 to act as an auditor and who:

    1. Is responsible for the engagement and its performance, and for the report that is issued on behalf of the Auditor-General; and
    2. Where required, has the appropriate authority from a professional, legal or regulatory body.
  2. Engagement quality review – An objective evaluation of the significant judgements made by the engagement team and the conclusions reached thereon, performed by the engagement quality reviewer and completed on or before the date of the engagement report.
  3. Engagement quality reviewer – A partner, other individual in the firm, or an external individual, appointed by the firm to perform the engagement quality review.
  4. Engagement team – All partners and staff performing the audit engagement, and any other individuals who perform audit procedures on the engagement, excluding an auditor’s external expert6 and internal auditors who provide direct assistance on an engagement.7 (Ref: Para. A15–A25)
  5. Firm – A sole practitioner, partnership or corporation or other entity of assurance practitioners, or public sector equivalent. (Ref: Para. A26)

    Public Sector Considerations

    [NZ] Firm includes the Auditor-General as defined in section 10(1) of the Public Audit Act 2001.

  6. Network firm – A firm or entity that belongs to the firm’s network. (Ref: Para. A27)
  7. Network – A larger structure: (Ref: Para. A27)
    1. That is aimed at cooperation, and
    2. That is clearly aimed at profit or cost-sharing or shares common ownership, control or management, common quality management policies or procedures, common business strategy, the use of a common brand name, or a significant part of professional resources.
  8. Partner [Amended by the NZAuASB – refer to paragraph NZ12.2]
  9. Personnel – Partners and staff in the firm.
  10. Professional standards [Amended by the NZAuASB]
    • NZ12.1 Professional standards – The standards issued by the External Reporting Board or the New Zealand Auditing and Assurance Standards Board
  11. Relevant ethical requirements – Principles of professional ethics and ethical requirements that are applicable to professional accountants when undertaking the audit engagement. Relevant ethical requirements ordinarily comprise the provisions of the Professional and Ethical Standard 1 International Code of Ethics for Assurance Practitioners (including International Independence Standards) (New Zealand) related to audits of financial statements, together with national requirements that are more restrictive.
  12. Response (in relation to a system of quality management) – Policies or procedures designed and implemented by the firm to address one or more quality risk(s):
    • Policies are statements of what should, or should not, be done to address a quality risk(s). Such statements may be documented, explicitly stated in communications or implied through actions and decisions.
    • Procedures are actions to implement policies.
  13. Staff – Professionals, other than partners, including any experts the firm employs.
NZ12.2 Partner – Any individual with authority to bind the firm with respect to the performance of an engagement governed by the Standards of the XRB (including audits or reviews of financial statements, or other assurance or related services8 engagements).
Public Sector Considerations [NZ] Partner includes an employee of the Auditor-General with authority to bind the Auditor-General with respect to the performance of an engagement governed by the Standards of the XRB (including audits or reviews of financial statements, or other assurance or related services engagements).

5Engagement partner,” “partner,” and “firm” is to be read as referring to their public sector equivalents where relevant.

6ISA (NZ) 620, Using the Work of an Auditor’s Expert, paragraph 6(a), defines the term “auditor’s expert.”

7 ISA (NZ) 610 (Revised 2013), Using the Work of Internal Auditors, establishes limits on the use of direct assistance. It also acknowledges that the external auditor may be prohibited by law or regulation from obtaining direct assistance from internal auditors. Therefore, the use of direct assistance is restricted to situations where it is permitted.

8 As defined by XRB Au1 Application of Auditing and Assurance Standards (Legislative Update)

Leadership Responsibilities for Managing and Achieving Quality on Audits

13. The engagement partner shall take overall responsibility for managing and achieving quality on the audit engagement, including taking responsibility for creating an environment for the engagement that emphasises the firm’s culture and expected behaviour of engagement team members. In doing so, the engagement partner shall be sufficiently and appropriately involved throughout the audit engagement such that the engagement partner has the basis for determining whether the significant judgements made, and the conclusions reached, are appropriate given the nature and circumstances of the engagement. (Ref: Para. A28–A37)

14. In creating the environment described in paragraph 13, the engagement partner shall take responsibility for clear, consistent and effective actions being taken that reflect the firm’s commitment to quality and establish and communicate the expected behaviour of engagement team members, including emphasising: (Ref: Para. A30–A34)

  1. That all engagement team members are responsible for contributing to the management and achievement of quality at the engagement level;

  2. The importance of professional ethics, values and attitudes to the members of the engagement team;

  3. The importance of open and robust communication within the engagement team, and supporting the ability of engagement team members to raise concerns without fear of reprisal; and

  4. The importance of each engagement team member exercising professional scepticism throughout the audit engagement.

15. If the engagement partner assigns the design or performance of procedures, tasks or actions related to a requirement of this ISA (NZ) to other members of the engagement team to assist the engagement partner in complying with the requirements of this ISA (NZ), the engagement partner shall continue to take overall responsibility for managing and achieving quality on the audit engagement through direction and supervision of those members of the engagement team, and review of their work. (Ref: Para. 9, A37)

Relevant Ethical Requirements, Including Those Related to Independence

16. The engagement partner shall have an understanding of the relevant ethical requirements, including those related to independence, that are applicable given the nature and circumstances of the audit engagement. (Ref: Para. A38–A42, A48)

17. The engagement partner shall take responsibility for other members of the engagement team having been made aware of relevant ethical requirements that are applicable given the nature and circumstances of the audit engagement, and the firm’s related policies or procedures, including those that address: (Ref: Para. A23–A25, A40–A44)

  1. Identifying, evaluating and addressing threats to compliance with relevant ethical requirements, including those related to independence;

  2. Circumstances that may cause a breach of relevant ethical requirements, including those related to independence, and the responsibilities of members of the engagement team when they become aware of breaches; and

  3. The responsibilities of members of the engagement team when they become aware of an instance of non-compliance with laws and regulations by the entity.9

18. If matters come to the engagement partner’s attention that indicate that a threat to compliance with relevant ethical requirements exists, the engagement partner shall evaluate the threat through complying with the firm’s policies or procedures, using relevant information from the firm, the engagement team or other sources, and take appropriate action. (Ref: Para. A43–A44)

19. The engagement partner shall remain alert throughout the audit engagement, through observation and making inquiries as necessary, for breaches of relevant ethical requirements or the firm’s related policies or procedures by members of the engagement team. (Ref: Para. A45)

20. If matters come to the engagement partner’s attention through the firm’s system of quality management, or from other sources, that indicate that relevant ethical requirements applicable to the nature and circumstances of the audit engagement have not been fulfilled, the engagement partner, in consultation with others in the firm, shall take appropriate action. (Ref: Para. A46)

21. Prior to dating the auditor’s report, the engagement partner shall take responsibility for determining whether relevant ethical requirements, including those related to independence, have been fulfilled. (Ref: Para. A38 and A47)

Acceptance and Continuance of Client Relationships and Audit Engagements

22. The engagement partner shall determine that the firm’s policies or procedures for the acceptance and continuance of client relationships and audit engagements have been followed, and that conclusions reached in this regard are appropriate. (Ref: Para. A49–A52, A58)

23. The engagement partner shall take into account information obtained in the acceptance and continuance process in planning and performing the audit engagement in accordance with the ISAs (NZ) and complying with the requirements of this ISA (NZ). (Ref: Para. A53–A56)

24. If the engagement team becomes aware of information that may have caused the firm to decline the audit engagement had that information been known by the firm prior to accepting or continuing the client relationship or specific engagement, the engagement partner shall communicate that information promptly to the firm, so that the firm and the engagement partner can take the necessary action. (Ref: Para. A57)

Engagement Resources

25. The engagement partner shall determine that sufficient and appropriate resources to perform the engagement are assigned or made available to the engagement team in a timely manner, taking into account the nature and circumstances of the audit engagement, the firm’s policies or procedures, and any changes that may arise during the engagement. (Ref: Para. A59–A70, A73–A74, A78)

26. The engagement partner shall determine that members of the engagement team, and any auditor’s external experts and internal auditors who provide direct assistance who are not part of the engagement team, collectively have the appropriate competence and capabilities, including sufficient time, to perform the audit engagement. (Ref: Para. A62, A71–A74)

27. If, as a result of complying with the requirements in paragraphs 25 and 26, the engagement partner determines that resources assigned or made available are insufficient or inappropriate in the circumstances of the audit engagement, the engagement partner shall take appropriate action, including communicating with appropriate individuals about the need to assign or make available additional or alternative resources to the engagement. (Ref: Para. A75‒A77)

28. The engagement partner shall take responsibility for using the resources assigned or made available to the engagement team appropriately, given the nature and circumstances of the audit engagement. (Ref: Para. A63–A69)

Engagement Performance

Direction, Supervision and Review

29. The engagement partner shall take responsibility for the direction and supervision of the members of the engagement team and the review of their work. (Ref: Para. A79)

30. The engagement partner shall determine that the nature, timing and extent of direction, supervision and review is: (Ref: Para. A80–A88, A93–A96)

  1. Planned 10 and performed in accordance with the firm’s policies or procedures, professional standards and applicable legal and regulatory requirements; and

  2. Responsive to the nature and circumstances of the audit engagement and the resources assigned or made available to the engagement team by the firm.

31. The engagement partner shall review audit documentation at appropriate points in time during the audit engagement, including audit documentation relating to: (Ref: Para. A89– A92)

  1. Significant matters;11

  2. Significant judgements, including those relating to difficult or contentious matters identified during the audit engagement, and the conclusions reached; and

  3. Other matters that, in the engagement partner’s professional judgement, are relevant to the engagement partner’s responsibilities.

32. On or before the date of the auditor’s report, the engagement partner shall determine, through review of audit documentation and discussion with the engagement team, that sufficient appropriate audit evidence has been obtained to support the conclusions reached and for the auditor’s report to be issued. (Ref: Para. A89–A93)

33. Prior to dating the auditor’s report, the engagement partner shall review the financial statements and the auditor’s report, including, if applicable, the description of the key audit matters12 and related audit documentation, to determine that the report to be issued will be appropriate in the circumstances.13

34. The engagement partner shall review, prior to their issuance, formal written communications to management, those charged with governance or regulatory authorities. (Ref: Para. A97)

Consultation

35. The engagement partner shall: (Ref: Para. A98–A101)

  1. Take responsibility for the engagement team undertaking consultation on:

    1. Difficult or contentious matters and matters on which the firm’s policies or procedures require consultation; and

    2. Other matters that, in the engagement partner’s professional judgement, require consultation;

  2. Determine that members of the engagement team have undertaken appropriate consultation during the audit engagement, both within the engagement team, and between the engagement team and others at the appropriate level within or outside the firm;

  3. Determine that the nature and scope of, and conclusions resulting from, such consultations are agreed with the party consulted; and

  4. Determine that conclusions agreed have been implemented.

Engagement Quality Review

36. For audit engagements for which an engagement quality review is required, the engagement partner shall: (Ref: Para. A102)

  1. Determine that an engagement quality reviewer has been appointed;

  2. Cooperate with the engagement quality reviewer and inform other members of the engagement team of their responsibility to do so;

  3. Discuss significant matters and significant judgements arising during the audit engagement, including those identified during the engagement quality review, with the engagement quality reviewer; and

  4. Not date the auditor’s report until the completion of the engagement quality review. (Ref: Para. A103–A105)

Differences of Opinion

37. If differences of opinion arise within the engagement team, or between the engagement team and the engagement quality reviewer or individuals performing activities within the firm’s system of quality management, including those who provide consultation, the engagement team shall follow the firm’s policies or procedures for dealing with and resolving such differences of opinion. (Ref: Para. A106–A107)

38. The engagement partner shall:

  1. Take responsibility for differences of opinion being addressed and resolved in accordance with the firm’s policies or procedures;

  2. Determine that conclusions reached are documented and implemented; and

  3. Not date the auditor’s report until any differences of opinion are resolved.

Monitoring and Remediation

39. The engagement partner shall take responsibility for: (Ref: Para. A108‒A111)

  1. Obtaining an understanding of the information from the firm’s monitoring and remediation process, as communicated by the firm including, as applicable, the information from the monitoring and remediation process of the network and across the network firms;

  2. Determining the relevance and effect on the audit engagement of the information referred to in paragraph 39(a) and take appropriate action; and

  3. Remaining alert throughout the audit engagement for information that may be relevant to the firm’s monitoring and remediation process and communicate such information to those responsible for the process.

Taking Overall Responsibility for Managing and Achieving Quality

40. Prior to dating the auditor’s report, the engagement partner shall determine that the engagement partner has taken overall responsibility for managing and achieving quality on the audit engagement. In doing so, the engagement partner shall determine that: (Ref: Para. A112–A115)

  1. The engagement partner’s involvement has been sufficient and appropriate throughout the audit engagement such that the engagement partner has the basis for determining that the significant judgements made and the conclusions reached are appropriate given the nature and circumstances of the engagement; and

  2. The nature and circumstances of the audit engagement, any changes thereto, and the firm’s related policies or procedures have been taken into account in complying with the requirements of this ISA (NZ).

Documentation

41. In applying ISA (NZ) 230,14 the auditor shall include in the audit documentation: (Ref: Para. A116–A119)

  1. Matters identified, relevant discussions with personnel, and conclusions reached with respect to:

    1. Fulfillment of responsibilities relating to relevant ethical requirements, including those related to independence.

    2. The acceptance and continuance of the client relationship and audit engagement.

  2. The nature and scope of, and conclusions resulting from, consultations undertaken during the audit engagement and how such conclusions were implemented.

  3. If the audit engagement is subject to an engagement quality review, that the engagement quality review has been completed on or before the date of the auditor’s report.

9 ISA (NZ) 250 (Revised), Consideration of Laws and Regulations in an Audit of Financial Statements

10ISA (NZ) 300, Planning an Audit of Financial Statements, paragraph 9

11ISA (NZ) 230, Audit Documentation, paragraph 8(c)

12 ISA (NZ) 701, Communicating Key Audit Matters in the Independent Auditor’s Report

13ISA (NZ) 700 (Revised), Forming an Opinion and Reporting on Financial Statements or ISA (NZ) 705 (Revised), Modifications to the Opinion in the Independent Auditor’s Report

14 ISA (NZ) 230, paragraphs 8–11 and A6

Scope of this ISA (NZ) (Ref: Para. 1)

A1. This ISA (NZ) applies to all audits of financial statements, including audits of group financial statements. ISA (NZ) 600 (Revised)15 deals with special considerations that apply to an audit of group financial statements and when component auditors are involved. ISA (NZ) 600 (Revised), adapted as necessary in the circumstances, may also be useful in an audit of financial statements when the engagement team includes individuals from another firm. For example, ISA (NZ) 600 (Revised) may be useful when involving such an individual to attend a physical inventory count, inspect property, plant and equipment, or perform audit procedures at a shared service centre at a remote location.

The Firm’s System of Quality Management and Role of Engagement Teams (Ref: Para. 2–9)

A2. PES 3 deals with a firm’s responsibilities for designing, implementing and operating its system of quality management.

A3. Firms or national requirements may use different terminology or frameworks to describe the components of the system of quality management. National requirements that deal with the firm’s responsibilities to design, implement and operate a system of quality management are at least as demanding as PES 3 when they address the requirements of PES 3 and impose obligations on the firm to achieve the objective of PES 3.

The Engagement Team’s Responsibilities Relating to the Firm’s System of Quality Management (Ref: Para. 4)

A4. Quality management at the engagement level is supported by the firm’s system of quality management and informed by the specific nature and circumstances of the audit engagement. In accordance with PES 3, the firm is responsible for communicating information enables the engagement team to understand and carry out their responsibilities relating to performing engagements. For example, such communications may cover policies or procedures to undertake consultations with designated individuals in certain situations involving complex technical or ethical matters, or to involve firm-designated experts in specific engagements to perform audit procedures related to particular matters (e.g., the firm may specify that firm- designated credit experts are to be involved in auditing expected credit loss allowances in audits of financial institutions).

A5. Firm-level responses may include policies or procedures established by a network, or by other firms, structures or organisations within the same network (network requirements or network services are described further in [PES 3 within the “Network Requirements or Network Services” section).16 The requirements of this ISA (NZ) are based on the premise that the firm is responsible for taking the necessary action to enable engagement teams to implement or use network requirements or network services on the audit engagement (for example, a requirement to use an audit methodology developed for use by a network firm). Under PES 3, the firm is responsible for determining how network requirements or network services are relevant to, and are taken into account in, the firm’s system of quality management.17

A6. Some firm-level responses to quality risks are not performed at the engagement level but are nevertheless relevant when complying with the requirements of this ISA (NZ). For example, firm-level responses that the engagement team may be able to depend on when complying with the requirements of this ISA (NZ) include:

  • Personnel recruitment and professional training processes;

  • The information technology (IT) applications that support the firm’s monitoring of independence;

  • The development of IT applications that support the acceptance and continuance of client relationships and audit engagements; and

  • The development of audit methodologies and related implementation tools and guidance.

A7. Due to the specific nature and circumstances of each audit engagement and changes that may occur during the audit engagement, a firm cannot identify all quality risks that may arise at the engagement level or set forth all relevant and appropriate responses. Accordingly, the engagement team exercises professional judgement in determining whether to design and implement responses, beyond those set forth in the firm’s policies or procedures, at the engagement level to meet the objective of this ISA (NZ).18

A8. The engagement team’s determination of whether engagement level responses are necessary (and, if so, what those responses are) is influenced by the requirements of this ISA (NZ), the engagement team’s understanding of the nature and circumstances of the engagement and any changes during the audit engagement. For example, unanticipated circumstances may arise during the engagement that may cause the engagement partner to request the involvement of appropriately experienced personnel in addition to those initially assigned or made available.

A9. The relative balance of the engagement team’s efforts to comply with the requirements of this ISA (NZ) (i.e., between implementing the firm’s responses and designing and implementing engagement specific responses beyond those set forth in the firm’s policies or procedures) may vary. For example, the firm may design an audit program to be used in circumstances that are applicable to the audit engagement (e.g., an industry-specific audit program). Other than determining the timing and extent of procedures to be performed, there may be little or no need for supplemental audit procedures to be added to the audit program at the engagement level. Alternatively, the engagement team’s actions in complying with the engagement performance requirements of this ISA (NZ) may be more focused on designing and implementing responses at the engagement level to deal with the specific nature and circumstances of the engagement (e.g., planning and performing procedures to address risks of material misstatement not contemplated by the firm’s audit programs).

A10. Ordinarily, the engagement team may depend on the firm’s policies or procedures in complying with the requirements of this ISA (NZ), unless:

  • The engagement team’s understanding or practical experience indicates that the firm’s policies or procedures will not effectively address the nature and circumstances of the engagement; or

  • Information provided by the firm or other parties, about the effectiveness of such policies or procedures suggests otherwise (e.g., information provided by the firm’s monitoring activities, external inspections or other relevant sources, indicates that the firm's policies or procedures are not operating effectively).

A11. If the engagement partner becomes aware (including through being informed by other members of the engagement team) that the firm’s responses to quality risks are ineffective in the context of the specific engagement or the engagement partner is unable to depend on the firm’s policies or procedures, the engagement partner communicates such information promptly to the firm in accordance with paragraph 39(c) as such information is relevant to the firm’s monitoring and remediation process. For example, if an engagement team member identifies that an audit software program has a security weakness, timely communication of such information to the appropriate personnel enables the firm to take steps to update and reissue the audit program. See also paragraph A70 in respect of sufficient and appropriate resources.

Information Relevant to Quality Management at the Engagement Level (Ref: Para. 6)

A12. Complying with the requirements in other ISAs (NZ) may provide information that is relevant to quality management at the engagement level. For example, the understanding of the entity and its environment required to be obtained under ISA (NZ) 315 (Revised 2019)19 provides information that may be relevant to complying with the requirements of this ISA (NZ). Such information may be relevant to the determination of:

  • The nature of resources to deploy for specific audit areas, such as the use of appropriately experienced team members for high risk areas, or the involvement of experts to deal with complex matters;

  • The amount of resources to allocate to specific audit areas, such as the number of team members assigned to attend the physical inventory count at multiple locations;

  • The nature, timing and extent of review of the work performed by members of the team based on the assessed risks of material misstatement; or

  • The allocation of the budgeted audit hours, including allocating more time, and the time of moreexperienced engagement team members to those areas where there are more risks of material misstatement or the identified risks are assessed as higher.

Scalability (Ref: Para. 2, 8)

A13. In a smaller firm, the firm’s policies or procedures may designate an engagement partner, on behalf of the firm, to design many of the responses to the firm’s quality risks, as doing so may be a more effective approach to designing and implementing responses as part of the firm's system of quality management. Additionally, a smaller firm’s policies or procedures may be less formal. For example, in a very small firm with a relatively small number of audit engagements, the firm may determine that there is no need to establish a firm-wide system to monitor independence, and rather, independence will be monitored at the individual engagement level by the engagement partner.

A14. The requirements relating to direction, supervision and review of the work of other members of the engagement team are only relevant if there are members of the engagement team other than the engagement partner.

Definitions

Engagement Team (Ref: Para. 12(d))

A15. The engagement team may be organised in a variety of ways. For example, engagement team members may be located together or across different geographic locations and may be organised in groups by the activity they are performing. Regardless of how the engagement team is organised, any individual who performs audit procedures20 on the audit engagement is a member of the engagement team.

A16. The definition of an engagement team focuses on individuals who perform audit procedures on the audit engagement. Audit evidence, which is necessary to support the auditor’s opinion and report, is primarily obtained from audit procedures performed during the course of the audit. 21 Audit procedures comprise risk assessment procedures 22 and further audit procedures. 23 As explained in ISA (NZ) 500, audit procedures include inspection, observation, confirmation, recalculation, reperformance, analytical procedures and inquiry, often performed in some combination. 24 Other ISAs (NZ) may also include specific procedures to obtain audit evidence, for example, ISA (NZ) 520.25

A17. Engagement teams include personnel and may also include other individuals who perform audit procedures who are from:

  1. A network firm; or

  2. A firm that is not a network firm, or another service provider.26

For example, an individual from another firm may perform audit procedures on the financial information of a component in a group audit engagement, attend a physical inventory count or inspect physical fixed assets at a remote location.

A18. Engagement teams may also include individuals from service delivery centres who perform audit procedures. For example, it may be determined that specific tasks that are repetitive or specialised in nature will be performed by a group of appropriately skilled personnel and the engagement team therefore includes such individuals. Service delivery centres may be established by the firm, the network, or by other firms, structures or organisations within the same network. For example, a centralised function may be used to facilitate external confirmation procedures.

A19. Engagement teams may include individuals with expertise in a specialised area of accounting or auditing who perform audit procedures on the audit engagement, for example, individuals with expertise in accounting for income taxes, or in analysing complex information produced by automated tools and techniques for the purpose of identifying unusual or unexpected relationships. An individual is not a member of the engagement team if that individual’s involvement with the engagement is limited to consultation. Consultations are addressed in paragraphs 35 and A98–A101.

A20. If the audit engagement is subject to an engagement quality review, the engagement quality reviewer, and any other individuals performing the engagement quality review, are not members of the engagement team. Such individuals may be subject to specific independence requirements.

A21. An internal auditor providing direct assistance and an auditor’s external expert whose work is used in the engagement are not members of the engagement team. 27 ISA (NZ) 610 (Revised) 2013 and ISA (NZ) 620 provide requirements and guidance for the auditor when using the work of internal auditors in a direct assistance capacity or when using the work of an external expert, respectively. Compliance with these ISAs (NZ) requires the auditor to obtain sufficient appropriate audit evidence on the work performed by an internal auditor providing direct assistance and perform audit procedures on the work of an auditor’s expert.

A21A. When joint auditors conduct an audit, the joint engagement partners and their engagement teams collectively constitute the “engagement partner” and “engagement team” for the purposes of the ISAs (NZ). This ISA (NZ) does not, however, deal with the relationship between joint auditors or the work that one joint auditor performs in relation to the work of the other joint auditor.

The Engagement Partner’s Responsibilities (Ref: Para. 9, 12(d))

A22. When this ISA (NZ) expressly intends that a requirement or responsibility be fulfilled by the engagement partner, the engagement partner may need to obtain information from the firm or other members of the engagement team to fulfil the requirement (e.g., information to make the required decision or judgement). For example, the engagement partner is required to determine that members of the engagement team collectively have the appropriate competence and capabilities to perform the audit engagement. To make a judgement on whether the competence and capabilities of the engagement team is appropriate, the engagement partner may need to use information compiled by the engagement team or from the firm’s system of quality management.

The Application of Firm Policies or Procedures by Members of the Engagement Team (Ref: Para. 9, 12(d),17)

A23. Within the context of the firm’s system of quality management, engagement team members from the firm are responsible for implementing the firm’s policies or procedures that are applicable to the audit engagement. As engagement team members from another firm are neither partners nor staff of the engagement partner’s firm, they may not be subject to the firm’s system of quality management or the firm’s policies or procedures. Further, the policies or procedures of another firm may not be similar to that of the engagement partner’s firm. For example, policies or procedures regarding direction, supervision and review may be different, particularly when the other firm is in a jurisdiction with a different legal system, language or culture than that of the engagement partner’s firm. Accordingly, if the engagement team includes individuals who are from another firm, different actions may need to be taken by the firm or the engagement partner to implement the firm’s policies or procedures in respect of the work of those individuals.

A24. In particular, the firm’s policies or procedures may require the firm or the engagement partner to take different actions from those applicable to personnel when obtaining an understanding of whether an individual from another firm:

  • Has the appropriate competence and capabilities to perform the audit engagement. For example, the individual would not be subject to the firm’s recruitment and training processes and therefore the firm’s policies or procedures may state that this determination can be made through other actions such as obtaining information from the other firm or a licensing or registration body. Paragraphs 26 and A59–A64 of ISA (NZ) 600 (Revised) contain guidance on obtaining an understanding of the competence and capabilities of component auditors.

  • Understands the ethical requirements that are relevant to the group audit engagement. For example, the individual would not be subject to the firm’s training in respect of the firm’s policies or procedures for relevant ethical requirements. The firm’s policies or procedures may state that this understanding is obtained through other actions such as providing information, manuals, or guides containing the provisions of the relevant ethical requirements applicable to the audit engagement to the individual.

  • Will confirm independence. For example, individuals who are not personnel may not be able to complete independence declarations directly on the firm’s independence systems. The firm’s policies or procedures may state that such individuals can provide evidence of their independence in relation to the audit engagement in other ways, such as written confirmation.

A25. When firm policies or procedures require specific activities to be undertaken in certain circumstances (e.g., consultation on a particular matter), it may be necessary for the firm’s related policies or procedures to be communicated to individuals who are not personnel. Such individuals are then able to alert the engagement partner if the circumstance arises, and this enables the engagement partner to comply with the firm’s policies or procedures. For example, in a group audit engagement, if a component auditor is performing audit procedures on the financial information of a component and identifies a difficult or contentious matter that is relevant to the group financial statements and subject to consultation28 under the group auditor’s policies or procedures, the component auditor is able to alert the group auditor about the matter.

Firm (Ref: Para. 12(e))

A26. The definition of “firm” in relevant ethical requirements may differ from the definition set out in this ISA (NZ).

“Network” and “Network Firm” (Ref: Para. 12(f)–12(g))

A27. The definitions of “network” or “network firm” in relevant ethical requirements may differ from those set out in this ISA (NZ). Professional and Ethical Standard 1 also provides guidance in relation to the terms “network” and “network firm.” Networks and the other network firms may be structured in a variety of ways, and are in all cases external to the firm. The provisions in this ISA (NZ) in relation to networks also apply to any structures or organisations that do not form part of the firm, but that exist within the network.

Leadership Responsibilities for Managing and Achieving Quality on Audits (Ref: Para. 13– 15)

Taking Overall Responsibility for Managing and Achieving Quality

A28. PES 3 requires the firm to establish quality objectives that address the firm’s governance and leadership that supports the design, implementation and operation of the system of quality management. The engagement partner’s responsibility for managing and achieving quality is supported by a firm culture that demonstrates a commitment to quality. In addressing the requirements in paragraphs 13 and 14 of this ISA (NZ), the engagement partner may communicate directly to other members of the engagement team and reinforce this communication through personal conduct and actions (e.g., leading by example). A culture that demonstrates a commitment to quality is further shaped and reinforced by the engagement team members as they demonstrate expected behaviours when performing the engagement.

Scalability

A29. The nature and extent of the actions of the engagement partner to demonstrate the firm’s commitment to quality may depend on a variety of factors including the size, structure, geographical dispersion and complexity of the firm and the engagement team, and the nature and circumstances of the audit engagement. With a smaller engagement team with few engagement team members, influencing the desired culture through direct interaction and conduct may be sufficient, whereas for a larger engagement team that is dispersed over many locations, more formal communications may be necessary.

Sufficient and Appropriate Involvement

A30. Being sufficiently and appropriately involved throughout the audit engagement may be demonstrated by the engagement partner in different ways, including:

  • Taking responsibility for the nature, timing and extent of the direction and supervision of the members of the engagement team, and the review of their work in complying with the requirements of this ISA (NZ); and

  • Varying the nature, timing and extent of such direction, supervision and review in the context of the nature and circumstances of the engagement.

Communication

A31. Communication is the means through which the engagement team shares relevant information on a timely basis to comply with the requirements of this ISA (NZ), thereby contributing to the achievement of quality on the audit engagement. Communication may be between or among members of the engagement team, or with:

  1. The firm, (e.g., individuals performing activities within the firm’s system of quality management, including those assigned ultimate or operational responsibility for the firm’s system of quality management);

  2. Others involved in the audit (e.g., internal auditors who provide direct assistance29 or an auditor’s external expert30); and

  3. Parties that are external to the firm (e.g., management, those charged with governance or regulatory authorities).

A32. The nature and circumstances of the audit engagement may affect the engagement partner’s decisions regarding the appropriate means of effective communication with the members of the engagement team. For example, to support appropriate direction, supervision and review, the firm may use IT applications to facilitate the communication between the members of the engagement team when they are performing work across different geographical locations.

Professional Scepticism (Ref: Para. 7)

A33. The engagement partner is responsible for emphasising the importance of each engagement team member exercising professional scepticism throughout the audit engagement. Conditions inherent in some audit engagements can create pressures on the engagement team that may impede the appropriate exercise of professional scepticism when designing and performing audit procedures and evaluating audit evidence. Accordingly, when developing the overall audit strategy in accordance with ISA (NZ) 300, the engagement team may need to consider whether such conditions exist in the audit engagement and, if so, what actions the firm or the engagement team may need to undertake to mitigate such impediments.

A34. Impediments to the exercise of professional scepticism at the engagement level may include, but are not limited to:

  • Budget constraints, which may discourage the use of sufficiently experienced or technically qualified resources, including experts, necessary for audits of entities where technical expertise or specialised skills are needed for effective understanding, assessment of and responses to risks and informed questioning of management.

  • Tight deadlines, which may negatively affect the behaviour of those who perform the work as well as those who direct, supervise and review. For example, external time pressures may create restrictions to analysing complex information effectively.

  • Lack of cooperation or undue pressures imposed by management, which may negatively affect the engagement team’s ability to resolve complex or contentious issues.

  • Insufficient understanding of the entity and its environment, its system of internal control and the applicable financial reporting framework, which may constrain the ability of the engagement team to make appropriate judgements and an informed questioning of management’s assertions.

  • Difficulties in obtaining access to records, facilities, certain employees, customers, vendors or others, which may cause the engagement team to bias the selection of sources of audit evidence and seek audit evidence from sources that are more easily accessible.

  • Overreliance on automated tools and techniques, which may result in the engagement team not critically assessing audit evidence.

A35. Unconscious or conscious auditor biases may affect the engagement team’s professional judgements, including for example, in the design and performance of audit procedures, or the evaluation of audit evidence. Examples of unconscious auditor biases that may impede the exercise of professional scepticism, and therefore the reasonableness of the professional judgements made by the engagement team in complying with the requirements of this ISA (NZ), may include:

  • Availability bias, which is a tendency to place more weight on events or experiences that immediately come to mind or are readily available than on those that are not.

  • Confirmation bias, which is a tendency to place more weight on information that corroborates an existing belief than information that contradicts or casts doubt on that belief.

  • Groupthink, which is a tendency to think or make decisions as a group that discourages creativity or individual responsibility.

  • Overconfidence bias, which is a tendency to overestimate one's own ability to make accurate assessments of risk or other judgements or decisions.

  • Anchoring bias, which is a tendency to use an initial piece of information as an anchor against which subsequent information is inadequately assessed.

  • Automation bias, which is a tendency to favour output generated from automated systems, even when human reasoning or contradictory information raises questions as to whether such output is reliable or fit for purpose.

A36. Possible actions that the engagement team may take to mitigate impediments to the exercise of professional scepticism at the engagement level may include:

  • Remaining alert to changes in the nature or circumstances of the audit engagement that necessitate additional or different resources for the engagement, and requesting additional or different resources from those individuals within the firm responsible for allocating or assigning resources to the engagement.

  • Explicitly alerting the engagement team to instances or situations when vulnerability to unconscious or conscious auditor biases may be greater (e.g., areas involving greater judgement) and emphasising the importance of seeking advice from more experienced members of the engagement team in planning and performing audit procedures.

  • Changing the composition of the engagement team, for example, requesting that more experienced individuals with greater skills or knowledge or specific expertise are assigned to the engagement.

  • Involving more experienced members of the engagement team when dealing with members of management who are difficult or challenging to interact with.

  • Involving members of the engagement team with specialised skills and knowledge or an auditor’s expert to assist the engagement team with complex or subjective areas of the audit.

  • Modifying the nature, timing and extent of direction, supervision or review by involving more experienced engagement team members, more in-person oversight on a more frequent basis or more in-depth reviews of certain working papers for:

  • Complex or subjective areas of the audit;

  • Areas that pose risks to achieving quality on the audit engagement;

  • Areas with a fraud risk; and

  • Identified or suspected non-compliance with laws or regulations.

  • Setting expectations for:

  • Less experienced members of the engagement team to seek advice frequently and in a timely manner from more experienced engagement team members or the engagement partner; and

  • More experienced members of the engagement team to be available to less experienced members of the engagement team throughout the audit engagement and to respond positively and in a timely manner to their insights, requests for advice or assistance.

  • Communicating with those charged with governance when management imposes undue pressure or the engagement team experiences difficulties in obtaining access to records, facilities, certain employees, customers, vendors or others from whom audit evidence may be sought.

Assigning Procedures, Tasks, or Actions to Other Members of the Engagement Team (Ref: Para. 15)

A37. Being sufficiently and appropriately involved throughout the audit engagement when procedures, tasks or actions have been assigned to other members of the engagement team may be demonstrated by the engagement partner in different ways, including:

  • Informing assignees about the nature of their responsibilities and authority, the scope of the work being assigned and the objectives thereof; and to provide any other necessary instructions and relevant information.

  • Direction and supervision of the assignees.

  • Review of the assignees’ work to evaluate the conclusions reached, in addition to the requirements in paragraphs 29–34.

Relevant Ethical Requirements, Including Those Related to Independence (Ref: Para. 16– 21)

Relevant Ethical Requirements (Ref: Para. 1, 16–21)
NZA38. ISA (NZ) 200 31 requires that the auditor comply with relevant ethical requirements, including those pertaining to independence, relating to financial statement audit engagements. Relevant ethical requirements may vary depending on the nature and circumstances of the engagement. For example, certain requirements related to independence may be applicable only when performing audits of FMC reporting entities considered to have a higher level of public accountability. ISA (NZ) 600 (Revised) includes additional requirements and guidance to those in this ISA (NZ) regarding communications about relevant ethical requirements with component auditors.

A39. Based on the nature and circumstances of the audit engagement, certain law, regulation or aspects of relevant ethical requirements, such as those pertaining to non-compliance with laws or regulations, may be relevant to the engagement, for example laws or regulations dealing with money laundering, corruption, or bribery.

A40. The firm’s information system and the resources provided by the firm may assist the engagement team in understanding and fulfilling relevant ethical requirements applicable to the nature and circumstances of the audit engagement. For example, the firm may:

  • Communicate the independence requirements to engagement teams.

  • Provide training for engagement teams on relevant ethical requirements.

  • Establish manuals and guides (i.e., intellectual resources) containing the provisions of the relevant ethical requirements and guidance on how they are applied in the nature and circumstances of the firm and its engagements.

  • Assign personnel to manage and monitor compliance with relevant ethical requirements (e.g., PES 3 requires that the firm obtains, at least annually, a documented confirmation of compliance with the independence requirements from all personnel required by relevant ethical requirements to be independent) or provide consultation on matters related to relevant ethical requirements.

  • Establish policies or procedures for engagement team members to communicate relevant and reliable information to appropriate parties within the firm or to the engagement partner, such as policies or procedures for engagement teams to:

  • Communicate information about client engagements and the scope of services, including non-assurance services, to enable the firm to identify threats to independence during the period of the engagement and during the period covered by the subject matter.

  • Communicate circumstances and relationships that may create a threat to independence, so that the firm can evaluate whether such a threat is at an acceptable level and if it is not, address the threat by eliminating it or reducing it to an acceptable level.

  • Promptly communicate any breaches of the relevant ethical requirements, including those related to independence.

A41. The engagement partner may take into account the information, communication, and resources described in paragraph A40 when determining whether the engagement partner may depend on the firm’s policies or procedures in complying with relevant ethical requirements.

A42. Open and robust communication between the members of the engagement team about relevant ethical requirements may also assist in:

  • Drawing the attention of engagement team members to relevant ethical requirements that may be of particular significance to the audit engagement; and

  • Keeping the engagement partner informed about matters relevant to the engagement team’s understanding and fulfillment of relevant ethical requirements and the firm’s related policies or procedures.

Identifying and Evaluating Threats to Compliance with Relevant Ethical Requirements (Ref: Para. 17–18)

A43. In accordance with PES 3, the firm’s responses to address the quality risks in relation to relevant ethical requirements, including those related to independence for engagement team members, include policies or procedures for identifying, evaluating and addressing threats to compliance with the relevant ethical requirements.

A44. Relevant ethical requirements may contain provisions regarding the identification and evaluation of threats and how they are to be dealt with. For example, Professional and Ethical Standard 1 explains that a self-interest threat to compliance with the fundamental principle of professional competence and due care may arise if the fee quoted for an audit engagement is so low that it might be difficult to perform the engagement in accordance with professional standards.32

Breaches of Relevant Ethical Requirements (Ref: Para. 19)

A45. In accordance with PES 3, the firm is required to establish policies or procedures for identifying, communicating, evaluating and reporting of any breaches of relevant ethical requirements and appropriately responding to the causes and consequences of the breaches in a timely manner.

Taking Appropriate Action (Ref: Para. 20)

A46. Appropriate actions may include, for example:

  • Following the firm’s policies or procedures regarding breaches of relevant ethical requirements, including communicating to or consulting with the appropriate individuals so that appropriate action can be taken, including as applicable, disciplinary action(s).

  • Communicating with those charged with governance.

  • Communicating with regulatory authorities or professional bodies. In some circumstances, communication with regulatory authorities may be required by law or regulation.

  • Seeking legal advice.

  • Withdrawing from the audit engagement, when withdrawal is possible under applicable law or regulation.

Prior to Dating the Auditor’s Report (Ref: Para. 21)

A47. ISA (NZ) 700 (Revised) requires that the auditor’s report include a statement that the auditor is independent of the entity in accordance with the relevant ethical requirements relating to the audit, and that the auditor has fulfilled the auditor’s other ethical responsibilities in accordance with these requirements.33 Performing the procedures required by paragraphs 16–21 of this ISA (NZ) provides the basis for these statements in the auditor’s report.

Considerations Specific to Public Sector Entities

A48. Statutory measures may provide safeguards for the independence of public sector auditors. However, public sector auditors or audit firms carrying out public sector audits on behalf of the statutory auditor may, depending on the terms of the mandate in a particular jurisdiction, need to adapt their approach to promote compliance with paragraph 16. This may include, where the public sector auditor’s mandate does not permit withdrawal from the audit engagement, disclosure through a public report of circumstances that have arisen that would, if they were in the private sector, lead the auditor to withdraw.

Acceptance and Continuance of Client Relationships and Audit Engagements (Ref: Para. 22–24)

A49. PES 3 requires the firm to establish quality objectives that address the acceptance and continuance of client relationships and specific engagements.

A50. Information such as the following may assist the engagement partner in determining whether the conclusions reached regarding the acceptance and continuance of client relationships and audit engagements are appropriate:

  • The integrity and ethical values of the principal owners, key management and those charged with governance of the entity;

  • Whether sufficient and appropriate resources are available to perform the engagement;

  • Whether management and those charged with governance have acknowledged their responsibilities in relation to the engagement;

  • Whether the engagement team has the competence and capabilities, including sufficient time, to perform the engagement; and

  • Whether significant matters that have arisen during the current or previous engagement have implications for continuing the engagement.

A51. Under PES 3, for acceptance and continuance decisions, the firm is required to make judgements about the firm’s ability to perform the engagement in accordance with professional standards and applicable legal and regulatory requirements. The engagement partner may use the information considered by the firm in this regard in determining whether the conclusions reached regarding the acceptance and continuance of client relationships and audit engagements are appropriate. If the engagement partner has concerns regarding the appropriateness of the conclusions reached, the engagement partner may discuss the basis for those conclusions with those involved in the acceptance and continuance process.

A52. If the engagement partner is directly involved throughout the firm’s acceptance and continuance process, the engagement partner will be aware of the information obtained or used by the firm, in reaching the related conclusions. Such direct involvement may also provide a basis for the engagement partner’s determination that the firm’s policies or procedures have been followed and that the conclusions reached are appropriate.

A53. Information obtained during the acceptance and continuance process may assist the engagement partner in complying with the requirements of this ISA (NZ) and making informed decisions about appropriate courses of action. Such information may include:

  • Information about the size, complexity and nature of the entity, including whether it is a group audit, the industry in which it operates and the applicable financial reporting framework;

  • The entity’s timetable for reporting, such as at interim and final stages;

  • In relation to group audits, the nature of the control relationships between the parent and its entities and business units; and

  • Whether there have been changes in the entity or in the industry in which the entity operates since the previous audit engagement that may affect the nature of resources required, as well as the manner in which the work of the engagement team will be directed, supervised and reviewed.

A54. Information obtained during acceptance and continuance may also be relevant in complying with the requirements of other ISAs (NZ), as well as this ISA (NZ), for example with respect to:

  • Establishing an understanding of the terms of the audit engagement, as required by ISA (NZ) 210;34

  • Identifying and assessing risks of material misstatement, whether due to error or fraud, in accordance with ISA (NZ) 315 (Revised 2019) and ISA (NZ) 240;35

  • Understanding the group and its environment, in the case of an audit of group financial statements in accordance with ISA (NZ) 600 (Revised), and directing, supervising and reviewing the work of component auditors;

  • Determining whether, and how, to involve an auditor’s expert in accordance with ISA (NZ) 620; and

  • The entity’s governance structure in accordance with ISA (NZ) 260 (Revised)36 and ISA (NZ) 265.37

A55. Law, regulation, or relevant ethical requirements may require the successor auditor to request, prior to accepting the audit engagement, the predecessor auditor to provide known information regarding any facts or circumstances that, in the predecessor auditor’s judgment, the successor auditor needs to be aware of before deciding whether to accept the engagement. In some circumstances, the predecessor auditor may be required, on request by the proposed successor auditor, to provide information regarding identified or suspected non-compliance with laws and regulations to the proposed successor auditor. For example, if the predecessor auditor has withdrawn from the engagement as a result of identified or suspected non- compliance with laws and regulations, Professional and Ethical Standard 1 requires that the predecessor auditor, on request by a proposed successor auditor, provide all relevant facts and other information concerning such non-compliance that, in the predecessor auditor’s opinion, the proposed successor auditor needs to be aware of before deciding whether to accept the audit appointment.

A56. In circumstances when the firm is obligated by law or regulation to accept or continue an audit engagement, the engagement partner may take into account information obtained by the firm about the nature and circumstances of the engagement.

A57. In deciding on the necessary action, the engagement partner and the firm may conclude that it is appropriate to continue with the audit engagement and, if so, determine what additional steps are necessary at the engagement level (e.g., the assignment of more staff or staff with specific expertise). If the engagement partner has further concerns or is not satisfied that the matter has been appropriately dealt with, the firm’s policies or procedures for resolving differences of opinion may be applicable.

Considerations Specific to Public Sector Entities (Ref: Para. 22–24)

A58. In the public sector, auditors may be appointed in accordance with statutory procedures and the public sector auditor may not need to establish all policies or procedures regarding the acceptance and continuance of audit engagements. Nevertheless, the requirements and considerations for the acceptance and continuance of client relationships and engagements as set out in paragraphs 22–24 and A49–A57 may be valuable to public sector auditors in performing risk assessments and in carrying out reporting responsibilities.

Engagement Resources (Ref: Para. 25–28)

A59. Under PES 3, the resources assigned or made available by the firm to support the performance of audit engagements include:

  • Human resources;

  • Technological resources; and

  • Intellectual resources.

A60. Resources for an audit engagement are primarily assigned or made available by the firm, although there may be circumstances when the engagement team directly obtains resources for the audit engagement. For example, this may be the case when a component auditor is required by statute, regulation or for another reason to express an audit opinion on the financial statements of a component, and the component auditor is also appointed by component management to perform audit procedures on behalf of the group auditor. In such circumstances, the firm’s policies or procedures may require the engagement partner to take different actions, such as requesting information from the component auditor, to determine whether sufficient and appropriate resources are assigned or made available.

A61. A relevant consideration for the engagement partner, in complying with the requirements in paragraphs 25 and 26, may be whether the resources assigned or made available to the engagement team enable fulfillment of relevant ethical requirements, including ethical principles such as professional competence and due care.

Human Resources

A62. Human resources include members of the engagement team (see also paragraphs A5, A15– A21) and, where applicable, an auditor’s external expert and individuals from within the entity’s internal audit function who provide direct assistance on the audit.

Technological Resources

A63. The use of technological resources on the audit engagement may assist the auditor in obtaining sufficient appropriate audit evidence. Technological tools may allow the auditor to more effectively and efficiently manage the audit. Technological tools may also allow the auditor to evaluate large amounts of data more easily to, for example, provide deeper insights, identify unusual trends or more effectively challenge management’s assertions, which enhances the ability of the auditor to exercise professional scepticism. Technological tools may also be used to conduct meetings and provide communication tools to the engagement team. Inappropriate use of such technological resources may, however, increase the risk of overreliance on the information produced for decision making purposes, or may create threats to complying with relevant ethical requirements, for example, requirements related to confidentiality.

A64. The firm’s policies or procedures may include required considerations or responsibilities for the engagement team when using firm approved technological tools to perform audit procedures and may require the involvement of individuals with specialised skills or expertise in evaluating or analysing the output.

A65. When the engagement partner requires individuals from another firm to use specific automated tools and techniques when performing audit procedures, communications with those individuals may indicate that the use of such automated tools and techniques needs to comply with the engagement team’s instructions.

A66. The firm’s policies or procedures may specifically prohibit the use of certain IT applications or features of IT applications (e.g., software that has not yet been specifically approved for use by the firm). Alternatively, the firm’s policies or procedures may require the engagement team to take certain actions before using an IT application that is not firm-approved to determine it is appropriate for use, for example by requiring:

  • The engagement team to have appropriate competence and capabilities to use the IT application.

  • Testing the operation and security of the IT application.

  • Specific documentation to be included in the audit file.

A67. The engagement partner may exercise professional judgement in considering whether the use of an IT application on the audit engagement is appropriate in the context of the engagement, and if so, how the IT application is to be used. Factors that may be considered in determining whether a particular IT application, that has not been specifically approved for use by the firm, is appropriate for use in the audit engagement include whether:

  • Use and security of the IT application complies with the firm’s policies or procedures.

  • The IT application operates as intended.

  • Personnel have the competence and capabilities required to use the IT application.

Intellectual Resources

A68. Intellectual resources include, for example, audit methodologies, implementation tools, auditing guides, model programs, templates, checklists or forms.

A69. The use of intellectual resources on the audit engagement may facilitate the consistent application and understanding of professional standards, law and regulation, and related firm policies or procedures. For this purpose, the engagement team may be required, in accordance with the firm’s policies or procedures, to use the firm’s audit methodology and specific tools and guidance. The engagement team may also consider whether the use of other intellectual resources is appropriate and relevant based on the nature and circumstances of the engagement, for example, an industry specific methodology or related guides and performance aids.

Sufficient and Appropriate Resources to Perform the Engagement (Ref: Para. 25)

A70. In determining whether sufficient and appropriate resources to perform the engagement have been assigned or made available to the engagement team, ordinarily the engagement partner may depend on the firm’s related policies or procedures (including resources) as described in paragraph A6. For example, based on information communicated by the firm, the engagement partner may be able to depend on the firm’s technological development, implementation and maintenance programs when using firm-approved technology to perform audit procedures.

Competence and Capabilities of the Engagement Team (Ref: Para. 26)

A71. When determining that the engagement team has the appropriate competence and capabilities, the engagement partner may take into consideration such matters as the team’s:

  • Understanding of, and practical experience with, audit engagements of a similar nature and complexity through appropriate training and participation.

  • Understanding of professional standards and applicable legal and regulatory requirements.

  • Expertise in specialised areas of accounting or auditing.

  • Expertise in IT used by the entity or automated tools or techniques that are to be used by the engagement team in planning and performing the audit engagement.

  • Knowledge of relevant industries in which the entity being audited operates.

  • Ability to exercise professional scepticism and professional judgement.

  • Understanding of the firm’s policies or procedures.

A72. Internal auditors and an auditor’s external expert are not members of the engagement team. ISA (NZ) 610 (Revised 2013)38 and ISA (NZ) 62039 include requirements and guidance relating to the assessment of the competence and capabilities of internal auditors and an auditor’s external expert, respectively.

Project Management

A73. In situations where there are many engagement team members, for example in an audit of a larger or more complex entity, the engagement partner may involve an individual who has specialised skills or knowledge in project management, supported by appropriate technological and intellectual resources of the firm. Conversely, in an audit of a less complex entity with few engagement team members, project management may be achieved by a member of the engagement team through less formal means.

A74. Project management techniques and tools may support the engagement team in managing the quality of the audit engagement by, for example:

  • Increasing the engagement team’s ability to exercise professional scepticism through alleviating budget or time constraints that may otherwise impede the exercise of professional scepticism;

  • Facilitating timely performance of audit work to effectively manage time constraints at the end of the audit process when more difficult or contentious matters may arise;

  • Monitoring the progress of the audit against the audit plan,40 including the achievement of key milestones, which may assist the engagement team in being proactive in identifying the need for making timely adjustments to the audit plan and the assigned resources; or

  • Facilitating communication among members of the engagement team, for example, coordinating arrangements with component auditors and auditor’s experts.

Insufficient or Inappropriate Resources (Ref: Para. 27)

A75. PES 3 addresses the firm’s commitment to quality through its culture that exists throughout the firm, which recognises and reinforces the firm’s role in serving the public interest by consistently performing quality engagements, and the importance of quality in the firm’s strategic decisions and actions, including the firm’s financial and operational priorities. PES 3 also addresses the firm’s responsibilities for planning for resource needs, and obtaining, allocating or assigning resources in a manner that is consistent with the firm’s commitment to quality. However, in certain circumstances, the firm’s financial and operational priorities may place constraints on the resources assigned or made available to the engagement team. In such circumstances, these constraints do not override the engagement partner’s responsibility for achieving quality at the engagement level, including for determining that the resources assigned or made available by the firm are sufficient and appropriate to perform the audit engagement.

A76. The engagement partner’s determination of whether additional engagement level resources are required is a matter of professional judgement and is influenced by the requirements of this ISA (NZ) and the nature and circumstances of the audit engagement. As described in paragraph A11, in certain circumstances, the engagement partner may determine that the firm’s responses to quality risks are ineffective in the context of the specific engagement, including that certain resources assigned or made available to the engagement team are insufficient. In those circumstances, the engagement partner is required to take appropriate action, including communicating such information to the appropriate individuals in accordance with paragraph 27 and paragraph 39(c). For example, if an audit software program provided by the firm has not incorporated new or revised audit procedures in respect of recently issued industry regulation, timely communication of such information to the firm enables the firm to take steps to update and reissue the software promptly or to provide an alternative resource that enables the engagement team to comply with the new regulation in the performance of the audit engagement.

A77. If the resources assigned or made available are insufficient or inappropriate in the circumstances of the engagement and additional or alternative resources have not been made available, appropriate actions may include:

  • Changing the planned approach to the nature, timing and extent of direction, supervision and review (see also paragraph A93).

  • Discussing an extension to reporting deadlines with management or those charged with governance, when an extension is possible under applicable law or regulation.

  • Following the firm’s policies or procedures for resolving differences of opinion if the engagement partner does not obtain the necessary resources for the audit engagement.

  • Following the firm’s policies or procedures for withdrawing from the audit engagement, when withdrawal is possible under applicable law or regulation.

Considerations Specific to Public Sector Entities (Ref: Para. 25–28)

A78. In the public sector, specialised skills may be necessary to discharge the terms of the audit mandate in a particular jurisdiction. Such skills may include an understanding of the applicable reporting arrangements, including reporting to the legislature or other governing body or reporting in the public interest. The wider scope of a public sector audit may include, for example, some aspects of performance auditing.

Engagement Performance

Scalability (Ref: Para. 29)

A79. When an audit is not carried out entirely by the engagement partner, or in an audit of an entity whose nature and circumstances are more complex, it may be necessary for the engagement partner to assign direction, supervision, and review to other members of the engagement team. However, as part of the engagement partner’s overall responsibility for managing and achieving quality on the audit engagement and to be sufficiently and appropriately involved, the engagement partner is required to determine that the nature, timing and extent of direction, supervision and review is undertaken in accordance with paragraph 30. In such circumstances, personnel or members of the engagement team, including component auditors, may provide information to the engagement partner to enable the engagement partner to make the determination required by paragraph 30.

Direction, Supervision and Review (Ref: Para. 30)

A80. Under PES 3, the firm is required to establish a quality objective that addresses the nature, timing and extent of the direction and supervision of engagement teams and review of their work. PES 3 also requires that such direction, supervision and review is planned and performed on the basis that the work performed by less experienced members of the engagement team is directed, supervised and reviewed by more experienced engagement team members.

A81. Direction and supervision of the engagement team and the review of the work of the engagement team are firm-level responses that are implemented at the engagement level, of which the nature, timing and extent may be further tailored by the engagement partner in managing the quality of the audit engagement. Accordingly, the approach to direction, supervision and review will vary from one engagement to the next, taking into account the nature and circumstances of the engagement. The approach will generally include a combination of addressing the firm’s policies or procedures and engagement specific responses.

A82. The approach to the direction and supervision of the members of the engagement team and the review of their work provides support for the engagement partner in fulfilling the requirements of this ISA (NZ), and in concluding that the engagement partner has been sufficiently and appropriately involved throughout the audit engagement in accordance with paragraph 40.

A83. Ongoing discussion and communication among members of the engagement team allows less experienced engagement team members to raise questions with more experienced engagement team members (including the engagement partner) in a timely manner and enables effective direction, supervision and review in accordance with paragraph 30.

Direction

A84. Direction of the engagement team may involve informing the members of the engagement team of their responsibilities, such as:

  • Contributing to the management and achievement of quality at the engagement level through their personal conduct, communication and actions.

  • Maintaining a questioning mind and being aware of unconscious or conscious auditor biases in exercising professional scepticism when gathering and evaluating audit evidence (see paragraph A35).

  • Fulfilling relevant ethical requirements.

  • The responsibilities of respective partners when more than one partner is involved in the conduct of an audit engagement.

  • The responsibilities of respective engagement team members to perform audit procedures and of more experienced engagement team members to direct, supervise and review the work of less experienced engagement team members.

  • Understanding the objectives of the work to be performed and the detailed instructions regarding the nature, timing and extent of planned audit procedures as set forth in the overall audit strategy and audit plan.

  • Addressing threats to the achievement of quality, and the engagement team’s expected response. For example, budget constraints or resource constraints should not result in the engagement team members modifying planned audit procedures or failing to perform planned audit procedures.

Supervision

A85. Supervision may include matters such as:

  • Tracking the progress of the audit engagement, which includes monitoring:

  • The progress against the audit plan;

  • Whether the objective of work performed has been achieved; and

  • The ongoing adequacy of assigned resources.

  • Taking appropriate action to address issues arising during the engagement, including for example, reassigning planned audit procedures to more experienced engagement team members when issues are more complex than initially anticipated.

  • Identifying matters for consultation or consideration by more experienced engagement team members during the audit engagement.

  • Providing coaching and on-the-job training to help engagement team members develop skills or competencies.

  • Creating an environment where engagement team members raise concerns without fear of reprisals.

Review

A86. Review of the engagement team’s work provides support for the conclusion that the requirements of this ISA (NZ) have been addressed.

A87. Review of the engagement team’s work consists of consideration of whether, for example:

  • The work has been performed in accordance with the firm’s policies or procedures, professional standards and applicable legal and regulatory requirements;

  • Significant matters have been raised for further consideration;

  • Appropriate consultations have taken place and the resulting conclusions have been documented and implemented;

  • There is a need to revise the nature, timing and extent of work performed;

  • The work performed supports the conclusions reached and is appropriately documented;

  • The evidence obtained is sufficient and appropriate to provide a basis for the auditor’s opinion; and

  • The objectives of the audit procedures have been achieved.

A88. The firm’s policies or procedures may contain specific requirements regarding:

  • The nature, timing and extent of review of audit documentation;

  • Different types of review that may be appropriate in different situations (e.g., review of each individual working paper or selected working papers); and

  • Which members of the engagement team are required to perform the different types of review.

The Engagement Partner’s Review (Ref: Para. 30–34)

A89. As required by ISA (NZ) 230, the engagement partner documents the date and extent of the review.41

A90. Timely review of documentation by the engagement partner at appropriate stages throughout the audit engagement enables significant matters to be resolved to the engagement partner’s satisfaction on or before the date of the auditor’s report. The engagement partner need not review all audit documentation.

A91. The engagement partner exercises professional judgement in identifying the areas of significant judgement made by the engagement team. The firm’s policies or procedures may specify certain matters that are commonly expected to be significant judgements. Significant judgements in relation to the audit engagement may include matters related to the overall audit strategy and audit plan for undertaking the engagement, the execution of the engagement and the overall conclusions reached by the engagement team, for example:

  • Matters related to planning the engagement, such as matters related to determining materiality.

  • The composition of the engagement team, including:

  • Personnel using expertise in a specialised area of accounting or auditing;

  • The use of personnel from service delivery centres.

  • The decision to involve an auditor’s expert, including the decision to involve an external expert.

  • The engagement team's consideration of information obtained in the acceptance and continuance process and proposed responses to that information.

  • The engagement team's risk assessment process, including situations where consideration of inherent risk factors and the assessment of inherent risk requires significant judgement by the engagement team.

  • The engagement team's consideration of related party relationships and transactions and disclosures.

  • Results of the procedures performed by the engagement team on significant areas of the engagement, for example, conclusions in respect of certain accounting estimates, accounting policies or going concern considerations.

  • The engagement team's evaluation of the work performed by experts and conclusions drawn therefrom.

  • In group audit situations:

  • The proposed overall group audit strategy and group audit plan;

  • Decisions about the involvement of component auditors, including how to direct and supervise them and review their work; and

  • The evaluation of work performed by component auditors and the conclusions drawn therefrom.

  • How matters affecting the overall audit strategy and audit plan have been addressed.

  • The significance and disposition of corrected and uncorrected misstatements identified during the engagement.

  • The proposed audit opinion and matters to be communicated in the auditor’s report, for example, key audit matters, or a “Material Uncertainty Related to Going Concern” paragraph.

A92. The engagement partner exercises professional judgement in determining other matters to review, for example based on:

  • The nature and circumstances of the audit engagement.

  • Which engagement team member performed the work.

  • Matters relating to recent inspection findings.

  • The requirements of the firm’s policies or procedures.

Nature, Timing and Extent

A93. The nature, timing and extent of the direction, supervision and review are required to be planned and performed in accordance with the firm’s policies or procedures, as well as professional standards and applicable legal and regulatory requirements. For example, the firm’s policies or procedures may include that:

  • Work planned to be performed at an interim date is to be directed, supervised and reviewed at the same time as the performance of the procedures rather than at the end of the period, so that any necessary corrective action can be taken in a timely manner.

  • Certain matters are to be reviewed by the engagement partner and the firm may specify the circumstances or engagements in which such matters are expected to be reviewed.

Scalability

A94. The approach to direction, supervision and review may be tailored depending on, for example:

  • The engagement team member’s previous experience with the entity and the area to be audited. For example, if the work related to the entity’s information system is being performed by the same engagement team member who performed the work in the prior period and there are no significant changes to the information system, the extent and frequency of the direction and supervision of the engagement team member may be less and the review of the related working papers may be less detailed.

  • The complexity of the audit engagement. For example, if significant events have occurred that make the audit engagement more complex, the extent and frequency of the direction and supervision of the engagement team member may be greater and the review of the related working papers may be more detailed.

  • The assessed risks of material misstatement. For example, a higher assessed risk of material misstatement may require a corresponding increase in the extent and frequency of the direction and supervision of engagement team members and a more detailed review of their work.

  • The competence and capabilities of the individual engagement team members performing the audit work. For example, less experienced engagement team members may require more detailed instructions and more frequent, or in-person, interactions as the work is performed.

  • The manner in which the reviews of the work performed are expected to take place. For example, in some circumstances, remote reviews may not be effective in providing the necessary direction and may need to be supplemented by in-person interactions.

  • The structure of the engagement team and the location of engagement team members. For example, direction and supervision of individuals located at service delivery centres and the review of their work may:

  • Be more formalised and structured than when members of the engagement team are all situated in the same location; or

  • Use IT to facilitate the communication between the members of the engagement team.

A95. Identification of changes in the engagement circumstances may warrant re-evaluation of the planned approach to the nature, timing or extent of direction, supervision or review. For example, if the assessed risk of material misstatement at the financial statement level increases because of a complex transaction, the engagement partner may need to change the planned level of review of the work related to the transaction.

A96. In accordance with paragraph 30(b), the engagement partner is required to determine that the approach to direction, supervision and review is responsive to the nature and circumstances of the audit engagement. For example, if a more experienced engagement team member becomes unavailable to participate in the supervision and review of the engagement team, the engagement  partner may need to increase the extent of supervision and review of the less experienced engagement team members.

Review of Communications to Management, Those Charged with Governance, or Regulatory Authorities (Ref: Para. 34)

A97. The engagement partner uses professional judgement in determining which written communications to review, taking into account the nature and circumstances of the audit engagement. For example, it may not be necessary for the engagement partner to review communications between the engagement team and management in the ordinary course of the audit.

Consultation (Ref: Para. 35)

A98. PES 3 requires the firm to establish a quality objective that addresses consultation on difficult or contentious matters and how the conclusions agreed are implemented. Consultation may be appropriate or required, for example for:

  • Issues that are complex or unfamiliar (e.g., issues related to an accounting estimate with a high degree of estimation uncertainty);

  • Significant risks;

  • Significant transactions that are outside the normal course of business for the entity, or that otherwise appear to be unusual;

  • Limitations imposed by management; and

  • Non-compliance with laws or regulations.

A99. Effective consultation on significant technical, ethical and other matters within the firm or, where applicable, outside the firm may be achieved when those consulted:

  • Are given all the relevant facts that will enable them to provide informed advice; and

  • Have appropriate knowledge, seniority and experience.

A100. It may be appropriate for the engagement team, in the context of the firm’s policies or procedures, to consult outside the firm, for example, where the firm lacks appropriate internal resources. The engagement team may take advantage of advisory services provided by firms, professional and regulatory bodies or commercial organisations that provide relevant quality control services.

A101. The need for consultation outside the engagement team on a difficult or contentious matter may be an indicator that the matter is a key audit matter.42

Engagement Quality Review (Ref: Para. 36)

A102. PES 3 contains requirements that the firm establish policies or procedures addressing engagement quality reviews in accordance with PES 4, and requiring an engagement quality review for certain types of engagements.43 PES 4 deals with the appointment and eligibility of the engagement quality reviewer and the engagement quality reviewer’s responsibilities relating to performing and documenting an engagement quality review.

Completion of the Engagement Quality Review Before Dating of the Auditor’s Report (Ref: Para. 36(d))

A103. ISA (NZ) 700 (Revised) requires the auditor’s report to be dated no earlier than the date on which the auditor has obtained sufficient appropriate audit evidence on which to base the auditor’s opinion on the financial statements.44 If applicable to the audit engagement, PES 4 and this ISA (NZ) require that the engagement partner be precluded from dating the engagement report until notification has been received from the engagement quality reviewer that the engagement quality review is complete. For example, if the engagement quality reviewer has communicated to the engagement partner concerns about the significant judgements made by the engagement team or that the conclusions reached thereon were not appropriate then the engagement quality review is not complete.45

A104. An engagement quality review that is conducted in a timely manner at appropriate stages during the audit engagement may assist the engagement team in promptly resolving matters raised to the engagement quality reviewer’s satisfaction on or before the date of the auditor’s report.

A105. Frequent communications between the engagement team and the engagement quality reviewer throughout the audit engagement may assist in facilitating an effective and timely engagement quality review. In addition to discussing significant matters with the engagement quality reviewer, the engagement partner may assign responsibility for coordinating requests from the engagement quality reviewer to another member of the engagement team.

Differences of Opinion (Ref: Para. 37–38)

A106. PES 3 requires the firm to establish a quality objective that addresses differences of opinion that arise within the engagement team, or between the engagement team and the engagement quality reviewer or individuals performing activities within the firm’s system of quality management. PES 3 also requires that differences of opinion are brought to the attention of the firm and resolved.

A107. In some circumstances, the engagement partner may not be satisfied with the resolution of the difference of opinion. In such circumstances, appropriate actions for the engagement partner may include, for example:

  • Seeking legal advice; or

  • Withdrawing from the audit engagement, when withdrawal is possible under applicable law or regulation.

Monitoring and Remediation (Ref: Para. 39)

A108. PES 3 sets out requirements for the firm’s monitoring and remediation process. PES 3 requires the firm to communicate to engagement teams information about the firm’s monitoring and remediation process to enable them to take prompt and appropriate action in accordance with their responsibilities.46 Further, information provided by members of the engagement team may be used by the firm in the firm’s monitoring and remediation process, and exercising professional judgement and professional scepticism while conducting the audit may assist the members of the engagement team in remaining alert for information that may be relevant to that process.

A109. Information provided by the firm may be relevant to the audit engagement when, for example, it relates to findings on another engagement performed by the engagement partner or other members of the engagement team, findings from the local firm office or inspection results of previous audits of the entity.

A110. In considering information communicated by the firm through its monitoring and remediation process and how it may affect the audit engagement, the engagement partner may consider the remedial actions designed and implemented by the firm to address identified deficiencies and, to the extent relevant to the nature and circumstances of the engagement, communicate accordingly to the engagement team. The engagement partner may also determine whether additional remedial actions are needed at the engagement level. For example, the engagement partner may determine that:
  • An auditor’s expert is needed; or

  • The nature, timing and extent of direction, supervision and review needs to be enhanced in an area of the audit where deficiencies have been identified.

If an identified deficiency does not affect the quality of the audit (e.g., if it relates to a technological resource that the engagement team did not use) then no further action may be needed.

A111. An identified deficiency in the firm’s system of quality management does not necessarily indicate that an audit engagement was not performed in accordance with professional standards and applicable legal and regulatory requirements, or that the auditor’s report was not appropriate in the circumstances.

Taking Overall Responsibility for Managing and Achieving Quality (Ref: Para. 40)

A112. PES 3 requires the firm to establish a quality objective addressing the engagement team’s understanding and fulfilment of their responsibilities in connection with the engagement. PES 3 further requires that the quality objective include the overall responsibility of engagement partners for managing and achieving quality on the engagement and being sufficiently and appropriately involved throughout the engagement.

A113. Relevant considerations in addressing paragraph 40 include determining how the engagement partner has complied with the requirements of this ISA (NZ), given the nature and circumstances of the audit engagement and how the audit documentation evidences the engagement partner’s involvement throughout the audit engagement, as described in paragraph A118.

A114. Indicators that the engagement partner may not have been sufficiently and appropriately involved include, for example:

  • Lack of timely review by the engagement partner of the audit engagement planning, including reviewing the assessment of risks of material misstatement and the design of those responses to those risks.

  • Evidence that those to whom tasks, actions or procedures have been assigned were not adequately informed about the nature of their responsibilities and authority, the scope of the work being assigned and the objectives thereof; and were not provided other necessary instructions and relevant information.

  • A lack of evidence of the engagement partner’s direction and supervision of the other members of the engagement team and the review of their work.

A115. If the engagement partner’s involvement does not provide the basis for determining that the significant judgements made and the conclusions reached are appropriate, the engagement partner will not be able to reach the determination required by paragraph 40. In addition to taking account of firm policies or procedures that may set forth the required actions to be taken in such circumstances, appropriate actions that the engagement partner may take, include, for example:

  • Updating and changing the audit plan;

  • Re-evaluating the planned approach to the nature and extent of review and modifying the planned approach to increase the involvement of the engagement partner; or

  • Consulting with personnel assigned operational responsibility for the relevant aspect of the firm’s system of quality management.

Documentation (Ref: Para. 41)

A116. In accordance with ISA (NZ) 230,47 audit documentation provides evidence that the audit complies with the ISAs (NZ). However, it is neither necessary nor practicable for the auditor to document every matter considered, or professional judgement made, in an audit. Further, it is unnecessary for the auditor to document separately (as in a checklist, for example) compliance with matters for which compliance is demonstrated by documents included within the audit file.

A117. Documentation of the performance of the requirements of this ISA (NZ), including evidencing the involvement of the engagement partner and the engagement partner’s determination in accordance with paragraph 40, may be accomplished in different ways depending on the nature and circumstances of the audit engagement. For example:

  • Direction of the engagement team can be documented through signoffs of the audit plan and project management activities;

  • Minutes from formal meetings of the engagement team may provide evidence of the clarity, consistency and effectiveness of the engagement partner’s communications and other actions in respect of culture and expected behaviours that demonstrate the firm’s commitment to quality;

  • Agendas from discussions between the engagement partner and other members of the engagement team, and where applicable the engagement quality reviewer, and related signoffs and records of the time the engagement partner spent on the engagement, may provide evidence of the engagement partner’s involvement throughout the audit engagement and supervision of other members of the engagement team; or

  • Signoffs by the engagement partner and other members of the engagement team provide evidence that the working papers were reviewed.

A118. When dealing with circumstances that may pose risks to achieving quality on the audit engagement, the exercise of professional scepticism, and the documentation of the auditor’s consideration thereof, may be important. For example, if the engagement partner obtains information that may have caused the firm to decline the engagement (see paragraph 24), the documentation may include explanations of how the engagement team dealt with the circumstance.

A119. Documentation of consultations with other professionals that involve difficult or contentious matters that is sufficiently complete and detailed contributes to an understanding of:

  • The nature and scope of the issue on which consultation was sought; and

  • The results of the consultation, including any decisions taken, the basis for those decisions and how they were implemented.

15 ISA (NZ) 600 (Revised), Special Considerations—Audits of Group Financial Statements (Including the Work of Component Auditors)

16 PES 3, paragraph 49(b)

17 PES 3, paragraph 49(a)

18 ISA (NZ) 200 requires the auditor to exercise professional judgment in planning and performing an audit of financial statements.

19 ISA (NZ) 315 (Revised 2019), Identifying and Assessing the Risks of Material Misstatement

20ISA (NZ) 500, Audit Evidence, paragraph A10

21 ISA (NZ) 200, paragraph A30

22 ISA (NZ) 315 (Revised 2019) provides requirements related to risk assessment procedures.

23ISA (NZ) 330, The Auditor’s Responses to Assessed Risks, provides requirements related to further audit procedures, including tests of controls and substantive procedures.

24 ISA (NZ) 500, paragraphs A14‒A25

25 ISA (NZ) 520, Analytical Procedures

26 PES 3, paragraph 16(v)

27 See ISA (NZ) 620, paragraphs 12–13 and ISA (NZ) 610 (Revised 2013), paragraphs 21–25.

28 See paragraph 35.

29 See ISA (NZ) 610 (Revised 2013), paragraph A41.

30 See ISA (NZ) 620, paragraphs 11(c) and A30.

31 ISA (NZ) 200, paragraphs 14 and A16‒A19

32 PES 1, paragraph 330.3 A2

33 ISA (NZ) 700 (Revised), paragraph 28(c)

34ISA (NZ) 210, Agreeing the Terms of Audit Engagements, paragraph 9

35 ISA (NZ) 240, The Auditor’s Responsibilities Relating to Fraud in an Audit of Financial Statements

36 ISA (NZ) 260 (Revised), Communication with Those Charged with Governance

37 ISA (NZ) 265, Communicating Deficiencies in Internal Control to Those Charged with Governance and Management

38 ISA (NZ) 610 (Revised 2013), paragraph 15

39 ISA (NZ) 620, paragraph 9

40 See ISA (NZ) 300, paragraph 9.

41 ISA (NZ) 230, paragraph 9(c)

42 ISA (NZ) 701, paragraphs 9 and A14

43 PES 3, paragraph 34(f)

44 ISA (NZ) 700 (Revised), paragraph 49

45PES 4, paragraph 26

46 PES 3, paragraph 47

47 ISA (NZ) 230, paragraph A7

This conformity statement accompanies but is not part of ISA (NZ) 220 (Revised).

Conformity with International Standards on Auditing

This International Standard on Auditing (New Zealand) (ISA (NZ)) conforms to International Standard on Auditing ISA 220 (Revised) Quality Management for an Audit of a Financial Statements, issued by the International Auditing and Assurance Standards Board (IAASB), an independent standard-setting board of the International Federation of Accountants (IFAC).

Paragraphs that have been added to this ISA (NZ) (and do not appear in the text of the equivalent ISA) are identified with the prefix “NZ”.

The following definitions are additional to or have been amended from ISA 220 (Revised):

Paragraph

Summary of Change

NZ 12.1

Additional to ISA 220 (Revised), to include definitions of "Professional standards"

NZ 12.2

The definition of “Partner” is amended from ISA 220 (Revised) due to narrower mandate of XRB.

This definition also includes additional to ISA 220 (Revised) to include public sector specific definitions within ISA (NZ) 220 (Revised) that applies to New Zealand public sector audits.

Compliance with this ISA (NZ) enables compliance with ISA 220 (Revised).

Comparison with Australian Auditing Standards

In Australia the Australian Auditing and Assurance Standards Board (AUASB) has issued Australian Auditing Standard ASA 220 Quality Management for an Audit of a Financial Report and Other Historical Financial Information.

ASA 220 conforms to ISA 220.

The equivalent requirements and related application and other explanatory material included in ISA 220 in respect of “relevant ethical requirements”, have been included in another Auditing Standard, ASA 102 Compliance with Ethical Requirements when Performing Audits, Reviews and Other Assurance Engagements. There is no international equivalent to ASA 102.