Updated March 2026 · SA 200–720 · Companies Act 2013 · Ind AS
Audit of Financial Statements — The Complete Advanced Guide
From audit objectives and financial statement assertions through evidence gathering, risk assessment, going concern, analytical procedures, and the auditor's report — India's most comprehensive financial statement audit reference.
Objectives & Framework of a Financial Statement Audit
Understanding what an audit is — and is not — is the starting point for every practitioner
The overall objective of a financial statement audit, per SA 200, is to enable the auditor to express an opinion on whether the financial statements are prepared, in all material respects, in accordance with an applicable financial reporting framework. This opinion is embodied in the auditor's report — which provides reasonable, but not absolute, assurance.
Reasonable assurance is a high level of assurance, but not absolute, because of the inherent limitations of an audit — including the use of testing, reliance on internal controls, the persuasive (rather than conclusive) nature of evidence, and management's use of judgment in preparing financial statements.
SA 200 — Overall Objectives: The auditor must obtain sufficient appropriate audit evidence to reduce audit risk (the risk of expressing an inappropriate opinion) to an acceptably low level. Audit risk = Inherent Risk × Control Risk × Detection Risk. The auditor controls only Detection Risk through the design of audit procedures.
The auditor must be independent in both fact and appearance per ICAI Code of Ethics. Freedom from self-interest, self-review, familiarity, intimidation, and advocacy threats is mandatory.
🔍
Professional Skepticism
A questioning mind and critical assessment of audit evidence. Do not accept management's explanations at face value. Always corroborate with independent evidence, especially in high-risk areas.
📐
Professional Judgment
Application of relevant training, knowledge, and experience in making informed decisions throughout the audit — from materiality setting to assessment of going concern and sufficiency of evidence.
📁
Audit Documentation
SA 230 requires documentation of audit procedures, evidence obtained, and conclusions reached — sufficient for an experienced auditor to understand the nature, timing, extent, and results of the audit.
Applicable Financial Reporting Frameworks in India
Assertions are representations embedded in financial statements that the auditor tests to form their opinion
Management makes implicit and explicit representations — called assertions — when preparing financial statements. The auditor designs audit procedures specifically to test whether these assertions are materially correct. SA 315 classifies assertions across three categories.
Category A — Assertions for Classes of Transactions & Events
Occurrence
Occurrence
Transactions and events that have been recorded actually occurred and pertain to the entity. No fictitious transactions.
Completeness
Completeness
All transactions and events that should have been recorded have been recorded. Nothing is omitted.
Accuracy
Accuracy
Amounts and other data relating to transactions and events have been recorded appropriately. Correct amounts, correct accounts.
Cut-off
Cut-off
Transactions and events have been recorded in the correct accounting period. Revenue/expense belongs to the period stated.
Classification
Classification
Transactions and events have been recorded in the proper accounts — e.g., capital vs revenue, current vs non-current.
Category B — Assertions for Account Balances at Period End
Existence
Existence
Assets, liabilities, and equity interests exist at the balance sheet date. No phantom assets or unrecorded liabilities.
Rights & Obligations
Rights & Obligations
The entity holds or controls the rights to assets, and liabilities are its obligations. Title and ownership verified.
Completeness
Completeness
All assets, liabilities, and equity interests that should have been recorded have been recorded at period end.
Valuation & Allocation
Valuation & Allocation
Assets, liabilities, and equity interests are included at appropriate amounts — correct measurement basis applied (cost, NRV, fair value, etc.).
Category C — Assertions for Presentation & Disclosure
Occurrence & Rights
Occurrence & Rights
Disclosed events and transactions have occurred and pertain to the entity.
Completeness
Completeness
All disclosures that should have been included in the financial statements have been included per the framework.
Classification & Understandability
Classification & Understandability
Financial information is appropriately presented and described, and disclosures are clearly expressed.
Accuracy & Valuation
Accuracy & Valuation
Financial and other information is disclosed fairly and at appropriate amounts.
Practical Application: For every significant account balance or class of transaction, the auditor identifies which assertions are most at risk of material misstatement (e.g., Existence is the primary concern for Debtors; Completeness is the primary concern for Liabilities). Audit procedures are then designed to specifically address those high-risk assertions.
Materiality in Audit Planning — SA 320
Materiality determines the threshold above which a misstatement could reasonably be expected to influence the economic decisions of users
Materiality is not a precise science — it involves professional judgment. SA 320 requires the auditor to determine materiality at the planning stage and revise it as the audit progresses if new information suggests the original estimate was wrong.
Overall Materiality — Common BenchmarksProfit-oriented entity (stable PBT): 5% – 10% of Profit Before Tax
Low-margin / loss-making entity: 0.5% – 2% of Total Revenue
Asset-intensive entity / holding co.: 1% – 2% of Total Assets
Not-for-profit / charity: 1% – 2% of Total Expenditure
Performance Materiality= 50% – 75% of Overall Materiality (used for testing; creates buffer for undetected errors)
Trivial / Clearly Inconsequential Threshold= 3% – 5% of Overall Materiality (misstatements below this need not be accumulated in SOUP)
⚠ Common Error: Materiality is set based on professional judgment — not derived mechanically. If a particular item is qualitatively material (e.g., director remuneration, related-party transactions, regulatory violations) it must be reported even if below the quantitative threshold. Qualitative materiality is equally important.
Specific Materiality for Sensitive Disclosures
Area
Why Specific Materiality Applies
Consideration
Related Party Transactions
Users make decisions based on RPT disclosures; even small amounts matter if undisclosed
Set lower than overall materiality — often 25–50%
Director / KMP Remuneration
Section 197 compliance; shareholder scrutiny; even small excess is qualitatively material
Report all non-compliance regardless of amount
Fraud or Suspected Fraud
Users expect auditor to report any known fraud; no materiality threshold applies to fraud
Fundamental to user reliance on financial statements
No materiality threshold — always disclose if doubt exists
Risk Assessment — SA 315 (Revised 2021)
Identifying and assessing risks of material misstatement through understanding the entity and its environment
SA 315 (Revised) fundamentally changed the risk assessment process in 2021, introducing new concepts such as the spectrum of inherent risk, the concept of inherent risk factors, and a more granular assessment methodology. The auditor must understand five dimensions of the entity to identify risks.
Five Dimensions of Entity Understanding (SA 315)
01
The Entity and Its Environment
Industry, regulatory environment, business model, ownership structure, key business strategies, supply chain, competitive position, key customers and suppliers.
02
Applicable Financial Reporting Framework
Ind AS or AS — which standards apply, entity's accounting policies and whether they are appropriate, any recent changes in accounting policies and their rationale.
03
Entity's Internal Controls
Control environment, risk assessment process, information system and communication (including IT), control activities, and monitoring of controls — the five COSO components evaluated for design and implementation.
04
Entity's Risk Assessment Process
How management identifies and responds to business risks — whether there is a formal ERM framework, and how identified risks feed into financial reporting processes.
05
Measurement and Review of Financial Performance
KPIs, budget vs actual reports, analyst forecasts, credit ratings — performance metrics that management and others use to assess the entity. High pressure on metrics creates incentive to manipulate reporting.
Inherent Risk Factors (SA 315 Revised — New Concepts)
Inherent Risk Factor
Description
Example High-Risk Scenario
Complexity
Complexity of transactions or accounting standards applicable
Complex financial instruments measured at fair value; multi-element revenue contracts
Subjectivity
Degree of subjectivity in measurement — management estimates
Impairment of goodwill; ECL provisions; pension obligations
Change
Significant changes in the entity, its environment, or accounting standards
New ERP system; new product lines; change in accounting policy; business restructuring
Uncertainty
High measurement uncertainty — outcome cannot be reliably predicted
Contingent liabilities; fair value of unlisted equity; litigation outcomes
Susceptibility to Misstatement
Whether a balance is prone to fraud or error regardless of other factors
Cash; revenue near period end; management override of controls
Risk Response — SA 330
🔴 High ROMM
Significant risks — SA 330 requires substantive procedures regardless of control reliance. No control-only response permitted. Increased sample sizes, more experienced staff, year-end testing.
🟡 Medium ROMM
Combined approach — test controls AND perform substantive procedures. Reduced substantive testing if controls tested as effective.
🟢 Lower ROMM
Analytical procedures may be sufficient for some balances. Higher reliance on controls if operating effectively. Interim testing with roll-forward procedures.
Analytical Procedures — SA 520
Evaluations of financial information through analysis of plausible relationships among financial and non-financial data
📐
Planning Stage (Required)
Preliminary analytical procedures help understand the business, identify unusual fluctuations that require investigation, and assist in planning the nature, timing, and extent of other audit procedures.
🔬
Substantive Analytical Procedures
Used as substantive evidence — particularly for large volumes of predictable transactions. Effectiveness depends on precision of the expectation developed. Includes trend analysis, ratio analysis, regression analysis.
✅
Final Review Stage (Required)
SA 520 requires analytical procedures near the end of the audit as an overall review — to assess whether the financial statements as a whole are consistent with the auditor's understanding of the entity.
Key Financial Ratios for Analytical Review
Ratio
Formula
What It Tests
Red Flag If
Gross Profit Margin
GP / Revenue × 100
Revenue recognition, cost of goods accuracy
Unexplained change vs prior year or industry
Receivable Days (DSO)
(Debtors / Revenue) × 365
Collectability, cut-off, revenue overstatement
Sharp increase — suggests stuffed revenue or collection issues
Inventory Days
(Inventory / COGS) × 365
Inventory existence, obsolescence, valuation
Rising — potential slow-moving or phantom inventory
Payable Days (DPO)
(Creditors / Purchases) × 365
Completeness of liabilities, working capital management
Sharp fall — unrecorded liabilities possible
Interest Coverage
EBIT / Interest Expense
Ability to service debt; going concern indicator
Below 1.5x — significant going concern risk
Current Ratio
Current Assets / Current Liabilities
Short-term liquidity; going concern
Below 1.0x — potential going concern issue
Revenue per Employee
Revenue / Headcount
Operating efficiency, payroll completeness
Unexplained spike or fall — headcount recording issues
Tax Rate Reconciliation
Tax Expense / PBT
Correct tax computation, deferred tax
Effective rate far from statutory 25% — investigate
Internal Control Evaluation in a Financial Statement Audit
Understanding and testing controls allows the auditor to tailor the nature, timing, and extent of substantive procedures
The auditor must obtain a sufficient understanding of internal control — not necessarily to test it, but to (a) identify types of potential misstatements, (b) consider factors affecting the risks of material misstatement, and (c) design further audit procedures. For listed companies, Section 143(3)(i) of the Companies Act, 2013 requires a separate report on the adequacy and effectiveness of Internal Financial Controls over Financial Reporting (ICFR).
COSO 1
Control Environment
The foundation for all other components — integrity, ethical values, management philosophy, human resource policies, board oversight. A weak control environment undermines all other controls regardless of their design.
COSO 2
Risk Assessment
Management's process to identify and assess risks relevant to financial reporting objectives — including the risk of fraud and the risk from changes in circumstances.
COSO 3
Control Activities
Policies and procedures that help ensure management directives are carried out — authorization, reconciliation, verification, segregation of duties, physical security, and IT application controls.
COSO 4
Information & Communication
Quality of information generated by internal systems — accuracy, timeliness, completeness. IT General Controls (access, change management, backup) underpin reliability of system-generated data.
COSO 5
Monitoring Activities
Ongoing and separate evaluations — internal audit, management reviews, self-assessment, regulatory oversight. Deficiencies identified and communicated promptly to management and those charged with governance.
⚠ Material Weakness vs Significant Deficiency: A Material Weakness is a deficiency where there is a reasonable possibility that a material misstatement will not be prevented or detected on a timely basis — this triggers an adverse ICFR opinion under Section 143(3)(i). A Significant Deficiency is less severe but must still be communicated in writing to TCWG per SA 265.
Audit Evidence — SA 500 & Related Standards
Sufficient appropriate audit evidence is the foundation of every audit conclusion
Sufficiency = quantity of evidence (determined by risk — higher risk → more evidence). Appropriateness = quality of evidence (relevance to the assertion being tested AND reliability of the source). More evidence is not better if it is not appropriate — the auditor must focus on quality.
Evidence Reliability Hierarchy
Evidence Type
Reliability
Examples
SA Reference
External confirmations from independent third parties
Highest
Bank confirmations, debtor confirmations, lawyer's letters
SA 505
Documents created externally, obtained from entity
High
Invoices received, contracts, bank statements, legal orders
SA 500
Physical inspection by auditor
High
Inventory count, physical verification of assets, cash count
SA 501
Documents created internally, subject to strong controls
Medium-High
Board minutes, signed contracts, ERP-generated reports
SA 500
Analytical procedures with strong expectation basis
Medium
Revenue trend analysis, ratio comparison to industry
SA 520
Documents created internally without independent check
Lower
Management schedules, account reconciliations by management
SA 500
Oral representations from management
Lowest
Management explanations for variances (must be corroborated)
SA 580
Audit Procedures — The Seven Methods
🔍
Inspection
Examining records, documents, or tangible assets. Examining a fixed asset physically confirms existence. Inspecting a contract confirms terms. Most common procedure — provides documentary evidence.
👀
Observation
Watching a process or procedure being performed — e.g., observing the physical inventory count. Provides evidence about the operation of controls and processes at a specific point in time.
✉️
External Confirmation
Directly obtaining a response from a third party — bank confirmation, debtor confirmation, legal counsel letter, registrar confirmation. Highest reliability because source is independent.
🔄
Recalculation
Checking the mathematical accuracy of documents or records — depreciation schedules, interest calculations, tax provisions, payroll calculations. Provides 100% arithmetic accuracy evidence.
▶️
Re-performance
Independently executing procedures or controls that were originally performed as part of the entity's internal control — e.g., re-performing a bank reconciliation from source documents.
📊
Analytical Procedures
Evaluating financial information by studying plausible relationships — ratio analysis, trend analysis, regression analysis. Effective for high-volume, predictable transactions where detailed testing is inefficient.
💬
Inquiry
Seeking information from knowledgeable persons — management, employees, legal counsel, experts. Inquiry alone is never sufficient — responses must always be corroborated with other evidence.
Audit Sampling — SA 530
Designing and evaluating samples to draw valid conclusions about the entire population
Audit sampling applies audit procedures to less than 100% of items in a population, such that all sampling units have a chance of selection — allowing the auditor to obtain and evaluate audit evidence and to form a conclusion about the entire population. It introduces sampling risk — the risk that the auditor's conclusion based on a sample differs from what would be reached by examining the entire population.
Sampling Method
Description
Best Used When
Key Advantage
Random Sampling
Every item has an equal chance of selection — using random number tables or computer generation
Population is homogeneous; no specific high-risk items
Select every nth item from population after random start
Large populations with consistent characteristics
Simple, efficient; approximates random if no pattern in population
Monetary Unit Sampling (MUS)
Each ₹ in the population has equal selection probability — larger items have proportionally higher chance
Overstatement testing in accounts with large items (debtors, inventory)
Focuses effort on material items; statistically valid
Stratified Sampling
Divide population into strata (e.g., by amount or type) and sample each separately
Population has heterogeneous items — some high value, some low
Efficient — concentrate testing on high-risk/high-value stratum
Judgmental / Haphazard Sampling
Auditor selects items based on professional judgment — avoiding conscious bias
Small populations; specific risk-based selection
Flexible; allows focus on known risk areas
Block Sampling
Select a continuous block of items (e.g., all transactions in one month)
Generally discouraged unless specific risk is period-specific
Least preferred — sampling risk high
Key Sampling ConceptsSampling Risk = Risk that sample conclusion ≠ whole-population conclusion
Non-Sampling Risk = Risk of wrong conclusion from non-sampling causes (wrong procedures, misinterpretation)
Tolerable Misstatement = Performance Materiality applied to a specific sample
Expected Error = Errors the auditor expects to find in the population (drives sample size)
Sample Size ∝ Risk Level × Expected Error
÷ Tolerable Misstatement × Confidence Level Required
Auditing Accounting Estimates — SA 540 (Revised)
Estimates involve significant judgment and are among the highest-risk areas in every financial statement audit
🔴 High Risk: Accounting estimates are inherently uncertain and require management's judgment — making them the most susceptible area to both intentional misstatement (bias) and unintentional error. SA 540 (Revised 2019, effective 2021) significantly expanded auditor responsibilities for estimates.
Common Accounting Estimates — Risk Classification
Estimate
Ind AS Reference
Risk Level
Key Audit Procedures
Expected Credit Loss (ECL) Provision
Ind AS 109
Very High
Assess ECL model methodology; review historical loss data; test forward-looking macro assumptions; engage credit expert if needed
Impairment of Goodwill / CGUs
Ind AS 36
Very High
Challenge DCF model; test discount rate (WACC); assess growth rate reasonableness; compare to market cap; consider use of valuation expert
Fair Value of Financial Instruments
Ind AS 113
High
For Level 1: verify market price. Level 2: assess model inputs. Level 3: test key assumptions; consider use of expert; assess alternative valuations
Gratuity / Defined Benefit Obligation
Ind AS 19
Medium-High
Review actuarial valuation report; assess actuary's competence and independence; test key assumptions (discount rate, salary escalation, attrition)
Useful Lives & Residual Values of PPE
Ind AS 16
Medium
Compare to Schedule II lives; assess component accounting; verify consistency with prior year; challenge management's technical assessments
Warranty Provisions
Ind AS 37
Medium
Compare actual claims vs prior estimates; assess methodology; test against historical warranty expense rates
Revenue from Long-Term Contracts (PoC)
Ind AS 115
High
Assess stage of completion methodology; verify costs to complete; independent review of project status; cut-off testing
SA 540 Revised — Three Audit Approaches: (1) Review of subsequent events — if the estimate can be confirmed by a post-year-end event, use it. (2) Test how management made the estimate — assess the method, data, and assumptions used. (3) Develop an independent point estimate or range — the auditor forms their own view of the reasonable estimate and compares to management's. The appropriate approach depends on the nature of the estimate and available evidence.
Auditing Related Party Transactions — SA 550
Related party transactions are inherently higher risk — they may not be conducted at arm's length and are among the most common vehicles for financial statement manipulation
Obtain management's complete list of related parties — verify against Register of Directors' Interests, shareholding patterns, group company list, prior year disclosures.
Search for undisclosed related parties: Review unusual transactions — payments to previously unknown parties, transactions with round amounts, entities sharing addresses with employees or directors. Cross-reference vendor bank accounts with employee bank accounts.
For each significant RPT — verify (a) economic substance — was there a genuine commercial rationale? (b) arm's-length pricing — was the price at market rate? (c) proper authorisation — Audit Committee approval per Section 177, Board/shareholders per Section 188.
Obtain confirmations from related entities where material balances exist — treat these with lower reliability than confirmations from independent third parties.
Verify disclosures in notes per Ind AS 24 / AS 18 are complete — nature of relationship, description of transaction, amounts, outstanding balances, bad debt provisions on related-party debtors.
SA 550 specifically requires the audit team to maintain enhanced professional skepticism for related-party transactions — do not reduce skepticism even if management has strong controls or strong integrity.
Undisclosed related-party transactions discovered by the auditor must be disclosed to TCWG. If management refuses to disclose them and they are material — qualified or adverse opinion.
Going Concern Assessment — SA 570
The auditor must assess whether there is material uncertainty about the entity's ability to continue as a going concern for at least 12 months from the balance sheet date
Going Concern Indicators — Financial, Operational & Other
Financial
Financial Indicators of Going Concern Doubt
Net current liabilities; recurring operating losses; negative operating cash flows; significant negative equity; borrowings approaching maturity without realistic refinancing prospects; overdue or breached loan covenants; inability to pay dividends; adverse key financial ratios; substantial operating losses or significant deterioration in the value of assets used to generate cash flows.
Operational
Operational Indicators
Management intentions to liquidate the entity or to cease operations; loss of key management without replacement; loss of a major market, key customer, franchise, licence, or principal supplier; difficulty in retaining key staff; labour difficulties or shortage of critical supplies.
Other
Other Indicators
Non-compliance with capital or other statutory requirements; pending legal proceedings that may result in material judgments; changes in legislation or government policy expected to adversely affect the entity; uninsured or underinsured catastrophes.
Auditor's Response to Going Concern Issues
Step 1
Obtain Management's Assessment
Request management's own going concern assessment — cash flow projections (12+ months), financing plans, asset disposal plans, cost reduction plans. Critically evaluate the assumptions and their feasibility.
Step 2
Evaluate Management's Plans
Are the plans feasible? Are they supported by documented evidence (signed term sheets, confirmed credit facilities, executed contracts)? Are revenue projections realistic vs historical performance? Consider sensitivity of key assumptions.
Step 3
Assess Mitigating Factors
Do management's plans adequately address the identified going concern risks? Can the plans be implemented within the available timeframe? Are there contractual obligations that could be waived by lenders (forbearance letters)?
Step 4 — No Material Uncertainty
Unmodified Opinion — No GC Paragraph
Going concern basis is appropriate; plans adequately address risks; no material uncertainty. Standard unmodified opinion. No specific going concern paragraph required.
Step 4 — Material Uncertainty Exists but Disclosed
Unmodified Opinion + Material Uncertainty Paragraph
Material uncertainty exists but financial statements disclose it adequately. Auditor issues unmodified opinion BUT includes a separate "Material Uncertainty Related to Going Concern" paragraph — this is a significant paragraph that draws users' attention.
Step 4 — Inadequate Disclosure OR GC Basis Inappropriate
Modified Opinion — Qualified or Adverse
If disclosure is inadequate — qualified opinion. If going concern basis is inappropriate (entity should be preparing on break-up basis) — adverse opinion. Both are highly significant findings with material consequences for the company.
Subsequent Events — SA 560
Events occurring between the balance sheet date and the date of the auditor's report may require adjustment or disclosure
Type of Event
Nature
Accounting Treatment
Example
Adjusting Events (Type 1)
Provide evidence of conditions existing at balance sheet date
Adjust financial statements
Customer bankruptcy post year-end (condition existed at year-end); resolution of a court case that confirms existing liability; fraud discovered post year-end relating to period under audit
Non-Adjusting Events (Type 2)
Conditions arising after balance sheet date
Disclose in notes if material; do not adjust
Major acquisition or disposal post year-end; catastrophic loss; restructuring announced; significant new borrowings; natural disaster destroying assets post year-end
Facts Discovered After Report Date
Facts that would have changed the audit report if known earlier
Fraud discovered after report signing; major restatement needed; going concern event post-signing
Read Board and Audit Committee minutes up to the date of the auditor's report.
Inquire of management about any events after year-end that may require adjustment or disclosure.
Review latest available interim financial statements and management accounts.
Review any litigation files, correspondence with regulators, or legal updates received after year-end.
Obtain written representation from management confirming that all subsequent events have been appropriately treated in the financial statements.
The auditor has no obligation to perform procedures for events after the date of the auditor's report — but if a fact is discovered before the report is issued, it must be investigated.
Evaluation of Misstatements — SA 450
Accumulating and evaluating identified misstatements to determine whether the financial statements, taken as a whole, are materially misstated
Type of Misstatement
Definition
Example
Factual Misstatement
No doubt about its existence — a clear error of fact
Depreciation calculated at wrong rate; invoice amount posted incorrectly; arithmetic error in consolidation
Judgmental Misstatement
Arise from differences in judgments — auditor's vs management's
Provision amount the auditor believes should be higher; revenue recognized before auditor believes the performance obligation was satisfied
Projected Misstatement
Extrapolation of misstatements found in a sample to the entire population
Found ₹5L error in a ₹10Cr sample → project ₹50L error in ₹1,000Cr population
Schedule of Unadjusted Differences (SOUP)
Total Misstatements (Factual + Projected + Judgmental)
If > Overall Materiality → Financial statements are materially misstated → Modify opinion if management won't correct
If > Performance Materiality → Evaluate whether further testing needed; request management to correct
If < Trivial Threshold → No accumulation needed; clearly inconsequential
If Fraud-related → Report to TCWG regardless of amount
The Auditor's Report — SA 700
The culmination of the entire audit process — the auditor's formal communication to shareholders
SA 700 prescribes the form and content of the auditor's report for Indian companies. The report is addressed to the Members (shareholders) of the company — not to management or the Board. The report must be clear, unambiguous, and contain all prescribed elements in the correct sequence.
Mandatory Elements of the Auditor's Report (SA 700)
Title: "Independent Auditor's Report" — the word "Independent" is mandatory and distinguishes the statutory report from any other reports.
Addressee: To the Members of [Company Name] — always to shareholders, never to the Board or management.
Report on the Audit of the Financial Statements: Introductory paragraph identifying the financial statements audited (including period), and distinguishing management's responsibility from the auditor's responsibility.
Basis for Opinion: Conducted in accordance with Standards on Auditing issued by ICAI. Complied with ethical requirements including independence. Obtained sufficient appropriate evidence. Refers to Emphasis of Matter or Material Uncertainty if applicable.
Key Audit Matters (KAM) Section: For listed entities only — matters of most significance in the audit. Each KAM described with: why it was considered significant + how it was addressed in the audit.
Information Other than the Financial Statements: Auditor's responsibilities for other information in the annual report — Directors' Report, MDA, etc. Identify any material inconsistency found.
Management's and Those Charged with Governance's Responsibility: Preparation of financial statements giving true and fair view; design and maintenance of internal controls; use of going concern assumption.
Auditor's Responsibility: Objectives of the auditor; risk-based approach; exercise of professional judgment and professional skepticism; communication with TCWG.
Opinion Paragraph: The most important paragraph — must state clearly whether financial statements give a true and fair view in accordance with the applicable financial reporting framework.
Report on Other Legal and Regulatory Requirements (ROLRR): Section 143(3) and Section 143(3)(i) requirements — ICFR adequacy; directors' disqualification; maintenance of books; consistency with Directors' Report; CARO 2020 annexure.
Signature: Name of engagement partner + ICAI membership number + firm name + ICAI firm registration number + date + place + UDIN.
UDIN must be generated on ICAI portal within 15 days of signing the report. Failure is professional misconduct. UDIN must appear on every signed copy of the report.
Modified Opinions — SA 705
When the auditor cannot express an unmodified opinion — the most significant professional decision in any audit
✓
Unmodified (Clean) Opinion
Financial statements give a true and fair view. No material misstatements; no material scope limitations. SA 700 standard report used.
⚠
Qualified Opinion
"Except for…" — One specific issue that is material but NOT pervasive. Either a material misstatement or a limitation on scope that affects one or more areas.
✗
Adverse Opinion
Financial statements do NOT give a true and fair view. Misstatement is both material AND pervasive — affects multiple elements or is fundamental to the statements.
?
Disclaimer of Opinion
Unable to express an opinion. Scope limitation is material AND pervasive — could not obtain sufficient appropriate evidence. The absence of evidence is so severe the auditor cannot form any conclusion.
Emphasis of Matter & Other Matter Paragraphs — SA 706
Paragraph Type
When Used
Effect on Opinion
Example
Emphasis of Matter (EOM)
Matter properly presented/disclosed in FS but fundamental to user understanding
Opinion remains unmodified — but users' attention is drawn
Material uncertainty about going concern; significant subsequent event; fundamental change in accounting policy
Other Matter (OM)
Relevant to users' understanding of the audit but not presented in FS
Opinion remains unmodified
Prior year audited by a different auditor; audit of only one financial statement; restriction on distribution of the report
Pervasiveness Test — The Critical Distinction: Whether a matter is "pervasive" determines the difference between Qualified and Adverse/Disclaimer. A matter is pervasive if it: (a) is not confined to specific elements — affects multiple financial statement lines; (b) if confined to specific elements, those elements represent or could represent a substantial proportion of the FS; or (c) in relation to disclosures, the disclosures are fundamental to users' understanding of the FS.
Key Audit Matters (KAM) — SA 701
Enhanced transparency for listed company audits — communicating the most significant aspects of the audit to users
SA 701 applies to audits of listed entities and requires the auditor to communicate Key Audit Matters (KAMs) — matters that, in the auditor's professional judgment, were of most significance in the audit of the financial statements of the current period. KAMs are selected from matters communicated to those charged with governance (i.e., the Audit Committee).
KAM Selection Criteria
⚖️
Areas of Significant Risk
Areas identified as having significant risk of material misstatement — including significant risks — are the primary source of KAMs. These required the most intensive audit attention.
🔢
Significant Auditor Judgment
Areas where significant judgment was applied — management estimates, complex accounting standards, valuation of complex instruments, uncertain outcomes — typically become KAMs.
📌
Effect of Significant Events
Significant events or transactions during the period — major acquisitions, restructurings, litigation, regulatory actions — that had a significant effect on the audit are candidates for KAM disclosure.
Most common KAM across sectors. Significant judgment in identifying performance obligations, allocating transaction price, and determining timing of recognition. Heightened risk of premature or delayed revenue recognition.
KAM 2
Impairment Assessment of Goodwill and Intangible Assets
Requires significant management judgment on future cash flow projections, growth rates, and discount rates. Highly sensitive to assumptions — small changes have large valuation impact. Most relevant for companies with significant acquisitions.
KAM 3
Expected Credit Loss (ECL) Provisions — Financial Sector
Highly complex for banks and NBFCs. Requires modelling future credit losses incorporating forward-looking macro-economic data. Models are inherently uncertain and involve significant management judgment.
KAM 4
Taxation — Deferred Tax Assets and Uncertain Tax Positions
Recoverability of deferred tax assets requires assessment of future taxable profits. Uncertain tax positions require judgment on probability of tax authority challenge. Both involve significant estimates and judgments.
KAM 5
Going Concern Assessment
Where management has assessed going concern and the auditor performed significant procedures — especially where there are indicators of going concern risk — the going concern assessment may be reported as a KAM (distinct from a Material Uncertainty paragraph).
Audit Analytics — Key Data Points
Empirical data on audit opinion trends, KAM distribution, and modification patterns in Indian statutory audits
Auditor's Opinion Distribution
% of Indian listed company audits by opinion type (FY25)
Most Frequent Key Audit Matters (KAMs)
% of listed company audit reports containing this KAM
Common Qualification Reasons
Root causes of modified audit opinions — Indian listed entities
Audit Effort Allocation by Phase
Recommended time split across financial statement audit phases
Frequently Asked Questions
Key questions from practitioners on financial statement audit concepts and standards
In Indian audit practice under SA 700, the auditor's opinion uses the phrase "true and fair view" for financial statements prepared under the Companies Act 2013 and ICAI standards. Under IFRS (IAS 1), the equivalent phrase is "presents fairly in all material respects."
"True" refers to factual correctness — transactions are recorded in accordance with the evidence and accounting standards. "Fair" refers to presentation — the financial statements reflect the economic substance of transactions, not merely their legal form. Both phrases convey the same underlying concept — the financial statements are free from material misstatement and give a reliable picture of the entity's financial position and performance. In practice, the two phrases are treated as equivalent for audit opinion purposes.
Dual purpose testing means a single audit procedure serves two objectives simultaneously: (1) it tests the operating effectiveness of an internal control (test of controls), AND (2) it obtains substantive evidence about the accuracy of a financial statement assertion (substantive test).
Example: The auditor selects a sample of purchase invoices and (a) checks that they bear the required dual-signatory approval stamp (tests control operating effectiveness) AND (b) verifies that the amounts on the invoices agree to the amounts posted in the general ledger (substantive test of the Accuracy assertion for expenses).
Dual purpose testing improves audit efficiency, but the auditor must be careful that the sample size is appropriate for both purposes. The sample size required for a substantive test is typically larger than for a test of controls — so the auditor uses the larger of the two required samples when performing dual purpose testing.
Both are the most severe forms of modified audit opinion — but they arise from different situations:
Adverse Opinion — arises from identified misstatements. The auditor has sufficient evidence and has concluded that the financial statements are materially and pervasively misstated — they do not give a true and fair view. The auditor can form an opinion — but it is a negative one. Example: management has used going concern basis when the auditor concludes the entity should be wound up; or a fundamental accounting policy has been incorrectly applied affecting almost all financial statement line items.
Disclaimer of Opinion — arises from a limitation on scope. The auditor is unable to form an opinion — not because the statements are wrong, but because the auditor could not obtain sufficient appropriate evidence to form any conclusion. The limitation is pervasive (affects multiple areas or is fundamental to the FS). Example: all accounting records for the entity were destroyed in a fire, making it impossible to audit any significant account balance.
A useful way to remember: Adverse = "I have evidence and it's bad." Disclaimer = "I can't get enough evidence to say anything at all."
Section 143(12) of the Companies Act, 2013 creates a mandatory fraud reporting obligation for statutory auditors — one of the most significant legal duties imposed on auditors in India:
Amount ≥ ₹1 Crore: If the auditor has reason to believe that an offence of fraud involving ₹1 crore or more is being or has been committed by officers or employees, the auditor must: • Report to the Central Government (Ministry of Corporate Affairs) by sending a report to the Secretary, MCA within 60 days of forming the belief. • The report must be on the letterhead of the audit firm, signed by the Engagement Partner.
Amount < ₹1 Crore: Report to the Board of Directors or Audit Committee within 2 days of forming the belief. The Board/AC must then disclose the fraud in the Board's Report.
Key point: The threshold is "reason to believe" — not certainty. The auditor need not wait for a forensic investigation to confirm fraud before reporting. Failure to report attracts criminal liability under Section 143(15) — imprisonment up to 1 year and fine of ₹1 lakh to ₹25 lakhs. The audit report under CARO 2020 Clause x(b) must also disclose whether any Section 143(12) report was filed.
The Audit Risk Model is the conceptual framework that guides how auditors design their procedures to reduce the risk of expressing an inappropriate opinion. The model is:
Inherent Risk (IR) — The susceptibility of an assertion to material misstatement, assuming no related controls. It is driven by the nature of the account (estimates, complexity, judgment), industry factors, and fraud risk. The auditor cannot control or reduce inherent risk — it is a given characteristic of the business.
Control Risk (CR) — The risk that a material misstatement would not be prevented, or detected and corrected, by the entity's internal controls. Reduced by testing and relying on effective controls. If controls are weak — control risk is high.
Detection Risk (DR) — The risk that the auditor's procedures will not detect a material misstatement. This is the only component the auditor can control — by designing more extensive, more rigorous audit procedures. The lower the IR × CR, the higher the acceptable Detection Risk (less substantive testing needed). The higher IR × CR, the lower Detection Risk must be set (more substantive testing required).
The auditor must set overall Audit Risk at an acceptably low level (professional standard is approximately 5% or below for most audits) and design procedures to achieve it.
A Management Representation Letter (MRL), governed by SA 580, is a formal written letter from management (typically signed by both the CEO/MD and CFO) that contains representations about matters material to the financial statements. The MRL serves two purposes: (1) it confirms certain representations that the auditor cannot obtain from other sources, and (2) it places formal legal responsibility on management for those statements.
Mandatory representations include: Financial statements are complete and accurate in all material respects; all related parties have been disclosed; all known actual or possible litigation has been disclosed; the going concern assumption is appropriate; no fraud known to management; all records have been made available; all post-balance sheet events have been considered.
Consequence of not receiving MRL: SA 580 explicitly states that if management does not provide the requested written representations, the auditor must: (a) discuss the matter with management; (b) re-evaluate the integrity of management and the reliability of representations obtained; and (c) take appropriate action — which may include withdrawing from the engagement or expressing a Disclaimer of Opinion on the grounds that the auditor was unable to obtain sufficient appropriate audit evidence. This makes the MRL one of the very few audit documents whose absence can directly trigger a disclaimer.
Financial Statement Audit — Professional Resource
Zerolev brings India's most comprehensive audit guidance — aligned with ICAI Standards on Auditing, Companies Act 2013, and Ind AS frameworks — for CA practitioners, audit managers, and CFOs.