ISQC 1: Self Assessment Checklist on the Quality Control Policies and Procedures at the Firm Level

Share the Post:


The purpose of this checklist, among other things, is for each member to perform a self-assessment exercise on the quality control policies and procedures at the firm level.

Part I of the checklist is organised around the elements detailed in the ISQC1 [*}.

Part II will deal with issues that the Institute would expect the member to comply with during the execution of any assurance engagement under ISA 700.

This form can also be downloaded from the Institute’s website at

However, ISQM 1 replaces ISQC 1, Quality Control for Firms that Perform Audits and Reviews of Financial Statements and Other Assurance and Related Services Engagements. Firms are required to have systems of quality management designed and implemented in accordance with ISQM 1 by December 15, 2022

Part I: ISQC 1 Compliance

Element 1: Leadership Responsibilities For Quality Within the Firm

  1. Is a person designated to assume responsibility for the firm’s quality control system?
  2. Does your firm have an up-to-date Quality Control Manual appropriate to your practice’s size and operating characteristics?
  3. Does your practice allocate sufficient resources for developing, documentation and supporting its quality control policies?
  4. Does your firm have a mechanism to ensure that operational responsibility for the quality control system has been appropriately assigned by the firm’s chief executive officer or managing board of partners?

Element 2: Ethical Requirements

  1. Do your practice document policies and procedures designed to assure the firm that the practice and its personnel comply with the fundamental principles of professional ethics, which include integrity, objectivity, professional competence and due care, etc.?
  2. Do you take into consideration (including documentation) whether members of the engagement team have complied with major ethical requirements?
  3. Are there procedures to identify threats to professional independence under the Institute’s code of ethics?
  4. Does your practice monitor compliance with policies and procedures relating to independence?
  5. For all audits of financial statements of listed entities, is there a rotation of the engagement partner and the engagement quality control reviewer after a specified period?

Element 3: Acceptance & Continuance Of Client Relationship & Specific Engagements

  1. Does your practice put in place a mechanism to consider the integrity of the client accepted?
  2. Does your practice put in place a mechanism that can determine that it is competent to perform the engagement and has the capabilities, time and resources to do so?
  3. Does your practice obtain adequate and relevant information as necessary in the following circumstances :
    1. before accepting a new engagement?
    2. when deciding whether to continue an existing engagement?
    3. when considering acceptance of a new engagement with an existing client?
  4. Where issues have been identified and the practice decides to accept or continue the client relationship or a specific engagement, is there any mechanism to ensure adequate documentation to record how the issues were subsequently resolved?

Element 4: Human Resources

  1. Does the firm establish policies and procedures designed to provide it with reasonable assurance that:
    1. it has sufficient personnel with the capabilities, competence and commitment to ethical principles necessary to perform its engagement under professional standards and regulatory and legal requirements; and
    2. to enable the firm or engagement partners to issue reports that are appropriate in the circumstances
  2. Does your practice monitor the professional development of its professional staff at regular intervals?
  3. Is there a standard procedure where the identity and role of the engagement partner are communicated to key members of the client management and those charged with governance upon the commencement of the engagement?
  4. Do you think you have the appropriate capabilities, competence, authority and time to perform your role as an engagement partner for ALL engagements?
  5. Are appropriate staff with the necessary capabilities, competence and time being assigned to perform engagements to enable the firm or engagement partners to issue appropriate reports in the circumstances? (Consider the knowledge of the relevant industries, ability to apply professional judgment etc.)

Element 5: Engagement Performance

  1. Are our policies and procedures being put in place to ensure appropriate documentation of the work performed and the timing and extent of the review?
  2. Have appropriate policies and procedures been put in place to ensure significant judgment made during the audit has since been documented?
  3. Are review responsibilities determined on the basis that more experienced engagement team members review work performed by less experienced team members?
  4. Are there mechanisms to ensure that conclusions from internal or external consultations are documented and implemented?
  5. Are there any mechanisms in your firm that deal with and resolve differences of opinion within the engagement team?
  6. Does your firm ensure that engagement quality control reviews (EQCR) are performed on auditing listed entities’ financial statements and other engagements the firm may deem appropriate before the firm issues reports?
  7. Does your practice establish policies and procedures setting out:-
    1. the nature, timing and extent of an EQCR;
    2. criteria for the eligibility of EQCR; and
    3. documentation requirement for EQCR.
  8. Do your practice’s policies and procedures address the appointment of engagement quality control reviewers and establish their eligibility through
    1. the technical qualifications required to perform the role, including the necessary experience and authority; and
    2. the degree to which an engagement quality control reviewer can be consulted on the engagement without compromising the reviewer’s objectivity?
    3. Period of service before rotation for specific audit engagements regarding financial statements of listed entities?

Element 6: Monitoring

  1. Does your practice put in place any policies and procedures designed to provide it with reasonable assurance that the quality control system is relevant, adequate, operating effectively and complied with in practice?
  2. Does the firm inspect a selection of completed engagements on a cyclical basis which ordinarily spans no more than three years?
  3. Does the practice at least annually communicate the quality control system monitoring results to engagement partners and other appropriate individuals within the firm, including the chief executive officer or the managing board of partners?
  4. Does your firm have a mechanism that deals with complaints and allegations that work performed by your firm fail to comply with professional standards and regulatory and legal requirements?
  5. Does your firm have established policies and procedures requiring appropriate documentation to provide evidence of the operation of each element of its system of quality control?

MIA – Audit Licence Renewal Flowchart


  1. Does your practice utilise audit programmes, pre-printed forms, questionnaires and/or checklists to ensure proper documentation of audit or review procedures and basis to support pertinent issues?
  2. Does your practice have an established system for second-person reviews?
  3. Does your practice have a systematic method of file organisation?
  4. Does your practice issue engagement letters and consider whether engagement letters should be reissued?
  5. Does your practice mechanism in place to ensure compliance with the regulations and auditing guidelines for specialised industries? (Consider BAFIA, Capital Market Services Act 2007, property developers licensing requirements etc.)
  6. Does your practice have any mechanism to ensure sufficient knowledge of the client’s business and system has been obtained, and this significantly affects the engagement?
  7. Does your practice evaluate the review of the internal control system of its clients, where appropriate?
  8. Does your practice employ documentation to assist in determining that the results of the evaluation and testing of the internal control systems are taken into account in determining the nature, extent and timing of substantive procedures?
  9. Does your practice have a mechanism to ensure sufficient and appropriate substantive tests (including analytical review) are performed even in situations where internal controls are relied upon?
  10. Does your practice use checklists or documentation to arrive at valid conclusions to form an opinion?
  11. Does your practice have a mechanism to ensure that the requirements for an audit report are duly complied with?
  12. Where qualified audit reports are deemed necessary, does your practice have an established second-person review system?

*Quick note to Audit Firms:

Firms are recommended to research the requirements of the three new quality management standards that have been adopted by the International Auditing and Assurance Standards Board (IAASB). These standards are scheduled to become effective on December 15, 2022.

The standards, which include the International Standards on Quality Management ISQM 1 and ISQM 2, as well as the International Standard on Auditing ISA 220 Revised, are an evolution from a traditional, more linear approach to quality control.

They are intended to create a more robust System of Quality Management for Firms that use the standards developed by the International Auditing and Assurance Standards Board (IAASB). The new standards provide an approach to audit quality management that is robust, scalable, and proactive. This approach is essential to ensuring that the auditing profession will continue to be trusted and viable in the future.

Share the Post:

Related Posts