Statutory Audit: Assurance Where the Quality of Work Matters More Than the Certificate
Statutory audit services under Companies Act, Ind AS, and IFRS frameworks, built on the recognition that the value of an audit lies in the rigor of the work, not just the opinion that follows it.
Why This
Matters Now
Statutory audit serves two constituencies that are not always aligned. Management wants an audit that is efficient, predictable, and concludes with an unqualified opinion that can be filed with the annual return. Regulators, investors, lenders, and other users of financial statements want an audit that actually tests the positions taken in the financial statements, identifies material misstatements, and challenges management assertions where the evidence does not support them. When these two sets of expectations are served well, the audit produces value for both. When they are not, the audit satisfies one side at the expense of the other, usually with consequences that become visible only when something goes wrong.
The Indian statutory audit environment has evolved significantly in the last decade. The NFRA was established to oversee audit quality. Ind AS adoption brought convergence with IFRS and introduced complexity that earlier Indian GAAP did not require. The Companies Act 2013 established specific audit requirements including internal financial controls reporting, CARO disclosures, and auditor rotation. NFRA inspections and ICAI disciplinary proceedings have changed the risk profile for auditors and created consequences for work that falls short of expected standards. These changes have made statutory audit both more important and more demanding than it was under previous frameworks.
The challenge for auditors and audit clients is that the increased demands have not always been matched by increased investment in audit capability. Audit quality depends on technical expertise, adequate time, experienced judgment, and the willingness to raise difficult questions. Audits that compress timelines, rely on junior resources, or avoid friction with management consistently produce work that looks adequate until it is examined closely. When inspection, regulatory review, or restatement occurs, the gap between the work performed and the work expected becomes visible, and the consequences affect both the auditor and the audited entity.
The organizations that get statutory audit right treat it as a quality discipline that produces value through the work itself, not just through the opinion that results from it. The ones that treat audit primarily as a compliance requirement consistently produce audits that satisfy procedural requirements while missing the substantive issues that audit is supposed to surface.
How We
Deliver
A structured methodology that ensures rigour, transparency, and measurable outcomes at every stage.
Client Acceptance and Risk Assessment
Every audit begins with assessment of whether the engagement is one we can accept and how risk should be understood for audit planning purposes. The acceptance process considers independence, capacity, specific competence for the industry and transactions involved, and the risk profile of the entity. Risk assessment identifies the areas where material misstatement is most likely and determines how audit effort should be allocated across the financial statements.
Audit Planning
Planning translates risk assessment into a specific audit approach: which accounts and assertions require what testing, what materiality thresholds apply, what technology and analytics will support the work, and how the team will be resourced across the audit. Effective planning reduces rework during execution and ensures that audit effort focuses on the areas where it creates value rather than distributing uniformly across the engagement.
Walkthrough and Controls Evaluation
Understanding the entity's processes and controls is foundational to audit work. We conduct walkthroughs of significant processes, evaluate the design of controls relevant to financial reporting, and determine whether a controls reliance approach is appropriate or whether substantive procedures will carry the audit weight. The evaluation addresses both the Companies Act IFC requirements and the audit approach decisions that follow from the evaluation.
Substantive Testing and Evidence Gathering
The substance of audit work is in the testing of transactions, balances, and disclosures against appropriate evidence. Our approach combines traditional audit procedures with analytics that identify anomalies and focus testing on higher-risk items. We document evidence in a form that supports audit conclusions and satisfies the review requirements that audit work papers must meet.
Audit Conclusions and Communication
Audit conclusions are the output of analytical and professional judgment based on the evidence gathered. We evaluate audit findings against materiality thresholds, discuss significant matters with management, communicate reportable items to those charged with governance, and develop the opinion and reporting that results from the work. The communication phase is where audit findings become useful to the people who rely on them.
Reporting and Finalization
The audit report is the formal output, but the work that supports it includes CARO disclosures, internal financial controls reporting, management letters on observations and recommendations, and the work paper documentation that supports the opinion. We complete reporting with attention to the specific requirements of Companies Act, Ind AS, and other applicable frameworks, ensuring that the output satisfies both regulatory requirements and the information needs of financial statement users.
Why Audit Quality Is Harder to Observe Than It Should Be
Audit quality is difficult to evaluate from the outside. The output of an audit is a short report that looks essentially the same regardless of whether the underlying work was rigorous or superficial. The work papers that document the audit are not publicly available. The judgments that shaped the audit are not visible to financial statement users. The issues that were identified and discussed with management but did not result in adjustments are not disclosed. As a result, audit quality is typically assumed based on the reputation of the audit firm rather than evaluated based on the specific work performed on the specific engagement. This creates space for significant variation in quality within and across audit firms, and the variation is often invisible until something happens that exposes it.
The pattern that produces weak audits is a combination of time pressure, resource constraints, and the social dynamics of auditor-client relationships. Time pressure compresses testing into timeframes that do not allow for thorough investigation. Resource constraints push work down to team members who lack the experience to identify the issues that matter. The social dynamics of ongoing client relationships create reluctance to raise difficult questions that might create friction. None of these factors appear in audit reports, but all of them affect audit quality in ways that become visible when failures occur. Post-failure analysis routinely identifies the specific places where more time, more experience, or more willingness to challenge management would have produced different outcomes.
The deeper observation is that the audits that matter most are the ones where finding issues is most uncomfortable. An audit of a company where everything is working well produces an unqualified opinion without significant friction. An audit of a company where management is under pressure to meet expectations, where aggressive accounting positions are being taken, or where transactions are being structured for their financial statement effects is where audit work becomes both most difficult and most valuable. The organizations that invest in audit capability that can handle these difficult situations consistently produce better outcomes than organizations that optimize audit for efficiency under normal conditions. The difference matters because the difficult situations are also the situations where audit failure has the largest consequences.
Statutory Audit
Capabilities
Comprehensive solutions designed to address your most critical challenges and unlock lasting value.
Companies Act Statutory Audit
Statutory audit under Companies Act 2013 including CARO and internal financial controls reporting.
Ind AS Audit
Audit under Indian Accounting Standards including first-time adoption and ongoing application.
IFRS Audit
Audit under International Financial Reporting Standards for entities with international reporting obligations.
Group Audits and Consolidation
Audit of consolidated financial statements including component audits and group auditor responsibilities.
Subsidiary Audits
Statutory audits of subsidiary entities supporting group audit requirements.
Limited Review
Quarterly limited reviews for listed entities under SEBI LODR requirements.
CARO Reporting
Companies (Auditor's Report) Order reporting on specific matters prescribed by the Companies Act.
Internal Financial Controls Reporting
IFC over financial reporting assessment and reporting under Section 143(3)(i).
Audit of Banks and NBFCs
Specialized statutory audits for banks and non-banking financial companies.
Audit of Insurance Companies
Statutory audits for insurance entities under sector-specific regulatory frameworks.
Trust and Society Audits
Audits of charitable trusts, societies, and section 8 companies.
Component Audit Support
Audit work supporting group auditors under component auditor arrangements.
Audit Technology and Analytics
Use of audit analytics, data interrogation, and technology to enhance audit effectiveness.
Where This Applies
Sector-specific audit requirements, regulatory reporting, specialized accounting standards
Inventory valuation, fixed asset verification, cost accounting, revenue recognition
Revenue recognition, software capitalization, ESOP accounting, multi-element arrangements
Project accounting, percentage of completion, revenue recognition for long-term contracts
R&D accounting, regulatory asset valuation, sector-specific disclosures
Project accounting, service concession arrangements, specialized sector requirements
Statutory audit alongside CAG audit, government accounting, sector-specific requirements
Common Questions
Statutory audit is the audit required by law, typically under the Companies Act 2013 for companies and similar requirements under other statutes. The scope, methodology, and reporting requirements are defined by the applicable statute and auditing standards. Other types of audit include internal audit (which serves management and the board), tax audit (which serves tax authority requirements), management audit (which focuses on operational efficiency), and forensic audit (which investigates specific concerns). Statutory audit provides independent assurance on financial statements for the benefit of shareholders, regulators, and other stakeholders. The other audit types serve different purposes and have different scope and reporting requirements.
Ind AS adoption introduced complexity that earlier Indian GAAP did not require. Fair value measurements, complex revenue recognition rules, financial instrument classification and measurement, lease accounting under Ind AS 116, impairment testing, and consolidation requirements all demand more specialized audit work than was needed under previous frameworks. Auditors need technical expertise in Ind AS application, and audit clients need to invest in accounting capability that can produce Ind AS-compliant financial statements. The complexity has increased audit time, cost, and the level of technical expertise required, particularly for entities with complex transactions, financial instruments, or international operations.
The National Financial Reporting Authority (NFRA) is the independent regulator of audit profession for large public interest entities in India. It was established to oversee audit quality, set auditing standards, and take disciplinary action against auditors for misconduct or professional failures. NFRA has authority to inspect audit engagements, investigate audit failures, and impose penalties on auditors and audit firms. The creation of NFRA has changed the audit environment by increasing accountability and raising expectations for audit quality. Auditors operating under NFRA oversight must maintain documentation and follow procedures that would survive NFRA inspection, which has generally increased the rigor of audit work for entities within NFRA's scope.
The Companies (Auditor's Report) Order (CARO) requires statutory auditors to report on specific matters prescribed by the Ministry of Corporate Affairs, including matters relating to fixed assets, inventories, loans, regulatory compliance, fraud, managerial remuneration, and various other areas. CARO reporting is in addition to the main audit opinion and provides additional assurance on specific areas of concern. The matters covered by CARO change periodically based on regulatory priorities, and the current CARO (2020) includes expanded reporting on areas that have been identified as higher risk. CARO reporting is a substantive part of statutory audit work and requires specific audit procedures to gather the evidence needed for each reportable matter.
Effective audit preparation includes ensuring that financial statements are complete and accurate before audit begins, organizing supporting documentation for key transactions and balances, ensuring that reconciliations are complete, addressing open items from the prior year audit, communicating significant events and transactions to the auditor early, and ensuring availability of key personnel during audit fieldwork. Companies that prepare systematically for audit typically experience smoother audits, fewer findings, and reduced audit time. Companies that treat audit as an event that begins when the auditor arrives typically experience longer audits, more findings, and the stress that comes from addressing issues under time pressure. The preparation work begins during the year, not at year-end.
The Companies Act 2013 introduced mandatory auditor rotation for companies meeting specified thresholds. Audit partners must rotate every 5 years, and audit firms must rotate every 10 years (for listed companies and specified other entities). The rotation requirements create periodic transitions that affect both audit continuity and audit perspective. New auditors bring fresh perspective and typically identify issues that the predecessor may have become comfortable with. Outgoing auditors provide handover information that supports the incoming firm. The transition year can be more demanding for both the company and the auditor because the incoming firm must build the knowledge base that the previous firm had accumulated over years.
Ind AS audits typically focus on areas where the standards involve significant judgment and where misstatement could be material. These include fair value measurements of financial instruments and investment properties, expected credit loss under Ind AS 109, revenue recognition under Ind AS 115, lease accounting under Ind AS 116, impairment testing under Ind AS 36, business combinations and purchase price allocation under Ind AS 103, and deferred tax under Ind AS 12. Each of these areas requires specific audit procedures, professional judgment about the appropriateness of management's approach, and documentation that supports the conclusions reached. Entities with significant exposure to these areas should expect audit effort to be focused accordingly.
Statutory Audit That Produces Value Through the Work Itself
Statutory audit done well provides independent assurance that financial statement users can rely on and that management benefits from. SARC's audit practice combines technical expertise with the rigor and judgment that make audit work valuable rather than just procedural.
Discuss Your Statutory Audit Requirements500+ Professionals · 40+ Years · Global Presence