AuditXYZ

Compliance Framework

International Standards on Auditing (ISAs)

The ISAs are the global standards governing financial statement audits. This guide covers key ISAs, the risk-based audit approach, auditor reporting, and how ISAs relate to national auditing standards.

$10,000–$500,0002–6 monthsAudit Required2024 (ongoing updates including ISA 600 Revised)
Request a ConsultationSee process
Issuing BodyInternational Auditing and Assurance Standards Board (IAASB)
First Published1991-01-01
Latest Version2024 (ongoing updates including ISA 600 Revised)
Typical Cost$10,000–$500,000
Typical Timeline2–6 months
Audit RequiredYes
Audit FrequencyAnnual financial statement audit is standard for listed companies and entities meeting statutory audit thresholds in most jurisdictions.
Geographyglobal

IAASB ISA: International Standards on Auditing Guide

The International Standards on Auditing (ISAs) are the globally recognized standards for performing financial statement audits. Issued by the IAASB under the oversight of the International Federation of Accountants (IFAC), ISAs are adopted or used as the basis for national auditing standards in over 130 jurisdictions. They establish the auditor's responsibilities for planning, performing, and reporting on financial statement audits with the objective of obtaining reasonable assurance about whether the financial statements are free from material misstatement.

What the ISAs Cover

The ISAs comprise over 35 standards organized by topic area. Key standards include ISA 200 (overall objectives), ISA 315 (risk identification and assessment), ISA 330 (responses to assessed risks), ISA 500 (audit evidence), ISA 540 (accounting estimates), ISA 570 (going concern), ISA 600 (group audits), and ISA 700-706 (forming and reporting opinions).

The ISAs follow a risk-based approach: auditors identify and assess risks of material misstatement, design and perform audit procedures responsive to those risks, and obtain sufficient appropriate evidence to support their opinion. The 2024 updates include the revised ISA 600 for group audits and ongoing work on fraud, going concern, and the audit of less complex entities (ISA for LCE).

Who Needs to Understand ISAs

Audit firms worldwide that perform statutory or voluntary financial statement audits must comply with ISAs (or their national equivalents). Companies undergoing financial statement audits benefit from understanding ISA requirements to prepare effectively and engage productively with their auditors. Audit committees and boards should understand ISA concepts to fulfill their oversight responsibilities.

The Audit Process Under ISAs

Engagement acceptance and planning (ISA 300), understanding the entity and its environment (ISA 315), materiality determination (ISA 320), risk assessment and response (ISA 315/330), evidence gathering through substantive procedures and tests of controls (ISA 500/530), evaluation of misstatements (ISA 450), going concern assessment (ISA 570), and forming and issuing the opinion (ISA 700).

Cost Considerations

Financial statement audit fees under ISAs vary enormously by entity size and complexity. Small companies may pay $10,000 to $50,000 annually. Mid-sized companies typically pay $50,000 to $200,000. Large listed companies pay $500,000 to several million. Audit fees are determined by the auditor's risk assessment, the entity's complexity, and the scope of required procedures. Understanding ISA requirements helps organizations reduce audit friction and potentially lower fees through better preparation.

Get the IAASB ISA starter pack

By submitting, you agree to our privacy policy.

Framework Mappings

Related frameworks

isae-3000isae-3402soxifrs

Get matched with a IAASB ISA auditor in 24 hours

Free, no-obligation — just tell us your email and we'll do the rest.

By submitting, you agree to our privacy policy.

Related Frameworks

IFRS
Framework
IFRS is the global accounting language used in over 140 jurisdictions. This guide covers key standards, first-time adoption, differences from US GAAP, and implementation considerations.
View
ISAE 3000
Framework
ISAE 3000 is the overarching international standard for assurance engagements on non-financial subjects. This guide covers reasonable and limited assurance, engagement types, and application to ESG and cybersecurity.
View
ISAE 3402
Framework
ISAE 3402 is the international standard for assurance reports on controls at service organizations. This guide covers Type 1 and Type 2 reports, the audit process, and how ISAE 3402 relates to SOC 1.
View
SOX
Framework
The Sarbanes-Oxley Act mandates internal control requirements for all US publicly traded companies. This guide covers Section 302, Section 404, IT general controls, costs, and implementation strategies.
View

Recommended Tools

6clicks Review 2026: Pricing, Features, and Verdict
Tool
Review of 6clicks, the AI-powered GRC platform with hub-and-spoke architecture. Covers Hailey AI, multi-entity support, pricing, and ideal use cases.
View
Akitra Review 2026: Pricing, Features, and Verdict
Tool
Review of Akitra, a compliance automation platform with broad framework coverage including FedRAMP and CMMC. Covers pricing, features, and who should use it.
View
Anecdotes Review 2026: Pricing, Features, and Verdict
Tool
Review of Anecdotes, a compliance OS that aggregates security tool data. Covers the aggregation approach, AI gap analysis, and comparison with Vanta.
View
Anecdotes Trust Center Review 2026: Pricing, Features, and Verdict
Tool
Review of Anecdotes Trust Center, the compliance-as-code trust portal. Covers live compliance sync, developer-friendly approach, pricing, and positioning.
View