Key Points
- The engagement partner carries personal accountability for audit quality on every engagement, even when tasks are delegated to team members.
- ISA 220 (Revised) became effective for audits of periods beginning on or after 15 December 2022, replacing the previous version with a stronger focus on proactive quality management.
- Insufficient direction, supervision, and review by the engagement partner remains the most frequently cited quality finding in FRC inspection reports.
- The partner must determine that sufficient and appropriate resources (people, technology, intellectual) are assigned before fieldwork begins.
What is Engagement Partner Responsibilities?
ISA 220 (Revised) restructured the engagement partner's role around the firm's system of quality management under ISQM 1. The partner does not operate in isolation. ISA 220.14 requires the partner to take overall responsibility for managing and achieving quality, which includes being satisfied that their own involvement throughout the engagement has been sufficient and appropriate. That self-assessment obligation was new in the revised standard.
In practice, the responsibilities break into four areas. First, the partner determines whether the firm's acceptance and continuance conclusions remain appropriate (ISA 220.22). Second, the partner plans the direction, supervision, and review of the engagement team, scaling the nature and extent to the engagement's circumstances (ISA 220.29-30). Third, the partner evaluates whether ethical requirements (including independence) have been fulfilled, addressing threats as they arise rather than only at acceptance (ISA 220.21). Fourth, the partner assesses whether sufficient and appropriate resources are available and assigned to the engagement in a timely manner (ISA 220.25). If the firm's policies or responses under ISQM 1 are inadequate for a particular engagement, ISA 220.18 requires the partner to take action within the firm or determine whether that action is sufficient to proceed.
The engagement partner may delegate tasks, but ISA 220.15 is explicit: delegation does not relieve the partner of responsibility for meeting the requirements of the standard.
Worked example: Rossi Alimentari S.p.A.
Client: Italian food production company, FY2025, revenue EUR 67M, IFRS reporter. The engagement partner at a mid-tier Italian firm is planning the FY2025 statutory audit. Rossi implemented a new ERP system during the year, and two senior team members from the prior year have left the firm.
Step 1 — Evaluate acceptance and continuance
The partner reviews the firm's acceptance and continuance assessment completed at the start of the audit cycle. Given the ERP change and staff turnover, the partner considers whether these developments create new risks that affect the engagement's ability to achieve quality. The partner confirms that the audit can proceed but documents two additional conditions: an IT specialist must be assigned to test data migration controls, and an experienced senior must replace one of the departed team members.
Step 2 — Assign resources and assess competence
The partner requests an IT audit specialist from the firm's shared resource pool and confirms the specialist's experience with ERP migration engagements. The replacement senior has four years of IFRS audit experience but no prior food-production sector work. The partner arranges a half-day briefing with the prior-year manager to transfer client knowledge.
Step 3 — Plan direction, supervision, and review
The partner identifies revenue recognition (IFRS 15 variable consideration on promotional rebates) and inventory valuation as areas requiring heightened supervision. For the ERP migration, the partner sets a review point before substantive testing begins: the IT specialist's conclusions on data migration completeness must be reviewed and approved by the partner before the team relies on system-generated reports.
Step 4 — Monitor ethical requirements and stand back
At interim, the partner discovers that the new senior's spouse holds a small shareholding in a Rossi supplier. The partner assesses the threat to independence under the IESBA Code, determines the financial interest is immaterial and does not create a self-interest threat exceeding an acceptable level, and documents the evaluation. Before signing the opinion, the partner performs the stand-back assessment required by ISA 220.40, considering whether the engagement has been performed in accordance with professional standards, the firm's policies, and the applicable legal and regulatory requirements.
Conclusion: the engagement file demonstrates that the partner assessed resources, planned supervision around identified risks, addressed an independence matter in real time, and performed a stand-back before signing, which satisfies ISA 220 (Revised) and is defensible under inspection.
Why it matters in practice
The FRC's annual reviews of audit quality consistently identify insufficient direction, supervision, and review as a top finding across firms of all sizes. The gap is most visible on engagements where the partner delegates review to a manager without specifying which areas require partner-level scrutiny. ISA 220.30 requires the engagement partner to review audit documentation at appropriate points, and the nature and extent of that review must reflect the assessed risks. Blanket delegation of review without risk-based escalation criteria fails this requirement.
Partners frequently treat the stand-back assessment (ISA 220.40) as a sign-off formality rather than a substantive evaluation. The standard requires the partner to determine, before dating the auditor's report, that sufficient appropriate audit evidence has been obtained to support the conclusions reached. When the stand-back is documented as a single-line confirmation with no reference to unresolved matters or significant judgments revisited, engagement quality review and inspection teams treat it as an indicator that the assessment was not genuinely performed.
Engagement partner vs. engagement quality reviewer
| Dimension | Engagement partner (ISA 220) | Engagement quality reviewer (ISQM 2) |
|---|---|---|
| Role | Takes overall responsibility for managing and achieving quality on the engagement | Performs an objective evaluation of significant judgments and the auditor's report |
| Appointed by | The firm, as part of acceptance and continuance | The firm, based on criteria in ISQM 2.18 requiring objectivity and sufficient competence |
| Timing of involvement | Throughout the engagement, from acceptance to signing | At specific points during the engagement and before the auditor's report is dated |
| Authority over the opinion | Signs the auditor's report and takes responsibility for the conclusions | Does not sign the report; the review must be completed before the report is dated, but the reviewer does not override the partner's judgment |
| Cooling-off | No specific cooling-off period in ISA 220 | ISQM 2.19(a) requires objectivity; the reviewer cannot have been a member of the engagement team during the period covered by the engagement |
The distinction matters because smaller firms sometimes assign the engagement quality reviewer a scope that overlaps with what the partner should have done. The engagement quality review under ISQM 2 is not a substitute for the partner's own direction, supervision, and review. If the partner relies on the reviewer to catch issues that the partner should have identified, both roles are compromised.
Related terms
Frequently asked questions
Can the engagement partner delegate review of high-risk areas to the audit manager?
The partner can delegate the performance of review procedures, but ISA 220.15 does not permit delegation of overall responsibility. For significant judgments and areas of higher assessed risk, the partner must determine whether their own direct review is necessary. ISA 220.30 requires the nature and extent of review to reflect the engagement circumstances, so high-risk areas typically require the partner to review the work personally rather than rely solely on a manager's sign-off.
What happens if the engagement partner is unavailable during a critical phase of the audit?
The firm must have policies under ISQM 1 to address situations where the engagement partner cannot fulfil their responsibilities. ISA 220.14 does not contemplate a temporary vacancy in the role without action. If the partner is unavailable for a material period, the firm should consider whether to assign a replacement partner or delay the affected procedures until the partner can direct and review the work.
Does ISA 220 (Revised) apply to review engagements and other assurance work?
ISA 220 (Revised) applies to audits of financial statements. For review engagements, ISRE 2400 contains its own requirements for the practitioner's responsibilities regarding quality management. For other assurance engagements, ISAE 3000 (Revised) paragraph 31(d) addresses engagement partner responsibilities. The principles are similar, but the specific requirements differ by engagement type.