Reports & Testimonies

  • GAO’s recommendations database contains report recommendations that still need to be addressed.

    GAO’s recommendations help congressional and agency leaders prepare for appropriations and oversight activities, as well as help improve government operations. Recommendations remain open until they are designated as Closed-implemented or Closed-not implemented. You can explore open recommendations by searching or browsing.

    GAO's priority recommendations are those that we believe warrant priority attention. We sent letters to the heads of key departments and agencies, urging them to continue focusing on these issues. These recommendations are labeled as such. You can find priority recommendations by searching or browsing our open recommendations below, or through our mobile app.

  • Browse Open Recommendations

    Explore priority recommendations by subject terms or browse by federal agency

    Search Open Recommendations

    Search for a specific priority recommendation by word or phrase



  • Governing on the go?

    Our Priorities for Policy Makers app makes it easier for leaders to search our recommendations on the go.

    See the November 10th Press Release


  • Have a Question about a Recommendation?

    • For questions about a specific recommendation, contact the person or office listed with the recommendation.
    • For general information about recommendations, contact GAO's Audit Policy and Quality Assurance office at (202) 512-6100 or apqa@gao.gov.
  • « Back to Results List Sort by   

    Results:

    Subject Term: "Financial management systems"

    26 publications with a total of 69 open recommendations including 9 priority recommendations
    Director: Asif A. Khan
    Phone: (202) 512-9869

    2 open recommendations
    Recommendation: The DHS Under Secretary for Management should develop and implement effective processes and improve guidance to reasonably assure that future AAs fully follow AOA process best practices and reflect the four characteristics of a reliable, high-quality AOA process. (Recommendation 1)

    Agency: Department of Homeland Security
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: The DHS Under Secretary for Management should improve the Risk Management Planning Handbook and other relevant guidance for managing risks associated with financial management system modernization projects to fully incorporate risk management best practices, including (1) defining thresholds to facilitate review of performance metrics to determine when risks become unacceptable; (2) identifying and analyzing risks to include periodically reconsidering risk sources, documenting risks specifically related to the lack of sufficient, reliable cost and schedule information needed to help properly manage and oversee the project, and timely disposition of IV&V contractor-identified risks; (3) developing risk mitigation plans with specific risk-handling activities, the costs and benefits of implementing them, and contingency plans for selected critical risks; and (4) implementing risk mitigation plans to include establishing periods of performance for risk-handling activities and defining time intervals for updating and certifying the accuracy and completeness of information on risks in DHS's risk register. (Recommendation 2)

    Agency: Department of Homeland Security
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: Gregory C. Wilshusen
    Phone: (202) 512-6244

    2 open recommendations
    Recommendation: To effectively manage its information security program, the Chairman of the SEC should maintain up-to-date network diagrams and asset inventories in the system security plans for General Support System and a key financial system to accurately and completely reflect the current operating environment.

    Agency: United States Securities and Exchange Commission
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: To effectively manage its information security program, the Chairman of the SEC should perform continuous monitoring using automated configuration and vulnerability scanning on the operating systems, databases, and network devices.

    Agency: United States Securities and Exchange Commission
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: Malenich, J Lawrence
    Phone: (202) 512-3406

    9 open recommendations
    Recommendation: The Director of the Federal Housing Finance Agency should direct the Chief Financial Officer to develop a mechanism that captures all of the key factors to be considered, such as materiality and risk, when designing the evaluation of internal control over financial reporting and collaborate, as appropriate, with the Inspector General to develop a similar mechanism for use by FHFA-OIG.

    Agency: Federal Housing Finance Agency
    Status: Open

    Comments: FHFA agreed with this recommendation. FHFA is in the process of developing a mechanism that captures key factors, including risk and materiality, when designing the evaluation of internal control over financial reporting. This mechanism will be documented for the FY 2017 evaluation of internal control over financial reporting. FHFA and FHFA OIG are collaborating in these efforts.
    Recommendation: The Director of the Federal Housing Finance Agency should direct the Chief Financial Officer to coordinate with the Inspector General, as appropriate, when calculating materiality thresholds to reasonably assure that materiality determinations are appropriate for the agency as a whole and rationale is adequately documented.

    Agency: Federal Housing Finance Agency
    Status: Open

    Comments: FHFA agreed with this recommendation. During the FY 2017 evaluation of internal control over financial reporting, FHFA will coordinate with the FHFA OIG when calculating materiality thresholds to reasonably assure that materiality determinations are appropriate for the Agency as a whole and the rationale is adequately documented.
    Recommendation: The Director of the Federal Housing Finance Agency should direct the Chief Financial Officer to coordinate with the Inspector General, as appropriate, to assess and document the aggregate effect of all deficiencies identified at the agency-wide level during the evaluation of internal control over financial reporting.

    Agency: Federal Housing Finance Agency
    Status: Open

    Comments: FHFA agreed with this recommendation. FHFA will coordinate with the FHFA OIG during the FY 2017 evaluation of internal control over financial reporting to assess and document the aggregate effect of all deficiencies identified at the Agency-wide level.
    Recommendation: The Director of the Federal Housing Finance Agency should direct the Chief Financial Officer to (1) summarize in sufficient detail by internal control principle those activities from the program offices that have an effect on internal control over financial reporting to reasonably assure the consideration of all internal control components and related principles; (2) collaborate, as appropriate, with the Inspector General to implement corresponding actions at FHFA-OIG; and (3) document how that information is used to conclude on the internal control components and related principles for financial reporting.

    Agency: Federal Housing Finance Agency
    Status: Open

    Comments: FHFA agreed with this recommendation. During the FY 2017 evaluation of internal control over financial reporting, FHFA will summarize by internal control principle those activities from the program offices that have an effect on internal control over financial reporting to reasonably assure the consideration of all internal control components and related principles. FHFA will also document how information is used to conclude on the internal control components and related principles for financial reporting activities that are evaluated. FHFA will collaborate with FHFA OIG in these efforts.
    Recommendation: The Director of the Federal Housing Finance Agency should direct the Chief Financial Officer to enhance the evaluation of internal control over financial reporting by identifying and testing all key control activities, including those related to the preparation of the financial statements.

    Agency: Federal Housing Finance Agency
    Status: Open

    Comments: FHFA agreed with this recommendation. FHFA will enhance the FY 2017 evaluation of internal control over financial reporting by identifying and testing all key control activities, including those related to the preparation of the financial statements.
    Recommendation: The Director of the Federal Housing Finance Agency should direct the Chief Financial Officer to (1) thoroughly document FHFA's review of SSAE No. 16 reports issued for the period under evaluation by reasonably assuring that all applicable control objectives and related control activities are clearly identified and described and the evaluation of user entity controls is adequately explained and (2) collaborate, as appropriate, with the Inspector General to implement corresponding actions at FHFA-OIG.

    Agency: Federal Housing Finance Agency
    Status: Open

    Comments: FHFA agreed with this recommendation. During the FY 2017 evaluation of internal control over financial reporting, FHFA will thoroughly document FHFA's review of SSAE No. 16 reports issued for the period under evaluation by reasonably assuring that all applicable control objectives and related control activities are clearly identified and described and the evaluation of user entity controls is adequately explained. FHFA will collaborate with the FHFA OIG during these efforts.
    Recommendation: The Director of the Federal Housing Finance Agency should direct the Chief Financial Officer to (1) clearly define and document an approach that identifies the information systems that are key to financial reporting, the process areas these information systems support, the key control activities for each information system, and how the key control activities are evaluated and (2) collaborate, as appropriate, with the Inspector General to implement corresponding actions at FHFA-OIG.

    Agency: Federal Housing Finance Agency
    Status: Open

    Comments: FHFA agreed with this recommendation. During the FY 2017 evaluation of internal control over financial reporting, FHFA will clearly define and document an approach that identifies the information systems that are key to financial reporting, the process areas these information systems support, the key control activities for each information system, and how the key control activities are evaluated. FHFA will collaborate with the FHFA OIG in these efforts.
    Recommendation: The Director of the Federal Housing Finance Agency should direct the Chief Financial Officer to collaborate, as appropriate, with the Inspector General to (1) develop a complete list of the specific provisions of laws and regulations that may have an effect on material amounts and related disclosures in the financial statements that are applicable to FHFA-OIG and (2) prepare documentation that clearly links each applicable provision of law or regulation to the key control activities tested.

    Agency: Federal Housing Finance Agency
    Status: Open

    Comments: FHFA agreed with this recommendation. FHFA will collaborate with the FHFA OIG to develop a complete list of the specific provisions of laws and regulations that may have an effect on material amounts and related disclosures in the financial statements that are applicable to the FHFA OIG and prepare documentation that clearly links each applicable provision of law or regulation to the key control activities tested.
    Recommendation: The Director of the Federal Housing Finance Agency should direct the Chief Financial Officer to design an evaluation process that reasonably assures assignment of independent roles between the implementation and monitoring of control activities that are significant to the evaluation of internal control over financial reporting.

    Agency: Federal Housing Finance Agency
    Status: Open

    Comments: FHFA agreed with this recommendation. FHFA is designing an evaluation process that reasonably assures assignment of independent roles between implementation and monitoring of control activities that are significant to the evaluation of internal control over financial reporting. To this end, FHFA has hired an independent contractor to aid in the evaluation process for FY 2017, and has involved staff from FHFA's Office of Quality Assurance in the FY 2017 evaluation process to reasonably assure independent roles between monitoring and implementation going forward.
    Director: Nick Marinos
    Phone: (202) 512-9342

    1 open recommendations
    Recommendation: To help improve the corporation's implementation of its information security program, the Chairman of FDIC should direct the Chief Information Officer to update the procedure for granting access to the key financial application, to include responsibilities and steps for ensuring that the access privileges granted have been approved by the users' supervisor.

    Agency: Federal Deposit Insurance Corporation
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: J. Christopher Mihm
    Phone: (202) 512-6806

    1 open recommendations
    Recommendation: To promote transparency in the development and management of data standards for reporting federal spending, the Director of the Office of Management and Budget should ensure that the Data Standards Committee makes information about the topics of the committee's proceedings and any resulting outcomes available to the public.

    Agency: Executive Office of the President: Office of Management and Budget
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: Valerie Melvin
    Phone: (202) 512-6304

    4 open recommendations
    Recommendation: To address weaknesses in the department's financial management systems modernization efforts, the Secretary of HUD should direct the Chief Financial Officer to work with the Chief Information Officer in managing subsequent initiatives to define a high-level depiction of the IT systems anticipated in the future state, a description of the operations that must be performed and who must perform them, and an explanation of where and how the operations are to be carried out.

    Agency: Department of Housing and Urban Development
    Status: Open

    Comments: In its comments on our draft report, HUD neither agreed nor disagreed with our recommendations, but noted that it planned to improve management practices and IT governance for future modernization efforts. In May 2017, HUD's Deputy Chief Information Officer reported that that the office was managing multiple enterprise-level initiatives no longer classified as financial management modernization efforts, but which are intended to address certain previously reported financial systems modernization needs. The department provided early high-level requirements and a solution architecture for one such initiative, including a future requirement to support data required for HUD's financial reporting needs from Treasury. However, HUD does not yet have a plan to develop a high-level concept of operations for IT systems anticipated in the future state. We intend to follow up on HUD's actions.
    Recommendation: To address weaknesses in the department's financial management systems modernization efforts, the Secretary of HUD should direct the Chief Financial Officer to work with the Chief Information Officer in managing subsequent initiatives to develop comprehensive plans for scope, schedule and cost.

    Agency: Department of Housing and Urban Development
    Status: Open

    Comments: In its comments on our draft report, HUD neither agreed nor disagreed with our recommendations, but noted that it planned to improve management practices and IT governance for future modernization efforts. In May 2017, the department provided an early project oversight plan and critical task schedule for one initiative related to enterprise data management, but these plans are not comprehensive and do not include, among other things, detailed cost estimates. We intend to follow up on HUD's actions.
    Recommendation: To address weaknesses in the department's financial management systems modernization efforts, the Secretary of HUD should direct the Chief Financial Officer to work with the Chief Information Officer in managing subsequent initiatives to ensure requirements are fully documented and traceable.

    Agency: Department of Housing and Urban Development
    Status: Open

    Comments: In its comments on our draft report, HUD neither agreed nor disagreed with our recommendations, but noted that it planned to improve management practices and IT governance for future modernization efforts. In March 2017, the department reported that the Chief Financial Officer and the Chief Information Officer intend to partner on future departmental financial management systems modernization efforts to fully document requirements and trace requirements to the functionality in the modernized system. In May 2017, department officials reported that the subsequent initiatives underway were following an Agile process yielding product-release backlogs as documentation of requirements for ongoing initiatives. They provided the initial backlog for an enterprise data management initiative. However, HUD could not demonstrate that these requirements were complete and traceable to mission needs. We intend to follow up on HUD's actions.
    Recommendation: The Secretary of HUD should also direct the Deputy Secretary to ensure that the Chief Information Officer takes action to improve IT governance control activities used for monitoring programs and identifying needed corrective actions, and strengthen investment oversight by improving coordination with stakeholders and alignment among IT modernization efforts.

    Agency: Department of Housing and Urban Development
    Status: Open

    Comments: In its comments on our draft report, HUD neither agreed nor disagreed with our recommendations, but noted that it planned to improve management practices and IT governance for future modernization efforts. In March 2017, the department reported on its fiscal year 2016 updates to charters of its IT governance boards, which provide oversight of all its IT investments, including financial management initiatives, and noted that business cases for proposed development and modernization initiatives had been discussed at governance meetings. HUD also reported that it had set up steering committees to supplement board governance and monitoring two enterprise-level modernization efforts and planned to apply mechanisms, such as project health assessments, intended to establish effective investment oversight. However, HUD has not yet demonstrated that the updated governance control activities have improved program monitoring and identified any needed corrective actions or that planned oversight mechanisms have improved coordination with stakeholders or alignment of modernization efforts. We intend to follow up on HUD's actions to ensure that planned improvements to governance and oversight mechanisms are effectively implemented and institutionalized.
    Director: Gregory C. Wilshusen
    Phone: (202) 512-6244

    4 open recommendations
    Recommendation: To more effectively manage its information security program, the Chair should direct the Chief Information Officer to document artifacts that support recommendation closure consistent with SEC policy.

    Agency: United States Securities and Exchange Commission
    Status: Open

    Comments: In its response to our draft report, SEC concurred with the recommendation. However, SEC has not yet provided sufficient evidence that it has implemented the recommendation.
    Recommendation: To more effectively manage its information security program, the Chair should direct the Chief Information Officer to document a comprehensive physical inventory of the systems and applications in the production environment.

    Agency: United States Securities and Exchange Commission
    Status: Open

    Comments: In its response to our draft report, SEC concurred with the recommendation. However, SEC has not yet provided sufficient evidence that it has implemented the recommendation.
    Recommendation: To more effectively manage its information security program, the Chair should direct the Chief Information Officer to provide personnel appropriate access to continuous monitoring reports and tools to monitor, evaluate, and remedy identified weaknesses.

    Agency: United States Securities and Exchange Commission
    Status: Open

    Comments: In its response to our draft report, SEC concurred with the recommendation. However, SEC has not yet provided sufficient evidence that it has implemented the recommendation.
    Recommendation: To more effectively manage its information security program, the Chair should direct the Chief Information Officer to institute a process and assign the necessary personnel to review information produced by the vulnerability scanning tools to monitor, evaluate, and remedy identified weaknesses.

    Agency: United States Securities and Exchange Commission
    Status: Open

    Comments: In its response to our draft report, SEC concurred with the recommendation. However, SEC has not yet provided sufficient evidence that it has implemented the recommendation.
    Director: Lawrance Evans, Jr.
    Phone: (202) 512-8678

    6 open recommendations
    Recommendation: Congress should consider whether additional changes to the financial regulatory structure are needed to reduce or better manage fragmentation and overlap in the oversight of financial institutions and activities to improve (1) the efficiency and effectiveness of oversight; (2) the consistency of consumer and investor protections; and (3) the consistency of financial oversight for similar institutions, products, risks, and services. For example, Congress could consider consolidating the number of federal agencies involved in overseeing the safety and soundness of depository institutions, combining the entities involved in overseeing the securities and derivatives markets, transferring the remaining prudential regulators' consumer protection authorities over large depository institutions to the Consumer Financial Protection Bureau, and the optimal role for the federal government in insurance regulation, among other considerations.

    Agency: Congress
    Status: Open

    Comments: One bill has been introduced in the 115th Congress that would change the financial regulatory structure to address fragmented and overlapping regulatory authorities among agencies, as GAO suggested in February 2016. H.R. 594 was introduced on January 20, 2017, and calls for the functions of the Commodity Futures Trading Commission and the Securities and Exchange Commission to be combined in a single independent regulatory commission. Such an action could help to address fragmentation and overlap between the two agencies, and reduce opportunities for inefficiencies in the regulatory process and inconsistencies in how regulators conduct oversight activities over similar types of institutions, products, and risks.
    Recommendation: Congress should consider whether legislative changes are necessary to align FSOC's authorities with its mission to respond to systemic risks. Congress could do so by making changes to FSOC's mission, its authorities, or both, or to the missions and authorities of one or more of the FSOC member agencies to support a stronger link between the responsibility and capacity to respond to systemic risks. In doing so, Congress could solicit information from FSOC on the effective scope of its collective designation authorities, including any gaps.

    Agency: Congress
    Status: Open

    Comments: No legislative action identified. As of March 1, 2017, no legislation had been introduced that would align FSOC's authorities with its mission to respond to systemic risks, as GAO suggested in February 2016. Without such legislative changes, FSOC may lack the tools it needs to comprehensively address systemic risks that may emerge, and a gap will continue to exist in the post Dodd-Frank Wall Street Reform and Consumer Protection Act mechanisms for the mitigation of systemic risks.
    Recommendation: To help regulators address regulatory fragmentation and improve FSOC's ability to identify emerging systemic risks, as OFR develops and refines its financial stability monitoring tools, it should work with FSOC to determine ways in which to fully and regularly incorporate current and future monitors and assessments into Systemic Risk Committee deliberations, including, where relevant, those that present disaggregated or otherwise confidential supervisory information.

    Agency: Department of the Treasury: Financial Stability Oversight Council: Office of Financial Research
    Status: Open

    Comments: At the FSOC Systemic Risk Committee meeting held in December 2016, Treasury indicated that Office of Financial Research staff presented on the agency's Financial Stability Report. Officials indicated that they provided an assessment on potential financial stability risks, including macroeconomic, market, credit, funding and liquidity, and contagion risks. Systemic Risk Committee meeting attendees were able to compare and contrast these with the results from the Federal Reserve's systemic risk monitoring activities, which were also presented at the meeting. Office of Financial Research officials stated that there was general consensus at the meeting that these discussions were useful and that they should continue. GAO does not believe that this action is consistent with the intent of if February 2016 recommendation to fully and regularly incorporate current and future monitors and assessments into FSOC's Systemic Risk Committee deliberations. While GAO encourages sharing this type of information, the Office of Financial Research's Financial Stability Report is a publicly-available report. The intent of GAO's recommendation was to encourage the agency to fully incorporate all of its monitors into Systemic Risk Committee discussions, including its Financial Stability Monitor--its benchmark tool for assessing risks across the financial system. In addition, in its February 2016 report, GAO encouraged the agency to seek ways in which monitors that present disaggregated or otherwise confidential supervisory information can be incorporated in committee discussions. Without sharing such monitors and information, the Systemic Risk Committee may identify and advance the analysis of only a subset of systemic risks in a timely manner and may identify others too late or miss others altogether. The Financial CHOICE Act of 2016 was introduced in the 114th Congress. The act called for the Office of Financial Research to be eliminated. It was not passed before the end of the 114th Congress.
    Recommendation: To help regulators address regulatory fragmentation and improve FSOC's ability to identify emerging systemic risks, the Federal Reserve should work with FSOC to regularly incorporate the comprehensive results of its systemic risk monitoring activities into Systemic Risk Committee deliberations.

    Agency: Federal Reserve System
    Status: Open

    Comments: As of March 1, 2017, Federal Reserve officials indicated that they provided a presentation to FSOC's Systemic Risk Committee in December 2016, which included comprehensive results from its systemic risk monitoring activities. This action appears to be consistent with GAO's February 2016 recommendation, but the documentation provided by the Federal Reserve did not provide sufficient evidence that the agency has regularly incorporated these results into Systemic Risk Committee meetings. GAO will continue to monitor the Federal Reserve's participation in Systemic Risk Committee meetings to ensure that the agency continues to provide both regular and comprehensive results to the committee. Without better access to systemic risk monitoring tools and other outputs, the Systemic Risk Committee may identify and advance the analysis of only a subset of systemic risks in a timely manner and may identify others too late or miss others altogether.
    Recommendation: To more efficiently and effectively monitor the financial system for systemic risks and reduce the risk of unnecessary duplication, OFR and the Federal Reserve should jointly articulate individual and common goals for their systemic risk monitoring activities, including a plan to monitor progress toward articulated goals, and formalize regular strategic and technical discussions around their activities and outputs to support those goals.

    Agency: Department of the Treasury: Financial Stability Oversight Council: Office of Financial Research
    Status: Open

    Comments: As of March 1, 2017, the Federal Reserve and the Office of Financial Research had coordinated to organize semi-annual meetings to jointly discuss views from their respective monitoring of the financial system for risks; but these meetings had not yet taken place. The first of these meetings is to be held in May 2017 following the agencies' respective systemic risk exercises. Initiating these discussions addresses part of GAO's February 2016 recommendation. GAO plans to review documentation from these meetings in 2017 to further assess if the agencies will use these meetings to jointly articulate individual and common goals, including developing a plan to monitor progress toward the goals. Fully addressing GAO's recommendation could help to ensure comprehensiveness in systemic risk surveillance and reduced risk of duplication. On September 9, 2016, the Financial CHOICE Act of 2016 was introduced. It called for the Office of Financial Research to be eliminated. The legislation did not pass before the 114th Congress ended.
    Recommendation: To more efficiently and effectively monitor the financial system for systemic risks and reduce the risk of unnecessary duplication, OFR and the Federal Reserve should jointly articulate individual and common goals for their systemic risk monitoring activities, including a plan to monitor progress toward articulated goals, and formalize regular strategic and technical discussions around their activities and outputs to support those goals.

    Agency: Federal Reserve System
    Status: Open

    Comments: As of March 1, 2017, the Federal Reserve and the Office of Financial Research had coordinated to organize semi-annual meetings to jointly discuss views from their respective monitoring of the financial system for risks; but these meetings had not yet taken place. The first of these meetings is to be held in May 2017 following the agencies' respective systemic risk exercises. Initiating these discussions addresses part of GAO's February 2016 recommendation. GAO plans to review documentation from these meetings in 2017 to further assess if the agencies will use these meetings to jointly articulate individual and common goals, including developing a plan to monitor progress toward the goals. Fully addressing GAO's recommendation could help to ensure comprehensiveness in systemic risk surveillance and reduced risk of duplication. On September 9, 2016, the Financial CHOICE Act of 2016 was introduced. It called for the Office of Financial Research to be eliminated. The legislation did not pass before the 114th Congress ended.
    Director: Asif A. Khan
    Phone: (202) 512-9869

    1 open recommendations
    including 1 priority recommendation
    Recommendation: To help meet its financial management improvement and audit readiness goals, the Secretary of Defense should direct the Under Secretary of Defense (Comptroller) to reconsider the status of the three panel recommendations that DOD classified as met that we determined were partially met and take the necessary actions to reasonably assure that these recommendations have been met.

    Agency: Department of Defense
    Status: Open
    Priority recommendation

    Comments: In September 2015, we reported that DOD had completed action on 6 of the Committee Panel's 29 recommendations. However, we disagreed with DOD's reported status of met for 3 other recommendations related to (1) attestations on audit readiness to be included in each of the Financial Improvement and Audit Readiness (FIAR) Plan Status Reports; (2) inclusion of FIAR-related goals in Senior Executive Service performance plans, and rewarding and evaluating performances over time based on those goals; and (3) the review of audit readiness assertions by component senior executive committees. In response to our recommendation, in its November 2015 FIAR Plan Status Report, DOD revised the implementation status for these three recommendations from met to partially met and gave further consideration to actions needed to reasonably assure whether the recommendations had been met. In its May 2016 FIAR Plan Status Report DOD stated that it had completed corrective action on one of these three Committee Panel recommendations and reported actions on the other two recommendations as partially met. As of May 2017, DOD reported that its actions for all three Congressional Panel recommendations met those recommendations. However, DOD had not yet identified a method to reward executives based on evaluated performance on FIAR-related goals. In addition, DOD needs to continue to state in each FIAR Plan Status Report whether DOD is on track to be audit ready as of September 30, 2017. Therefore, as of August 30, 2017, this recommendation was still open.
    Director: Goldstein, Mark L
    Phone: (202) 512-2834

    2 open recommendations
    Recommendation: To strengthen the Washington Metropolitan Area Transit Authority's (WMATA) risk assessment and monitoring components of internal control, WMATA's board of directors, working with the General Manager and Chief Executive Officer of WMATA, should direct the appropriate WMATA officials to develop and implement a policy and related procedures for assessing WMATA's financial management-related risks.

    Agency: Washington Metropolitan Area Transit Authority
    Status: Open

    Comments: In July and August 2016, WMATA officials described to GAO the steps they have taken to address this recommendation. However, WMATA did not provide sufficient supporting documentation for GAO to verify that the recommendation was implemented. GAO continues to work with WMATA to understand the steps it has taken to address this recommendation.
    Recommendation: To strengthen the WMATA's risk assessment and monitoring components of internal control, WMATA's board of directors, working with the General Manager and Chief Executive Officer of WMATA, should direct the appropriate WMATA officials to develop and implement a policy and related written procedures for the Office of Internal Compliance to monitor the design and operating effectiveness of the five components of internal control related to financial management.

    Agency: Washington Metropolitan Area Transit Authority
    Status: Open

    Comments: In July and August 2016, WMATA officials described to GAO the steps they have taken to address this recommendation. However, WMATA did not provide sufficient supporting documentation for GAO to verify that the recommendation was implemented. GAO continues to work with WMATA to understand the steps it has taken to address this recommendation.
    Director: Carol R.Cha
    Phone: (202) 512-4456

    2 open recommendations
    Recommendation: The Secretary of Defense should direct the Under Secretary of Defense for Acquisition, Technology, and Logistics to require MAIS programs to establish their first acquisition program baseline within 2 years of beginning work on the programs.

    Agency: Department of Defense
    Status: Open

    Comments: The Department developed a draft process document that states that business system (e.g. financial management, logistics management) programs should start development on at least one release within 24 months after programs have identified the needed capabilities and received approval to conduct further analysis into the potential delivery of the capabilities. We will follow-up with the Department for the final process document and guidance, when available.
    Recommendation: The Secretary of Defense should direct the Secretary of the Army to direct the Army (Financial Management and Comptroller) to complete a plan for conducting auditability testing of LMP Increment 2 functionality to ensure that such testing occurs prior to the LMP program management office deploying future functionality.

    Agency: Department of Defense
    Status: Open

    Comments: According to DOD officials, in response to our recommendation, the department developed a plan to conduct system testing on LMP Increment 2 in accordance with the Federal Information System Controls Audit Manual. The officials stated that the department's plan was to conduct this testing both prior to and after the deployment of new functionality to users. We have requested additional information and documentation from DOD regarding these LMP Increment 2 test plans in order to determine whether the testing associated with auditability of the system was to be conducted before deployment to users.
    Director: Beryl H. Davis
    Phone: (202) 512-2623

    2 open recommendations
    Recommendation: The Secretary of Health and Human Services should direct the Administrator of the Centers for Medicare and Medicaid Services to develop and implement policies and procedures for responding to nonroutine CCIIO-related financial management information requests, including procedures for documenting the preparation process and the review and approval of the results.

    Agency: Department of Health and Human Services
    Status: Open

    Comments: The Department of Health and Human Services (HHS) disagreed with this recommendation. HHS management indicated that it has up-to-date and clearly documented standard operating procedures (SOP) for its normal day-to-day work processes, and did not believe that non-standard data requests lend themselves to documented, standard SOPs. In May 2016, HHS indicated that its position on this issue has not changed. In June 2017, HHS indicated that its position on this issue has not changed. GAO believes the recommendation is still valid.
    Recommendation: The Secretary of Health and Human Services should direct the Administrator of the Centers for Medicare and Medicaid Services to identify and evaluate options to facilitate more timely and independently verifiable reporting of CCIIO-related financial management information, such as enhancing Healthcare Integrated General Ledger Accounting System's standard reporting or custom reporting capabilities.

    Agency: Department of Health and Human Services
    Status: Open

    Comments: The Department of Health and Human Services (HHS) disagreed with this recommendation. HHS indicated that it tracks appropriations in accordance with all relevant federal laws and regulations, and that the information was complete and verifiable. Federal accounting concepts and standards concerning managerial cost accounting allow flexibility for agency managers to develop costing methods that are best suited to their operational environment. HHS indicated that would continue to evaluate options of enhancing the standard and/or custom reporting capabilities of its core financial system; the Health Integrated General Ledger System (HIGLAS). In May 2016, HHS indicated that its position on this issue has not changed. In June 2017, HHS indicated that its position on this issue has not changed. GAO believes the recommendation is still valid.
    Director: Khan, Asif A
    Phone: (202) 512-9869

    2 open recommendations
    Recommendation: The Secretary of Defense should direct the Under Secretary of Defense, in his capacity as the Chief Management Officer and in consultation with the Under Secretary of Defense (Comptroller), to design and implement department-level policies and detailed procedures for FIAR Plan risk management that incorporate the five guiding principles for effective risk management. The following are examples of key features of each of the guiding principles that DOD should, at a minimum, address in its policies and procedures. (1) Identify risks. Generate a comprehensive and continuously updated list of risks that includes the root cause of each risk, audit area(s) each risk will affect, and the potential consequences if a risk is not effectively mitigated. (2) Analyze risks. Consult with key stakeholders, including program managers; use analytical techniques, such as risk categorization, risk urgency assessment, or sensitivity analysis; and determine the impact of the identified risks on individual DOD components' abilities to achieve audit readiness. (3) Plan for risk mitigation. Assign responsibility or ownership of the risk mitigation actions, define roles and responsibilities in executing mitigation plans, establish deadlines or milestones for individual mitigation actions, and estimate resource needs. (4) Implement risk mitigation plan. Document the implementation of mitigation actions, develop appropriate metrics that allow for tracking of progress, and validate reported metrics. (5) Monitor risks. Track identified risks and assess the effectiveness of implemented mitigation actions on a continuous basis, including identifying and planning for new risks.

    Agency: Department of Defense
    Status: Open

    Comments: DOD partially concurred with our recommendation. While DOD did concur with our assessment that they did not have a risk management policy and procedures related to implementing the FIAR guidance. They did not concur with our assessment of the overall environment of DOD's risk management of the FIAR initiative. DOD has taken steps to address our recommendation including implementing an NFR tracker and standard operating procedures designed to track DOD component material weaknesses. DOD has also documented a critical path and milestones in Appendix F of their FIAR Guidance; military component tasks and milestones in appendix G of the FIAR Guidance; and audit readiness deal breakers, now referred to as critical capabilities. However, while these are positive actions, they do not address our recommendation for DOD to implement risk management policies and procedures for FIAR implementation. Further, DOD has not provided GAO with evidence of planned actions it summarized in its agency comments. Specifically, DOD has not provided documentation related to (1) improving risk management documentation, (2) reinstating the DOD probability and impact matrix, and (3) re-evaluation of metrics to monitor progress and risk of audit readiness. Lastly, DOD's tracking of military component material weaknesses does not identify risks to audit readiness, or the agencies capabilities to manage risks to audit readiness. According to the May 2017 FIAR Status Update for the HASC Panel Recommendations, DOD has reinforced the importance of internal controls over areas of significant risk by updating the FIAR Guidance with a new chapter dedicated to internal controls. DOD has also changed how they respond to recommendation follow-up by way of the Washington Headquarters Service (WHS). We are currently waiting for a POC to be assigned. We will continue to evaluate the status of actions to address this recommendation.
    Recommendation: The Secretary of Defense should direct the Under Secretary of Defense, in his capacity as the Chief Management Officer and in consultation with the Under Secretary of Defense (Comptroller), to consider and incorporate, as appropriate, the Navy's and DLA's risk management practices in department-level policies and procedures.

    Agency: Department of Defense
    Status: Open

    Comments: DOD has changed how they respond to recommendation follow-up by way of the Washington Headquarters Service (WHS). We are currently waiting for a POC to be assigned. We will continue to evaluate the status of actions to address this recommendation.
    Director: Clowers, Angela N
    Phone: (202) 512-8678

    4 open recommendations
    including 1 priority recommendation
    Recommendation: FSOC and OFR should clarify responsibility for implementing requirements to monitor threats to financial stability across FSOC and OFR, including FSOC members and member agencies, to better ensure that the monitoring and analysis of the financial system are comprehensive and not unnecessarily duplicative.

    Agency: Department of the Treasury: Financial Stability Oversight Council
    Status: Open
    Priority recommendation

    Comments: As of October 2016, FSOC staff have said FSOC and its members, including OFR, understand their responsibilities, saying that meetings of FSOC's Systemic Risk Committee help to ensure that FSOC member agencies have clarity on their responsibilities and noted that the committee operated under a charter. However, our review of the charter found that it does not clarify responsibilities for monitoring threats to financial stability. They also stated that actions OFR and the Federal Reserve (both of which serve on the Systemic Risk Committee) agreed to take in response to a recommendation in a GAO report issued in February 2016 would help to clarify these responsibilities. However, these represent just two of FSOC's member agencies; similar collaborative steps by other agencies would support the clarity of roles for monitoring threats to financial stability. We maintain that more specific action from FSOC and OFR, including FSOC member and member agencies, is needed to address this recommendation that ensures clarity of roles and responsibilities in proactively and comprehensively monitoring for potential emerging threats in the financial system. Our past work has shown that the lack of clear roles and coordination can lead to duplication, confusion, and regulatory gaps.
    Recommendation: FSOC and OFR should clarify responsibility for implementing requirements to monitor threats to financial stability across FSOC and OFR, including FSOC members and member agencies, to better ensure that the monitoring and analysis of the financial system are comprehensive and not unnecessarily duplicative.

    Agency: Department of the Treasury: Financial Stability Oversight Council: Office of Financial Research
    Status: Open

    Comments: As of March 2017, OFR has taken some steps to work with the Board of Governors of the Federal Reserve System, a member agency of FSOC, to organize semi-annual meetings to jointly discuss views from their respective monitoring of the financial system for risks. We continue to monitor FSOC and OFR actions that would be responsive to clarifying responsibilities for monitoring threats to financial stability across all the agencies that are members of FSOC.
    Recommendation: To strengthen accountability and collaboration in FSOC's decision making, FSOC should establish a collaborative and comprehensive framework for assessing the impact of its decisions for designating FMUs and nonbank financial companies on the wider economy and those entities. This framework should include assessing the effects of subjecting designated FMUs and nonbank financial companies to new regulatory standards, requirements, and restrictions; establishing a baseline from which to measure the effects; and documenting the approach.

    Agency: Department of the Treasury: Financial Stability Oversight Council
    Status: Open

    Comments: In response to an April 2017 presidential memorandum, Treasury is conducting a review of FSOC's designation process, including an assessment of the effects of designating FMUs and nonbank financial companies. This review will result in a report. We will update the status of this recommendation after we have reviewed the report.
    Recommendation: To strengthen accountability and collaboration in FSOC's decision making, FSOC should develop more systematic forward-looking approaches for reporting on potential emerging threats to financial stability in annual reports. Such an approach should provide methodological insight into why certain threats to financial stability are included or excluded over time, separate current or past threats from those that are potentially emerging, and prioritize the latter.

    Agency: Department of the Treasury: Financial Stability Oversight Council
    Status: Open

    Comments: When FSOC publishes its annual report for 2017 and we have reviewed it, we will provide updated information.
    Director: Khan, Asif A
    Phone: (202)512-9869

    3 open recommendations
    Recommendation: To improve the development, implementation, documentation, and oversight of the department's financial management improvement efforts, and to ensure that the Air Force develops and implements its Financial Improvement Plan in accordance with the FIAR Guidance, the Secretary of Defense should direct the Secretary of the Air Force to ensure that the Air Force's Financial Improvement Plans include documentation that the Air Force performed a reconciliation of the complete population of transactions for an assessable unit to the relevant general ledger(s) and to the amount(s) reported in the financial statements, including researching and resolving reconciling items.

    Agency: Department of Defense
    Status: Open

    Comments: The Department of Defense (DOD) concurred with this recommendation. In November 2015, an independent public accountant (IPA) issued a disclaimer of opinion in connection with its audit of Air Force's fiscal year 2015 General Fund Schedule of Budgetary Activity (SBA) because Air Force was unable to provide sufficient audit evidence to provide a basis for an audit opinion. In addition, the IPA specifically identified Air force's inability to validate the completeness of transactions underlying the SBA as one of three material weaknesses in internal controls over financial reporting. We followed up with DOD officials in August 2017 and have not been able to obtain documentation indicating that actions were taken to address this recommendation. As a result, this recommendation remains open.
    Recommendation: To improve the development, implementation, documentation, and oversight of the department's financial management improvement efforts, and to improve DOD's monitoring and oversight of FIP activities, the Secretary of Defense should direct the Secretary of the Navy to ensure that all responsible parties within the Navy, including the Assistant Secretary of the Navy (Financial Management and Comptroller), carry out their responsibilities for ensuring that FIP development and implementation complies with the FIAR Guidance and that the FIP contains sufficient information to indicate audit readiness before it is signed.

    Agency: Department of Defense
    Status: Open

    Comments: The Department of Defense (DOD) concurred with this recommendation. In February 2016, an independent public accountant (IPA) issued a disclaimer of opinion in connection with its audit of Navy's fiscal year 2015 General Fund Schedule of Budgetary Activity because Navy was unable to provide sufficient audit evidence regarding its completeness and accuracy. In addition, the IPA identified three material weaknesses in internal control over financial reporting such that there is a reasonable possibility that a material misstatement of its financial statements will not be prevented, or detected and corrected, on a timely basis. Ensuring the completeness and accuracy of financial reports are key elements of the FIAR Guidance. We followed up with DOD officials in August 2017 and have not been able to obtain documentation indicating that actions were taken to address this recommendation. As a result, this recommendation remains open.
    Recommendation: To improve the development, implementation, documentation, and oversight of the department's financial management improvement efforts, and to improve DOD's monitoring and oversight of FIP activities, the Secretary of Defense should direct the Secretary of the Air Force to ensure that all responsible parties within the Air Force, including the Assistant Secretary of the Air Force (Financial Management and Comptroller) carry out their responsibilities for ensuring that FIP development and implementation complies with the FIAR Guidance and that the FIP contains sufficient information to indicate audit readiness before it is signed.

    Agency: Department of Defense
    Status: Open

    Comments: The Department of Defense (DOD) concurred with this recommendation. In November 2016, an independent public accountant (IPA) issued a disclaimer of opinion in connection with its audit of Air Force's fiscal year 2015 General Fund Schedule of Budgetary Activity (SBA) because Air Force was unable to provide sufficient audit evidence to provide a basis for an audit opinion. In addition, the IPA identified three material weaknesses in internal control over financial reporting such that there is a reasonable possibility that a material misstatement of its financial statements will not be prevented, or detected and corrected, on a timely basis. Ensuring the completeness and accuracy of financial reports are key elements of the DOD FIAR Guidance. We followed up with DOD officials in August 2017 and have not been able to obtain documentation of actions taken to address this recommendation. As a result, this recommendation remains open.
    Director: Clark, Cheryl E
    Phone: (202)512-9521

    3 open recommendations
    Recommendation: Based on a review of all existing contracts under $100,000 without an appointed COTR that should require contract employees to obtain favorable background investigation results, the Commissioner of the IRS should direct the appropriate IRS officials to amend those contracts to require that favorable background investigations be obtained for all relevant contract employees before routine, unescorted, unsupervised physical access to taxpayer information is granted.

    Agency: Department of the Treasury: Internal Revenue Service
    Status: Open

    Comments: According to IRS, it has completed its contract review and made appropriate modifications as of July 2016. However, the modifications to the contracts were not made available for our review during the fiscal year 2016 audit. We will continue to evaluate IRS's actions to address this recommendation during our fiscal year 2017 audit.
    Recommendation: The Commissioner of the IRS should direct the appropriate IRS officials to establish a policy requiring collaborative oversight between IRS's key offices in determining whether potential service contracts involve routine, unescorted, unsupervised physical access to taxpayer information, thus requiring background investigations, regardless of contract award amount. This policy should include a process for the requiring business unit to communicate to the Office of Procurement and the Human Capital Office the services to be provided under the contract and any potential exposure of taxpayer information to contract employees providing the services, and for all three units to (1) evaluate the risk of exposure of taxpayer information prior to finalizing and awarding the contract and (2) ensure that the final contract requires favorable background investigations as applicable, commensurate with the assessed risk.

    Agency: Department of the Treasury: Internal Revenue Service
    Status: Open

    Comments: IRS's efforts to address this recommendation are ongoing. IRS stated that during fiscal year 2017, several internal organizations will partner to identify the remaining actions needed to address this recommendation. According to IRS, these actions include developing policies and procedures to reasonably assure that (1) oversight between IRS's key offices is conducted to determine whether potential service awards IRS enters into involve routine, unescorted, unsupervised physical access to taxpayer information by contractors, thus requiring background investigations, and (2) the resulting processes make clear who is responsible for completing the various steps, as well as who must maintain documentation of the approved access determination prior to the contractor being allowed to provide the services. We will continue to evaluate IRS's actions to address this recommendation during our fiscal year 2017 audit.
    Recommendation: The Commissioner of the IRS should direct the appropriate IRS officials to revise the post orders for the service center campuses (SCC) and lockbox bank security guards to include specific procedures for timely reporting exterior lighting outages to SCC or lockbox bank facilities management. These procedures should specify (1) whom to contact to report lighting outages and (2) how to document and track lighting outages until resolved.

    Agency: Department of the Treasury: Internal Revenue Service
    Status: Open

    Comments: IRS's efforts to address this recommendation are ongoing. IRS stated that during fiscal year 2017, it would update campus post orders to help ensure timely reporting, monitoring and repair of exterior lighting outages. In addition, AWSS engaged in discussions with personnel from FPS and GSA to coordinate responsibilities and suggested changes for post orders when security services are contracted by those entities. We will continue to evaluate IRS's actions to address this recommendation during our fiscal year 2017 audit.
    Director: Khan, Asif A
    Phone: (202)512-3000

    1 open recommendations
    Recommendation: The Secretary of Defense should direct the military department Chief Management Officers, in consultation with the Under Secretary of Defense (Comptroller) and the Under Secretary of Defense for Acquisition, Technology, and Logistics, as appropriate, after defining the cost accounting requirements, to utilize the requirements as input to the ERPs to help ensure that the ERPs will provide the capability to identify and aggregate cost information for the department's assets in accordance with DOD's defined requirements.

    Agency: Department of Defense
    Status: Open

    Comments: DOD's military departments are in the process of implementing Enterprise Resource Planning (ERPs). At least one of these ERPs does not currently include cost accumulation and reporting for military equipment assets. DOD's FIAR plan efforts, which, according to officials, include systems enhancements are still on-going to address this recommendation. The status of this recommendation is open.
    Director: Clark, Cheryl E
    Phone: (202)512-9521

    1 open recommendations
    Recommendation: The Commissioner of IRS should direct the appropriate IRS officials to, once IRS identifies the control weaknesses that result in inaccuracies or errors that affect the financial reporting of unpaid tax assessments, implement control procedures to routinely prevent, or to detect and correct, such errors.

    Agency: Department of the Treasury: Internal Revenue Service
    Status: Open

    Comments: IRS created a long-term corrective action plan that contains specific actions to improve control procedures to prevent or detect errors. While IRS completed some actions during fiscal year 2016, it has not completed most of the actions in the plan or documented milestones or target completion dates for these remaining actions. In addition, during fiscal year 2016, GAO and IRS continued to identify misclassified unpaid assessments that resulted from inaccuracies or errors in taxpayer accounts. Thus, IRS's actions to date have not been effective at fully addressing the issues that continue to cause a lack of transaction traceability and material inaccuracies produced by the subsidiary ledger. We will continue to evaluate IRS's actions to address this recommendation during our fiscal year 2017 audit.
    Director: Clark, Cheryl E
    Phone: (202)512-9377

    1 open recommendations
    Recommendation: The Finance Officer at the Commission's European Regional (ER) office should instruct and monitor approving officials to ensure that expenditure transactions are dated when goods and services are received and approved before payments are processed.

    Agency: American Battle Monuments Commission: European Regional Office
    Status: Open

    Comments: During our fiscal years 2009, 2010, and 2011 financial statement audits, we continued to find expenditure transactions being processed prior to the goods or services being received and approved for payment. During our fiscal year 2012 audit, the Commission informed us that since the transition to a new financial management system in August 2011, all receiving is conducted in the iProcurement system (part of the Oracle accounting system) and must be complete before an invoice is processed for payment in Oracle. Although we found that invoices were approved before payment, we continued to find instances where the invoices were not dated and/or signed when goods or invoices were received. During fiscal year 2017, the Commission informed us that they developed a related policy to address our recommendation. However, the Commission has not provided documentation or an explanation of the controls used by management for monitoring (i.e. evaluating or reviewing) the effective implementation of the procedures established related to this recommendation. Therefore, we will continue to follow up on this open recommendation with the Commission at a later date.
    Director: Clark, Cheryl E
    Phone: (202) 512-3000

    1 open recommendations
    Recommendation: To address other issues that may exist in IRS's master files that affect penalty calculations, the Commissioner of Internal Revenue should direct appropriate IRS officials to, in instances where programs are not functioning in accordance with the intent of the IRM, take appropriate action to correct the programs so that they function in accordance with the IRM.

    Agency: Department of the Treasury: Internal Revenue Service
    Status: Open

    Comments: According to IRS, it had substantially completed its corrective actions to address 19 penalty programming issues it had identified from its internal assessment of penalty computation programs. However, as of September 30, 2016, IRS had not provided us with supporting documentation to validate that it completed the corrective actions. We will continue to evaluate IRS's actions to address this recommendation during our fiscal year 2017 financial statement audit.
    Director: Ragland, Susan
    Phone: (202)512-9471

    1 open recommendations
    Recommendation: The Secretary of the Interior should direct the Deputy Assistant Secretary for Insular Affairs to develop a framework for OIA employees to use in conducting site visits to help ensure objectives are achieved, to assure that relevant information is shared with responsible officials, and to allow more efficient and effective monitoring of issues.

    Agency: Department of the Interior
    Status: Open

    Comments: On May 24, 2017, the Department of Interior (DOI) sent out an email to its staff showing the dissemination of the new format required for completing trip reports by the staff of the Office of Insular Affairs (OIA). The new format requires staff to include travel justification (i.e., purpose/objective, location, and travel period) and trip report (i.e., meetings, site visits, results, and next steps, as applicable.) The intent of the recommendation is for DOI to have a framework that includes (1) status of required single audit reports; (2) the progress of actions to resolve reported internal control weaknesses; and (3) current needs for technical assistance, capacity building, and staff level expertise. Further, the intent of GAO's recommendation is that this information be integrated into a comprehensive monitoring process. We did not see these elements included in DOI's new format. We will continue to monitor the agency's actions to address this recommendation.
    Director: Daly, Kay L
    Phone: 2025124063

    1 open recommendations
    Recommendation: To better understand the relationship of costs and revenues related to fees SSA collects for administering state SSI supplementation programs, the Commissioner of SSA should direct appropriate officials to study those costs to determine the full cost, including the cost of services provided by other entities for the benefit of SSA.

    Agency: Social Security Administration
    Status: Open

    Comments: SSA is continuing with the roll out of the Employee Office Sampler to all field offices across the nation. According to SSA, this tool removes the manual aspect of the District Office Work Sampling process. A decision was made by SSA to update the Standard Time Values (STVs) used for costing out the full cost SSA incurs for processing state Social Security Insurance claims. SSA stated that it completed these studies in fiscal year 2012 and placed the new STVs into its Cost Analysis System for use in fiscal year 2013. According to SSA, this update allows SSA to more accurately capture the full cost of this work for the agency. In December 2016, SSA stated that it has completed the roll out of the Employee Office Sampler (EOS) to the field offices in the fourth quarter of fiscal year 2016. The Office of Financial Policy and Operations is currently working on a proposal for the IT Investment Process (ITIP) to roll out the EOS to the remaining operational components, targeted for early 2017.
    Director: Daly, Kay L
    Phone: 2025124063

    2 open recommendations
    Recommendation: To help ensure that Transportation components implement reliable cost accounting methodologies for use in managerial decision making in accordance with departmental objectives, the Secretary of Transportation should direct appropriate department officials to finalize and issue a policy for implementing MCA departmentwide.

    Agency: Department of Transportation
    Status: Open

    Comments: Transportation initiated a major, multi-year department-wide program to re-engineer their financial processes, including cost accounting. Because of the complexity of cost accounting and the complications of the next release of their financial software, Transportation has told us that cost accounting is scheduled as a future process to be reviewed. As a result, Transportation has not yet implemented this recommendation to finalize and issue a policy for implementing MCA departmentwide.
    Recommendation: To help ensure that Transportation components implement reliable cost accounting methodologies for use in managerial decision making in accordance with departmental objectives, the Secretary of Transportation should direct appropriate department officials to finalize and issue formal procedures, revised as necessary, to monitor implementation of that policy and establish a sound system of controls.

    Agency: Department of Transportation
    Status: Open

    Comments: Transportation initiated a major, multi-year department-wide program to re-engineer their financial processes, including cost accounting. Because of the complexity of cost accounting and the complications of the next release of their financial software, Transportation has told us that cost accounting is scheduled as a future process to be reviewed. As a result, Transportation has not finalized or issued a policy for implementing MCA departmentwide.
    Director: Fleming, Susan A
    Phone: 2025128984

    4 open recommendations
    Recommendation: To improve Amtrak's efforts in addressing financial management challenges and better support management decision making, the president of Amtrak should perform a comprehensive risk assessment of financial reporting processes that support preparation of monthly performance reports and the RPI, to include determining areas of vulnerability, implementing appropriate compensating and mitigating internal controls, and ongoing monitoring to ensure compliance.

    Agency: National Railroad Passenger Corporation
    Status: Open

    Comments: GAO is continuing to work with Amtrak to obtain information on the status of this recommendation and will update provide updates as available.
    Recommendation: To improve Amtrak's efforts in addressing financial management challenges and better support management decision making, the president of Amtrak should document policies and procedures related to controlling the information in the monthly performance reports, including the RPI. The policies and procedures should cover how expenses are allocated to Amtrak's routes, as well as specific guidance on documenting the justification and authorization of changes made to allocation methods.

    Agency: National Railroad Passenger Corporation
    Status: Open

    Comments: We will continue to work with Amtrak to obtain information about the status of this recommendation and will provide updates as available.
    Recommendation: To improve Amtrak's efforts in addressing financial management challenges and better support management decision making, the president of Amtrak should develop a comprehensive action plan for immediately implementing preventive controls to enhance the reliability of financial data and address the reportable condition over accounting for capital assets in the most recent reports and letters of comment from the independent public accountant.

    Agency: National Railroad Passenger Corporation
    Status: Open

    Comments: We will continue to work with Amtrak to obtain information about this recommendation and will provide updates as available.
    Recommendation: To ensure that Amtrak can better meet the challenge of increasing its efficiency and reducing its operating costs, the president of Amtrak should establish efficiency and unit cost measures with clear inputs to benchmark individual asset and corporate productivity, which will demonstrate efficient use of Amtrak's resources.

    Agency: National Railroad Passenger Corporation
    Status: Open

    Comments: We will continue to work with Amtrak to obtain information about the status of this recommendation and will provide updates as available.
    Director: Engel, Gary T
    Phone: (202)512-8815

    7 open recommendations
    including 7 priority recommendations
    Recommendation: The Secretary of the Treasury should direct the Fiscal Assistant Secretary, working in coordination with the Controller of OMB's Office of Federal Financial Management, to help ensure that agencies provide adequate information in their legal representation letters regarding the expected outcome of the cases.

    Agency: Department of the Treasury
    Status: Open
    Priority recommendation

    Comments: As of the completion of our fiscal year 2016 consolidated financial statements (CFS) audit, Treasury and OMB agreed that this recommendation remained open. Treasury documented the processes that federal entities are following in using the "unable to determine" expected outcome of legal cases. Treasury and OMB will continue to work with GAO to close any remaining gaps. We will follow-up on progress made by Treasury and OMB as part of our fiscal year 2017 CFS audit, which is ongoing as of March 2017.
    Recommendation: The Secretary of the Treasury should direct the Fiscal Assistant Secretary, working in coordination with the Controller of OMB's Office of Federal Financial Management, to establish written policies and procedures to help ensure that major treaty and other international agreement information is properly identified and reported in the CFS. Specifically, these policies and procedures should require that agencies develop a detailed schedule of all major treaties and other international agreements that obligate the U.S. government to provide cash, goods, or services, or that create other financial arrangements that are contingent on the occurrence or nonoccurrence of future events (a starting point for compiling these data could be the State Department's Treaties in Force).

    Agency: Department of the Treasury
    Status: Open
    Priority recommendation

    Comments: As of the completion of our fiscal year 2016 consolidated financial statements (CFS) audit, Treasury and OMB agreed that this recommendation remained open. Treasury and OMB plan to leverage the existing process and oversight followed by the Department of State to enhance the guidance issued to federal entities to ensure the proper reporting and accounting on treaties and international agreements. We will follow-up on progress made by Treasury and OMB as part of our fiscal year 2017 CFS audit, which is ongoing as of March 2017.
    Recommendation: The Secretary of the Treasury should direct the Fiscal Assistant Secretary, working in coordination with the Controller of OMB's Office of Federal Financial Management, to establish written policies and procedures to help ensure that major treaty and other international agreement information is properly identified and reported in the CFS. Specifically, these policies and procedures should require that agencies classify all such scheduled major treaties and other international agreements as commitments or contingencies.

    Agency: Department of the Treasury
    Status: Open
    Priority recommendation

    Comments: As of the completion of our fiscal year 2016 consolidated financial statements (CFS) audit, Treasury and OMB agreed that this recommendation remained open. Treasury and OMB plan to leverage the existing process and oversight followed by the Department of State to enhance the guidance issued to federal entities to ensure the proper reporting and accounting on treaties and international agreements. We will follow-up on progress made by Treasury and OMB as part of our fiscal year 2017 CFS audit, which is ongoing as of March 2017.
    Recommendation: The Secretary of the Treasury should direct the Fiscal Assistant Secretary, working in coordination with the Controller of OMB's Office of Federal Financial Management, to establish written policies and procedures to help ensure that major treaty and other international agreement information is properly identified and reported in the CFS. Specifically, these policies and procedures should require that agencies disclose in the notes to the CFS amounts for major treaties and other international agreements that have a reasonably possible chance of resulting in a loss or claim as a contingency.

    Agency: Department of the Treasury
    Status: Open
    Priority recommendation

    Comments: As of the completion of our fiscal year 2016 consolidated financial statements (CFS) audit, Treasury and OMB agreed that this recommendation remained open. Treasury and OMB plan to leverage the existing process and oversight followed by the Department of State to enhance the guidance issued to federal entities to ensure the proper reporting and accounting on treaties and international agreements. We will follow-up on progress made by Treasury and OMB as part of our fiscal year 2017 CFS audit, which is ongoing as of March 2017.
    Recommendation: The Secretary of the Treasury should direct the Fiscal Assistant Secretary, working in coordination with the Controller of OMB's Office of Federal Financial Management, to establish written policies and procedures to help ensure that major treaty and other international agreement information is properly identified and reported in the CFS. Specifically, these policies and procedures should require that agencies disclose in the notes to the CFS amounts for major treaties and other international agreements that are classified as commitments and that may require measurable future financial obligations.

    Agency: Department of the Treasury
    Status: Open
    Priority recommendation

    Comments: As of the completion of our fiscal year 2016 consolidated financial statements (CFS) audit, Treasury and OMB agreed that this recommendation remained open. Treasury and OMB plan to leverage the existing process and oversight followed by the Department of State to enhance the guidance issued to federal entities to ensure the proper reporting and accounting on treaties and international agreements. We will follow-up on progress made by Treasury and OMB as part of our fiscal year 2017 CFS audit, which is ongoing as of March 2017.
    Recommendation: The Secretary of the Treasury should direct the Fiscal Assistant Secretary, working in coordination with the Controller of OMB's Office of Federal Financial Management, to establish written policies and procedures to help ensure that major treaty and other international agreement information is properly identified and reported in the CFS. Specifically, these policies and procedures should require that agencies take steps to prevent major treaties and other international agreements that are classified as remote from being recorded or disclosed as probable or reasonably possible in the CFS.

    Agency: Department of the Treasury
    Status: Open
    Priority recommendation

    Comments: As of the completion of our fiscal year 2016 consolidated financial statements (CFS) audit, Treasury and OMB agreed that this recommendation remained open. Treasury and OMB plan to leverage the existing process and oversight followed by the Department of State to enhance the guidance issued to federal entities to ensure the proper reporting and accounting on treaties and international agreements. We will follow-up on progress made by Treasury and OMB as part of our fiscal year 2017 CFS audit, which is ongoing as of March 2017.
    Recommendation: GAO recommends that the note disclosure for stewardship responsibilities related to the risk assumed for federal insurance and guarantee programs meet the requirements of Statement of Federal Financial Accounting Standards No. 5, Accounting for Liabilities of the Federal Government, paragraph 106, that requires that when financial information pursuant to Financial Accounting Standards Board standards on federal insurance and guarantee programs conducted by government corporations is incorporated in general purpose financial reports of a larger federal reporting entity, the entity should report as required supplementary information what amounts and periodic change in those amounts would be reported under the "risk assumed" approach.

    Agency: Department of the Treasury
    Status: Open
    Priority recommendation

    Comments: As of the completion of our fiscal year 2016 consolidated financial statements (CFS) audit, Treasury agreed that this recommendation remained open. Treasury will continue to request this information from agencies at interim and through year-end reporting requirements in the Treasury Financial Manual 2-4700. In addition, Treasury will continue to participate on the Federal Accounting Standards Advisory Board (FASAB) Risk Assumed Task Force and implement any related changes corresponding to the issuance of revised or new federal accounting standards. We will follow-up on progress made by Treasury as part of our fiscal year 2017 CFS audit, which is ongoing as of March 2017.
    Director: Williams, Mccoy
    Phone: (202)512-3000

    2 open recommendations
    Recommendation: The Senior Civilian Official for the Office of the Assistant Secretary of the Navy should develop a review process so that data call information on sponsor owned material is correctly reported.

    Agency: Department of Defense: Department of the Navy: Office of the Assistant Secretary of the Navy (Financial Management): Senior Civilian Official
    Status: Open

    Comments: According to Navy officials, sponsor owned material is a subset of Operating Materials and Supplies (OM&S) contained within the OM&S--Remainder (OM&S-R) category. The Navy's Office of Financial Operations (FMO) is providing direction to the various Navy budget submitting offices (BSOs) to guide the development of a complete, accurate, and validated population of the OM&S-R balances reported in the Navy's financial statements--to include sponsor owned material. Specifically, FMO is working with the BSOs to develop a review process in which the BSOs will reconcile their Accountable Property System of Record asset listings to the Navy's financial statements on a quarterly basis. FMO has performed a reconciliation for the third and fourth quarter of fiscal year 2016, and is currently performing a reconciliation for the first quarter of fiscal year 2017. However, FMO has yet to achieve a 100 percent accurate reconciliation. According to Navy FMO officials, the projected implementation date for this review process is expected to be after September 30, 2017. We will continue to follow-up on this recommendation.
    Recommendation: The Senior Civilian Official for the Office of the Assistant Secretary of the Navy should revise the Navy's policies for compiling its financial statements so that they are in accordance with federal accounting standards and the DOD Financial Management Regulation. Specifically: (1) ammunition items needing repair and those categorized as excess, obsolete, and unserviceable should be revalued appropriately to comply with SFFAS No. 3 and the DOD Financial Management Regulation; and (2) shipboard inventories aboard smaller combatant ships should be reported as operating materials and supplies in accordance with federal accounting standards.

    Agency: Department of Defense: Department of the Navy: Office of the Assistant Secretary of the Navy (Financial Management): Senior Civilian Official
    Status: Open

    Comments: Regarding the first part of this recommendation, Navy's procedures for financially reporting ammunition items deemed excess, obsolete, or unserviceable and ammunition items needing repair are not in compliance with federal accounting standards. The Statement of Federal Financial Accounting Standard Number 3 (SFFAS 3) states that excess, obsolete, and unserviceable operating material and supplies shall be valued at their net realizable value. The standard further states that repair costs for inventory held for repair must be accounted for and adjusted accordingly based on the method of accounting used. Specifically, for ammunition items needing repair, entities should revalue, or reduce, such items by the estimated repair costs for financial statement reporting purposes. However, the Navy is currently devaluing its excess, obsolete, and unserviceable ammunition to zero and reporting it as such on the financial statements. Further, although the Navy has identified an annual maintenance cost for ammunition items needing repair, the Navy currently does not devalue its ordnance, or ammunition, amounts by the estimated repair costs. The Navy contends that these are routine maintenance events and will elect to expense the ordnance maintenance cost as it is incurred in opposition to SFFAS 3. Regarding the second part of this recommendation, SFFAS 3 states that Operating Materials and Supplies (OM&S) should be accounted for using the consumption method; in that materials are to be reported as an asset until they are issued to an end user for consumption in normal operations, at which point they would be expensed. Navy acknowledges, in its fiscal year 2016 financial statements, that due to current system limitations, the consumption method of accounting for all of the Navy's OM&S is not feasible, although long-term efforts are underway to transition to the consumption method for the recognition OM&S expenses to address this previously identified material weakness. Until these efforts are completed, the Navy has granted the Fleet Forces Command and Pacific Fleet a waiver to account for OM&S utilizing the purchase method of accounting. Under the purchase method, the OM&S supplies are expensed upon purchase for the smaller combatant command ships, as opposed to federal accounting standards requiring them to be recognized as an asset on the balance sheet and then expensed when consumed in the normal course of operations. We will continue to follow-up on this recommendation and the related issues in future Navy Operating Material and Supplies audit work.