Financial Markets and Institutions

Jump To:
Image

Open Recommendations

Securities and Exchange Commission: Employee Views of Personnel Management Improved, but Action Needed on Measuring Diversity and Inclusion Goals

GAO-23-105459
Dec 22, 2022
Show
1 Open Recommendations
Agency Affected Recommendation Status
United States Securities and Exchange Commission The Director of SEC's Office of Minority and Women Inclusion should ensure that performance measures for SEC's diversity and inclusion strategic plan for fiscal years 2023–2026 align with the plan's goals and are clear, measurable, objective, and reliable. (Recommendation 1)
Open
When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.

Bank Secrecy Act: Action Needed to Improve DOJ Statistics on Use of Reports on Suspicious Financial Transactions

GAO-22-105242
Aug 25, 2022
Show
2 Open Recommendations
Agency Affected Recommendation Status
Department of Justice DOJ's Chief Information Officer, Chief Evaluation Officer and Chief Statistical Official should incorporate data on the use of BSA reports into their ongoing efforts to improve DOJ's data collection and infrastructure to determine if there are ways DOJ component agencies that use BSA reports could more consistently collect data described in NDAA section 6201. (Recommendation 1)
Open
When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Department of Justice The Chief of MLARS should collaborate with DOJ's Chief Information Officer and Statistical Official in producing future section 6201 reports, and use their expertise to help ensure a rigorous methodology for report design and analyses. (Recommendation 2)
Open
When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.

Fair Lending: Opportunities Exist to Enhance OCC's Oversight of Banks' Lending Practices

GAO-22-104717
Jun 21, 2022
Show
2 Open Recommendations
Agency Affected Recommendation Status
Office of the Comptroller of the Currency As OCC updates its redlining examination procedures, the Comptroller of the Currency should ensure the Compliance Risk Policy Division takes into account the new types of analysis being performed when it documents the steps that the examiners should take as they evaluate whether a bank has potentially engaged in redlining in violation of fair lending laws. (Recommendation 1)
Open
OCC stated that the updated examination procedures will clarify and expand the list of redlining risk factors, highlight certain key points regarding redlining case elements that have historically raised concerns, and update information from public redlining cases that concluded since the interagency fair lending examination procedures were published in 2010. The updated booklet is expected to be published no later than December 31, 2022. OCC will also develop additional training for examiners to highlight redlining examination best practices. Training will include live multi-part agency wide webinars that will be archived for future reference by agency staff. The training webinars are expected to be made available to examiners no later than September 30, 2022.
Office of the Comptroller of the Currency The Comptroller of the Currency should ensure the Compliance Risk Policy Division and the Office of Midsize and Community Bank Supervision establish time frames for carrying out their plan to centrally track information on midsize and community bank fair lending examination screening, selection, and outcomes. The Compliance Risk Policy Division should use this information to analyze its screening and selection processes on an ongoing basis to ensure an appropriate balance of (1) effective identification of fair lending deficiencies and violations and (2) efficiency given available resources. (Recommendation 2)
Open
OCC's offices will work collaboratively to develop a centralized process and procedures to collect and monitor information on fair lending activities. The new process will include procedures regarding the selection and non-selection of identified focal points, the disposition of focal points not selected, and the documentation of examination outcomes, including whether supervisory activities identified fair lending deficiencies or potential violations. The target date to implement a data collection and monitoring process is January 1, 2023.

Cyber Insurance: Action Needed to Assess Potential Federal Response to Catastrophic Attacks

GAO-22-104256
Jun 21, 2022
Show
2 Open Recommendations
Agency Affected Recommendation Status
Cybersecurity and Infrastructure Security Agency The Director of the Cybersecurity and Infrastructure Security Agency should work with the Director of the Federal Insurance Office to produce a joint assessment for Congress on the extent to which the risks to the nation's critical infrastructure from catastrophic cyberattacks, and the potential financial exposures resulting from these risks, warrant a federal insurance response. (Recommendation 1)
Open
DHS agreed with this recommendation. DHS has collaborated with Treasury on identifying data needs for the agencies' joint assessment of the need for a federal insurance response to address catastrophic cyberattacks. To fully implement this recommendation, DHS needs to continue working with Treasury to determine additional data needs for the agencies' joint assessment, as DHS has indicated is its intent. An assessment with DHS's analysis of the cyber risks facing critical infrastructure could inform Congress in its deliberations related to addressing the increasing risk of catastrophic cyber incidents for U.S. critical infrastructure.
Federal Insurance Office The Director of the Federal Insurance Office should work with the Director of the Cybersecurity and Infrastructure Security Agency to produce a joint assessment for Congress on the extent to which the risks to the nation's critical infrastructure from catastrophic cyberattacks, and the potential financial exposures resulting from these risks, warrant a federal insurance response. (Recommendation 2)
Open
Treasury agreed with this recommendation. In September 2022 Treasury published a request for information in the Federal Register to solicit comments from stakeholders on topics related to a potential federal insurance response to catastrophic cyber incidents and received 55 responses from a variety of organizations. As of February 2023, Treasury stated that it aims to complete an initial assessment of the potential need for a federal response to catastrophic cyber incidents by the end of 2023. To fully implement this recommendation, Treasury needs to continue stakeholder engagement and complete its initial assessment of whether there is a potential need for a federal response to catastrophic cyber incidents by the end of 2023, as it has indicated is its intent. Such an assessment could inform Congress in its deliberations related to addressing the increasing risk of catastrophic cyber incidents to U.S. critical infrastructure.
GAO Contacts