FAC Explorer

Audit 292488

FY End
2023-06-30
Total Expended
$14.45M
Findings
16
Programs
16
Organization: Northeastern Oklahoma Agricultural An Mechanical College (OK)
Year: 2023 Accepted: 2024-02-27
Auditor: Cliftonlarsonallen (cla) LLP

Organization Exclusion Status:

Findings

ID Ref Severity Repeat Requirement
370797 2023-001 Significant Deficiency - N
370798 2023-001 Significant Deficiency - N
370799 2023-001 Significant Deficiency - N
370800 2023-001 Significant Deficiency - N
370801 2023-002 Significant Deficiency - N
370802 2023-002 Significant Deficiency - N
370803 2023-002 Significant Deficiency - N
370804 2023-002 Significant Deficiency - N
947239 2023-001 Significant Deficiency - N
947240 2023-001 Significant Deficiency - N
947241 2023-001 Significant Deficiency - N
947242 2023-001 Significant Deficiency - N
947243 2023-002 Significant Deficiency - N
947244 2023-002 Significant Deficiency - N
947245 2023-002 Significant Deficiency - N
947246 2023-002 Significant Deficiency - N

Programs

ALN Program Spent Major Findings
84.063 Federal Pell Grant Program $4.88M Yes 2
84.268 Federal Direct Student Loans $4.72M Yes 2
84.425 Covid-19 Higher Education Emergency Relief Fund $2.69M Yes 0
84.047 Trio--Upward Bound $364,534 - 0
84.042 Trio--Student Support Services $316,167 - 0
84.031 Success and Cultural Center $304,869 - 0
84.031 Higher Education Institutional Aid-Serving the New Majority $302,491 - 0
93.558 Temporary Assistance for Needy Families - Allied Jobs Program $157,809 - 0
84.007 Federal Supplemental Educational Opportunity Grants $150,500 Yes 2
84.002 Adult Education - Basic Grant to States $132,234 - 0
84.033 Federal Work-Study Program $130,016 Yes 2
10.559 Summer Food Service Program for Children - Child Nutrition Program $87,477 - 0
93.575 Scholars for Excellence in Child Care $74,816 - 0
93.788 Opioid Str $47,772 - 0
84.335 Childcare Access Means Parents in School $44,192 - 0
84.048 Career and Technical Education - Basic Grants to States - Carl D. Perkins $42,318 - 0

Contacts

Name Title Type
L1PTQ1PU6BG5 Brandon Glick Auditee
9185406311 Chris Suda Auditor
No contacts on file

Notes to SEFA

Title: Basis of Presentation Accounting Policies: The accompanying Schedule of Expenditures of Federal Awards (the Schedule) includes all federal award activity of the College under programs of the federal government for the year ended June 30, 2023. The information in the Schedule is presented in accordance with the requirements of Title 2 U.S. Code of Federal Regulations Part 200, Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards (Uniform Guidance). Because the Schedule presents only a selected portion of the operations of the College, it is not intended to and does not present the financial position, changes in net position or cash flows of the College. De Minimis Rate Used: N Rate Explanation: N/A The accompanying Schedule of Expenditures of Federal Awards (the Schedule) includes all federal award activity of the College under programs of the federal government for the year ended June 30, 2023. The information in the Schedule is presented in accordance with the requirements of Title 2 U.S. Code of Federal Regulations Part 200, Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards (Uniform Guidance). Because the Schedule presents only a selected portion of the operations of the College, it is not intended to and does not present the financial position, changes in net position or cash flows of the College.
Title: Summary of Significant Accounting Policies Accounting Policies: The accompanying Schedule of Expenditures of Federal Awards (the Schedule) includes all federal award activity of the College under programs of the federal government for the year ended June 30, 2023. The information in the Schedule is presented in accordance with the requirements of Title 2 U.S. Code of Federal Regulations Part 200, Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards (Uniform Guidance). Because the Schedule presents only a selected portion of the operations of the College, it is not intended to and does not present the financial position, changes in net position or cash flows of the College. De Minimis Rate Used: N Rate Explanation: N/A Expenditures reported on the Schedule are reported on the accrual basis of accounting. Such expenditures are recognized following the cost principles contained in the Uniform Guidance, wherein certain types of expenditures are not allowable or are limited as to reimbursement. The College has elected not to use the 10% de minimis indirect cost rate allowed under the Uniform Guidance.
Title: Federal Direct Student Loans Program Accounting Policies: The accompanying Schedule of Expenditures of Federal Awards (the Schedule) includes all federal award activity of the College under programs of the federal government for the year ended June 30, 2023. The information in the Schedule is presented in accordance with the requirements of Title 2 U.S. Code of Federal Regulations Part 200, Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards (Uniform Guidance). Because the Schedule presents only a selected portion of the operations of the College, it is not intended to and does not present the financial position, changes in net position or cash flows of the College. De Minimis Rate Used: N Rate Explanation: N/A The College participates in the Federal Direct Student Loans Program (the Program), Federal Assistance Listing number 84.268, which includes Federal Subsidized Direct Loans, Federal Unsubsidized Direct Loans, Federal Graduate Student PLUS Direct Loans and Federal Direct Parent Loans for Undergraduate Students. The Program requires the College to draw down cash, and the College is required to perform certain administrative functions under the Program. Failure to perform such functions may require the College to reimburse the loan guarantee agencies. The College is not responsible for the collection of these loans. The value of loans made during the audit period are considered federal awards expended for the audit period.
Title: Subrecipients Accounting Policies: The accompanying Schedule of Expenditures of Federal Awards (the Schedule) includes all federal award activity of the College under programs of the federal government for the year ended June 30, 2023. The information in the Schedule is presented in accordance with the requirements of Title 2 U.S. Code of Federal Regulations Part 200, Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards (Uniform Guidance). Because the Schedule presents only a selected portion of the operations of the College, it is not intended to and does not present the financial position, changes in net position or cash flows of the College. De Minimis Rate Used: N Rate Explanation: N/A During the year ended June 30, 2023, the College did not provide any federal awards to subrecipients.

Finding Details

Finding 2023-001
Criteria or Specific Requirement: The Gramm-Leach Bliley Act (GLBA) requires financial institutions to explain their information-sharing practices to their customers and to safeguard sensitive data (16 CFR 314). The regulation states that the college must designate a qualified individual responsible for overseeing and implementing your information security program and enforcing your information security program. (16 CFR 314.4(a)). The entity shall have a Written Information Security Program (WISP) that outlines the design and implementation of the risk assessment procedures. (16 CFR 314.4(b)). At a minimum, the institution’s written information security program must address the implementation of the minimum safeguards identified in 16 CFR 314.4(c)(1) through (8) including: Assess apps developed by the institution. In addition, the written security program provides for the institution to regularly test or otherwise monitor the effectiveness of the safeguards it has implemented (16 CFR 314.4(d)). Condition: The college was missing all the requirements from the Gramm-Leach-Bliley Act except for having a Written Information Security Program, approval by appropriate individual, implement and periodically review access controls, and proper disposal of customer information securely. These GLBA requirements were applicable beginning on June 9, 2023, and there were multiple elements missing from their Written Information Security Program. Context: The institution has been in compliance with previous iterations of GLBA compliance. The Written Information Security Program (WISP) which was required as of June 9, 2023 had missing elements. Some controls were in place whereas others were not. They did, however, have a WISP as of the deadline but it was missing some required information. Questioned Costs: N/A Cause: There was not a formal process in place to review against all the new GLBA requirements to ensure compliance.Effect: Student personal information could be vulnerable. Repeat Finding: No Recommendation: We recommend that the College review the updated GLBA requirements and ensure their Written Information Security Program (WISP) includes all required elements. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-001
Criteria or Specific Requirement: The Gramm-Leach Bliley Act (GLBA) requires financial institutions to explain their information-sharing practices to their customers and to safeguard sensitive data (16 CFR 314). The regulation states that the college must designate a qualified individual responsible for overseeing and implementing your information security program and enforcing your information security program. (16 CFR 314.4(a)). The entity shall have a Written Information Security Program (WISP) that outlines the design and implementation of the risk assessment procedures. (16 CFR 314.4(b)). At a minimum, the institution’s written information security program must address the implementation of the minimum safeguards identified in 16 CFR 314.4(c)(1) through (8) including: Assess apps developed by the institution. In addition, the written security program provides for the institution to regularly test or otherwise monitor the effectiveness of the safeguards it has implemented (16 CFR 314.4(d)). Condition: The college was missing all the requirements from the Gramm-Leach-Bliley Act except for having a Written Information Security Program, approval by appropriate individual, implement and periodically review access controls, and proper disposal of customer information securely. These GLBA requirements were applicable beginning on June 9, 2023, and there were multiple elements missing from their Written Information Security Program. Context: The institution has been in compliance with previous iterations of GLBA compliance. The Written Information Security Program (WISP) which was required as of June 9, 2023 had missing elements. Some controls were in place whereas others were not. They did, however, have a WISP as of the deadline but it was missing some required information. Questioned Costs: N/A Cause: There was not a formal process in place to review against all the new GLBA requirements to ensure compliance.Effect: Student personal information could be vulnerable. Repeat Finding: No Recommendation: We recommend that the College review the updated GLBA requirements and ensure their Written Information Security Program (WISP) includes all required elements. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-001
Criteria or Specific Requirement: The Gramm-Leach Bliley Act (GLBA) requires financial institutions to explain their information-sharing practices to their customers and to safeguard sensitive data (16 CFR 314). The regulation states that the college must designate a qualified individual responsible for overseeing and implementing your information security program and enforcing your information security program. (16 CFR 314.4(a)). The entity shall have a Written Information Security Program (WISP) that outlines the design and implementation of the risk assessment procedures. (16 CFR 314.4(b)). At a minimum, the institution’s written information security program must address the implementation of the minimum safeguards identified in 16 CFR 314.4(c)(1) through (8) including: Assess apps developed by the institution. In addition, the written security program provides for the institution to regularly test or otherwise monitor the effectiveness of the safeguards it has implemented (16 CFR 314.4(d)). Condition: The college was missing all the requirements from the Gramm-Leach-Bliley Act except for having a Written Information Security Program, approval by appropriate individual, implement and periodically review access controls, and proper disposal of customer information securely. These GLBA requirements were applicable beginning on June 9, 2023, and there were multiple elements missing from their Written Information Security Program. Context: The institution has been in compliance with previous iterations of GLBA compliance. The Written Information Security Program (WISP) which was required as of June 9, 2023 had missing elements. Some controls were in place whereas others were not. They did, however, have a WISP as of the deadline but it was missing some required information. Questioned Costs: N/A Cause: There was not a formal process in place to review against all the new GLBA requirements to ensure compliance.Effect: Student personal information could be vulnerable. Repeat Finding: No Recommendation: We recommend that the College review the updated GLBA requirements and ensure their Written Information Security Program (WISP) includes all required elements. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-001
Criteria or Specific Requirement: The Gramm-Leach Bliley Act (GLBA) requires financial institutions to explain their information-sharing practices to their customers and to safeguard sensitive data (16 CFR 314). The regulation states that the college must designate a qualified individual responsible for overseeing and implementing your information security program and enforcing your information security program. (16 CFR 314.4(a)). The entity shall have a Written Information Security Program (WISP) that outlines the design and implementation of the risk assessment procedures. (16 CFR 314.4(b)). At a minimum, the institution’s written information security program must address the implementation of the minimum safeguards identified in 16 CFR 314.4(c)(1) through (8) including: Assess apps developed by the institution. In addition, the written security program provides for the institution to regularly test or otherwise monitor the effectiveness of the safeguards it has implemented (16 CFR 314.4(d)). Condition: The college was missing all the requirements from the Gramm-Leach-Bliley Act except for having a Written Information Security Program, approval by appropriate individual, implement and periodically review access controls, and proper disposal of customer information securely. These GLBA requirements were applicable beginning on June 9, 2023, and there were multiple elements missing from their Written Information Security Program. Context: The institution has been in compliance with previous iterations of GLBA compliance. The Written Information Security Program (WISP) which was required as of June 9, 2023 had missing elements. Some controls were in place whereas others were not. They did, however, have a WISP as of the deadline but it was missing some required information. Questioned Costs: N/A Cause: There was not a formal process in place to review against all the new GLBA requirements to ensure compliance.Effect: Student personal information could be vulnerable. Repeat Finding: No Recommendation: We recommend that the College review the updated GLBA requirements and ensure their Written Information Security Program (WISP) includes all required elements. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-002
Criteria or Specific Requirement: Per Uniform Guidance 2 CFR 200.303, nonfederal entities receiving federal awards are required to establish and maintain internal controls designed to reasonably ensure compliance with federal laws, regulations and program compliance requirements. Condition: The college did not have a formal review process, as the student financial aid director was both preparing and reviewing the calculation. Context: Out of the forty sampled calculations, all forty lacked evidence of a formal review. Questioned Costs: N/A Cause: Lack of formal review of last date of attendance for online students including Canvas activity logs. Effect: No formal review could allow errors in the calculation and errors in the timing of payments. Repeat Finding: No Recommendation: We recommend someone other than the preparer of Return of Title IV calculations review said calculations. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-002
Criteria or Specific Requirement: Per Uniform Guidance 2 CFR 200.303, nonfederal entities receiving federal awards are required to establish and maintain internal controls designed to reasonably ensure compliance with federal laws, regulations and program compliance requirements. Condition: The college did not have a formal review process, as the student financial aid director was both preparing and reviewing the calculation. Context: Out of the forty sampled calculations, all forty lacked evidence of a formal review. Questioned Costs: N/A Cause: Lack of formal review of last date of attendance for online students including Canvas activity logs. Effect: No formal review could allow errors in the calculation and errors in the timing of payments. Repeat Finding: No Recommendation: We recommend someone other than the preparer of Return of Title IV calculations review said calculations. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-002
Criteria or Specific Requirement: Per Uniform Guidance 2 CFR 200.303, nonfederal entities receiving federal awards are required to establish and maintain internal controls designed to reasonably ensure compliance with federal laws, regulations and program compliance requirements. Condition: The college did not have a formal review process, as the student financial aid director was both preparing and reviewing the calculation. Context: Out of the forty sampled calculations, all forty lacked evidence of a formal review. Questioned Costs: N/A Cause: Lack of formal review of last date of attendance for online students including Canvas activity logs. Effect: No formal review could allow errors in the calculation and errors in the timing of payments. Repeat Finding: No Recommendation: We recommend someone other than the preparer of Return of Title IV calculations review said calculations. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-002
Criteria or Specific Requirement: Per Uniform Guidance 2 CFR 200.303, nonfederal entities receiving federal awards are required to establish and maintain internal controls designed to reasonably ensure compliance with federal laws, regulations and program compliance requirements. Condition: The college did not have a formal review process, as the student financial aid director was both preparing and reviewing the calculation. Context: Out of the forty sampled calculations, all forty lacked evidence of a formal review. Questioned Costs: N/A Cause: Lack of formal review of last date of attendance for online students including Canvas activity logs. Effect: No formal review could allow errors in the calculation and errors in the timing of payments. Repeat Finding: No Recommendation: We recommend someone other than the preparer of Return of Title IV calculations review said calculations. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-001
Criteria or Specific Requirement: The Gramm-Leach Bliley Act (GLBA) requires financial institutions to explain their information-sharing practices to their customers and to safeguard sensitive data (16 CFR 314). The regulation states that the college must designate a qualified individual responsible for overseeing and implementing your information security program and enforcing your information security program. (16 CFR 314.4(a)). The entity shall have a Written Information Security Program (WISP) that outlines the design and implementation of the risk assessment procedures. (16 CFR 314.4(b)). At a minimum, the institution’s written information security program must address the implementation of the minimum safeguards identified in 16 CFR 314.4(c)(1) through (8) including: Assess apps developed by the institution. In addition, the written security program provides for the institution to regularly test or otherwise monitor the effectiveness of the safeguards it has implemented (16 CFR 314.4(d)). Condition: The college was missing all the requirements from the Gramm-Leach-Bliley Act except for having a Written Information Security Program, approval by appropriate individual, implement and periodically review access controls, and proper disposal of customer information securely. These GLBA requirements were applicable beginning on June 9, 2023, and there were multiple elements missing from their Written Information Security Program. Context: The institution has been in compliance with previous iterations of GLBA compliance. The Written Information Security Program (WISP) which was required as of June 9, 2023 had missing elements. Some controls were in place whereas others were not. They did, however, have a WISP as of the deadline but it was missing some required information. Questioned Costs: N/A Cause: There was not a formal process in place to review against all the new GLBA requirements to ensure compliance.Effect: Student personal information could be vulnerable. Repeat Finding: No Recommendation: We recommend that the College review the updated GLBA requirements and ensure their Written Information Security Program (WISP) includes all required elements. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-001
Criteria or Specific Requirement: The Gramm-Leach Bliley Act (GLBA) requires financial institutions to explain their information-sharing practices to their customers and to safeguard sensitive data (16 CFR 314). The regulation states that the college must designate a qualified individual responsible for overseeing and implementing your information security program and enforcing your information security program. (16 CFR 314.4(a)). The entity shall have a Written Information Security Program (WISP) that outlines the design and implementation of the risk assessment procedures. (16 CFR 314.4(b)). At a minimum, the institution’s written information security program must address the implementation of the minimum safeguards identified in 16 CFR 314.4(c)(1) through (8) including: Assess apps developed by the institution. In addition, the written security program provides for the institution to regularly test or otherwise monitor the effectiveness of the safeguards it has implemented (16 CFR 314.4(d)). Condition: The college was missing all the requirements from the Gramm-Leach-Bliley Act except for having a Written Information Security Program, approval by appropriate individual, implement and periodically review access controls, and proper disposal of customer information securely. These GLBA requirements were applicable beginning on June 9, 2023, and there were multiple elements missing from their Written Information Security Program. Context: The institution has been in compliance with previous iterations of GLBA compliance. The Written Information Security Program (WISP) which was required as of June 9, 2023 had missing elements. Some controls were in place whereas others were not. They did, however, have a WISP as of the deadline but it was missing some required information. Questioned Costs: N/A Cause: There was not a formal process in place to review against all the new GLBA requirements to ensure compliance.Effect: Student personal information could be vulnerable. Repeat Finding: No Recommendation: We recommend that the College review the updated GLBA requirements and ensure their Written Information Security Program (WISP) includes all required elements. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-001
Criteria or Specific Requirement: The Gramm-Leach Bliley Act (GLBA) requires financial institutions to explain their information-sharing practices to their customers and to safeguard sensitive data (16 CFR 314). The regulation states that the college must designate a qualified individual responsible for overseeing and implementing your information security program and enforcing your information security program. (16 CFR 314.4(a)). The entity shall have a Written Information Security Program (WISP) that outlines the design and implementation of the risk assessment procedures. (16 CFR 314.4(b)). At a minimum, the institution’s written information security program must address the implementation of the minimum safeguards identified in 16 CFR 314.4(c)(1) through (8) including: Assess apps developed by the institution. In addition, the written security program provides for the institution to regularly test or otherwise monitor the effectiveness of the safeguards it has implemented (16 CFR 314.4(d)). Condition: The college was missing all the requirements from the Gramm-Leach-Bliley Act except for having a Written Information Security Program, approval by appropriate individual, implement and periodically review access controls, and proper disposal of customer information securely. These GLBA requirements were applicable beginning on June 9, 2023, and there were multiple elements missing from their Written Information Security Program. Context: The institution has been in compliance with previous iterations of GLBA compliance. The Written Information Security Program (WISP) which was required as of June 9, 2023 had missing elements. Some controls were in place whereas others were not. They did, however, have a WISP as of the deadline but it was missing some required information. Questioned Costs: N/A Cause: There was not a formal process in place to review against all the new GLBA requirements to ensure compliance.Effect: Student personal information could be vulnerable. Repeat Finding: No Recommendation: We recommend that the College review the updated GLBA requirements and ensure their Written Information Security Program (WISP) includes all required elements. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-001
Criteria or Specific Requirement: The Gramm-Leach Bliley Act (GLBA) requires financial institutions to explain their information-sharing practices to their customers and to safeguard sensitive data (16 CFR 314). The regulation states that the college must designate a qualified individual responsible for overseeing and implementing your information security program and enforcing your information security program. (16 CFR 314.4(a)). The entity shall have a Written Information Security Program (WISP) that outlines the design and implementation of the risk assessment procedures. (16 CFR 314.4(b)). At a minimum, the institution’s written information security program must address the implementation of the minimum safeguards identified in 16 CFR 314.4(c)(1) through (8) including: Assess apps developed by the institution. In addition, the written security program provides for the institution to regularly test or otherwise monitor the effectiveness of the safeguards it has implemented (16 CFR 314.4(d)). Condition: The college was missing all the requirements from the Gramm-Leach-Bliley Act except for having a Written Information Security Program, approval by appropriate individual, implement and periodically review access controls, and proper disposal of customer information securely. These GLBA requirements were applicable beginning on June 9, 2023, and there were multiple elements missing from their Written Information Security Program. Context: The institution has been in compliance with previous iterations of GLBA compliance. The Written Information Security Program (WISP) which was required as of June 9, 2023 had missing elements. Some controls were in place whereas others were not. They did, however, have a WISP as of the deadline but it was missing some required information. Questioned Costs: N/A Cause: There was not a formal process in place to review against all the new GLBA requirements to ensure compliance.Effect: Student personal information could be vulnerable. Repeat Finding: No Recommendation: We recommend that the College review the updated GLBA requirements and ensure their Written Information Security Program (WISP) includes all required elements. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-002
Criteria or Specific Requirement: Per Uniform Guidance 2 CFR 200.303, nonfederal entities receiving federal awards are required to establish and maintain internal controls designed to reasonably ensure compliance with federal laws, regulations and program compliance requirements. Condition: The college did not have a formal review process, as the student financial aid director was both preparing and reviewing the calculation. Context: Out of the forty sampled calculations, all forty lacked evidence of a formal review. Questioned Costs: N/A Cause: Lack of formal review of last date of attendance for online students including Canvas activity logs. Effect: No formal review could allow errors in the calculation and errors in the timing of payments. Repeat Finding: No Recommendation: We recommend someone other than the preparer of Return of Title IV calculations review said calculations. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-002
Criteria or Specific Requirement: Per Uniform Guidance 2 CFR 200.303, nonfederal entities receiving federal awards are required to establish and maintain internal controls designed to reasonably ensure compliance with federal laws, regulations and program compliance requirements. Condition: The college did not have a formal review process, as the student financial aid director was both preparing and reviewing the calculation. Context: Out of the forty sampled calculations, all forty lacked evidence of a formal review. Questioned Costs: N/A Cause: Lack of formal review of last date of attendance for online students including Canvas activity logs. Effect: No formal review could allow errors in the calculation and errors in the timing of payments. Repeat Finding: No Recommendation: We recommend someone other than the preparer of Return of Title IV calculations review said calculations. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-002
Criteria or Specific Requirement: Per Uniform Guidance 2 CFR 200.303, nonfederal entities receiving federal awards are required to establish and maintain internal controls designed to reasonably ensure compliance with federal laws, regulations and program compliance requirements. Condition: The college did not have a formal review process, as the student financial aid director was both preparing and reviewing the calculation. Context: Out of the forty sampled calculations, all forty lacked evidence of a formal review. Questioned Costs: N/A Cause: Lack of formal review of last date of attendance for online students including Canvas activity logs. Effect: No formal review could allow errors in the calculation and errors in the timing of payments. Repeat Finding: No Recommendation: We recommend someone other than the preparer of Return of Title IV calculations review said calculations. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.
Finding 2023-002
Criteria or Specific Requirement: Per Uniform Guidance 2 CFR 200.303, nonfederal entities receiving federal awards are required to establish and maintain internal controls designed to reasonably ensure compliance with federal laws, regulations and program compliance requirements. Condition: The college did not have a formal review process, as the student financial aid director was both preparing and reviewing the calculation. Context: Out of the forty sampled calculations, all forty lacked evidence of a formal review. Questioned Costs: N/A Cause: Lack of formal review of last date of attendance for online students including Canvas activity logs. Effect: No formal review could allow errors in the calculation and errors in the timing of payments. Repeat Finding: No Recommendation: We recommend someone other than the preparer of Return of Title IV calculations review said calculations. Views of Responsible Officials: Management agrees with the finding and has developed a plan to correct the finding.