2017 Maze Live

2. 2 9:00 - 9:25 Breakfast and Registration 9:25 - 9:30 Welcome and Introduction 9:30 - 10:30 Single Audit Update and Common Findings 10:30 - 11:30 Getting Ready for GASB 74 and GASB 75 Implementation (Mary Beth Redding – Bartel Associates) 11:30 - 12:30 Lunch 12:30 - 1:30 Municipal Accounting Threats and Revenue Opportunities (Mark Moses - Regional Government Services) 1:30 - 2:30 GASB 74 and 75 – Preparing for Implementation, Disclosure, and the Audit 2:30 - 3:00 Snack Break 3:00 - 4:00 GASB Update 4:00 - 5:00 Cyber Security Update for Local Governments 5:00 - 5:15 Open Questions / Wrap Up

6. 6 ❖Uniform Guidance ❖2017 Compliance Supplement Status ❖Grant Agreement Dates ❖Single Audit Threshold ❖Type A/B Threshold ❖Indirect Costs ❖Compensation/Salary ❖Schedule Of Expenditures Of Federal Awards (SEFA) – Auditee Responsibilities

7. 7 ❖Internal Control ❖Subrecipient Monitoring Documentation ❖Procurement Standard ❖State Controller’s Office Reporting Package ❖Single Audit Report and Common Findings ❖Additional Resources

9. 9 Web-link: http://www.ecfr.gov/cgi-bin/text- idx?tpl=/ecfrbrowse/Title02/2cfr200_main_02.tpl

10. 10

11. 11

12. 12

13. 13

14. 14

15. 15

16. 16

17. 17

18. 18 Tip: As an auditee, utilize this document to achieve the goal of an unmodified audit report with no findings on compliance.

19. 19

20. 20

21. 21

22. 22 SOURCE: HTTP://WWW.ECFR.GOV/ AND SEARCH TITLE 2 CHAPTER II PART 200 PDF VERSION: HTTP://WWW.GPO.GOV/FDSYS/PKG/FR-2013-12-26/PDF/2013-30465.PDF

23. 23

24. 24

25. EFFECTIVE FISCAL YEAR ENDING JUNE 30, 2016 (Calendar Year End December 31, 2015)

26. 26

27. 27

28. 28

29. 29

30. 30

31. 31

32. 32

33. 33

34. 34

35. 35

36. 36 Schedule of Expenditures of Federal Awards (SEFA)

37. 37 Schedule of Expenditures of Federal Awards (SEFA)

38. 38 Federal Grantor/Pass Through Grantor/Program Title Federal CFDA Number Pass Through Entity Identifying Number Federal Expenditures Expenditures to Subrecipients Department of Education Direct Program – Title I Grants to Local Educational Agencies 84.010 N/A $1,000,000 $800,000

39. 39 Notes to the SEFA

40. 40

41. 41  Internal Controls – a process implemented by a non-Federal entity, designed to provide reasonable assurance regarding the achievement of objectives in the following (2 CFR Section 200.61): a) Effectiveness and efficiency of operations b) Reliability of reporting for internal and external use; and c) Compliance with applicable law and regulations

42. 42

43. 43

44. 44

45. 45

46. 46 (Tip – use this as a checklist)

47. 47

48. 48

49. 49

50. 50

51. 51  Indirect cost rate for the federal award, including if de minimis rate is charged

52. 52

53. 53

54. 54

55. 55

56. 56 https://www.acquisition.gov/sites/default/files/current/far/html/Subpart%202_1.html

57. 57

58. 58

59. 59

60. 60

61. 61

62. 62

63. 63

64. 64

65. 65

66. 66

67. 67

68. 68

69. 69

70. 70

71. 71

72. 72

73. 73

74. 74

75. 75

76. 76 https://www.whitehouse.gov/omb/grants_docs

77. 77 https://cfo.gov/wp-content/uploads/2014/12/Agency-Exceptions.pdf

78. 78

79. 79

80. 80

81. 81

82. 82

83. 83

84. 84

85. 85

86. 86

87. 87

88. 88

89. 89

90. 90

91. 91 • Valuation (Actuarial) Date: Date TOL is measured. (Every 2 years AND no more than 30 months +1 day prior to FYE.) TOL rolled forward to Measurement Date. • Measurement Date: Date NOL is measured. Look back no more than 12 months from FYE. MD is typically OPEB plan’s prior year end. Valuation Date June 30, 2015 Employer Fiscal Year End June 30, 2018 Plan Year End (Measurement Date) June 30, 2017June 30, 2016

92. 92 data used by actuaries to calculate OPEB amounts

93. 93

94. 94

95. 95

96. 96

97. 97

98. 98

99. 99

100. 100

101. 101

102. 102

103. 103  Differences between expected and actual experience

104. 104

105. 105

106. 106

107. 107

108. 108

109. 109

110. 110  Healthcare Cost Trend Rate Sensitivity

111. 111  Discount Rate Sensitivity

112. 112

113. 113 • Change in Deferred Inflows • Actuarial • Employer-calculated (cost-sharing)

114. 114

115. 115

116. 116

117. 117

118. 118

119. 119

120. 120  CEP = The total payroll of EEs that are provided with OPEB through the OPEB plan.

121. 121

122. 122

123. 123

124. 124

125. 125

126. 126

127. 127 Changes to the GASB 68 Accounting Valuations

128. 128  Discount rate – no changes in assumptions for MD2016. However, include upcoming change as a subsequent event disclosure.

129. 129

130. 130

131. 131

132. 132

133. 133

134. 134 http://www.gasb.org/jsp/GASB/Page/GASBSectionPage&cid=117616004 2391 https://www.calpers.ca.gov/page/employers/benefit-programs/cerbt https://www.calpers.ca.gov/page/employers/actuarial-services/gasb

135. 135

136. 136

137. 137

138. 138

139. 139

140. 140

141. 141

142. 142

143. 143

144. 144

145. 145 GASB 73 - Accounting and Reporting for Pension Plans not within the scope of GASB 68 and Amendments to Certain Provisions of GASB 67 and 68

146. 146 GASB 73 • Applies to pension plans not within the scope of GASB 67 and 68, with certain modifications • Plans that are not held in trust do not have any assets accumulated to offset the TPL and there are no separately issued plan financial statements • Requires that footnote information similar to GASB 67 and 68 be included • Any assets held to pay pension benefits should be reported as assets of the employer

147. 147 GASB 73 • Discount rate – yield or index rate for 20-year tax-exempt bonds with average rating of AA/Aa or higher • Clarifies certain provisions of GASB 67 and 68 to provide that: • Information about investment-related factors that you can control • Information about external, economic factors should not be presented (for example, changes in market prices)

148. 148 GASB 77 - Tax Abatement Disclosures Definition

149. 149 GASB 77 promise to forgo tax specific action

150. 150 GASB 77 • Tax abatements are widely used by state and local governments to encourage economic development • Note disclosures required: • Distinguish between government’s OWN agreements and agreements by OTHER GOVERNMENTS that affect the reporting entity • Can be individually disclosed or aggregated • Organized by abatement type or program (e.g. income tax vs. property tax incentive) • Disclosures required from the date of agreement and should continue through the abatement expiration date

151. 151 GASB 77

152. 152  Not a State or Local Government Pension Plan  Provide benefits to both Government and Non Government employees  No identifiable predominate Government employer

153. 153 GASB 80 - Blending Requirement for Certain Component Units Effective Date: June 30, 2017

154. 154 GASB 82 - Pension Issues Effective Date: June 30, 2017

155. 155

156. 156

157. 157

158. 158

159. 159

160. 160

161. 161

162. 162

163. 163

164. 164

165. 165 DEFERRED INFLOW

166. 166

167. 167

168. 168

169. 169

170. 170 1. Securing the IT environment 2. Managing and retaining data 3. Managing IT risk and compliance 4. Ensuring privacy 6. Managing System Implementations 7. Preventing and responding to computer fraud 10. Managing vendors and service providers http://www.aicpa.org/InterestAreas/InformationTechnology/Resources/TopTechnologyInitiatives/Pages/2013TTI.aspx Orange text are all PCI related

171. 171

172. 172

173. 173

174. 174 Determine Objectives Assess Risk Apply Controls Assess Controls Monitor

175. 175 Source: Internal Control Guidelines California Local Agencies 2015 SCO

176. 176

177. 177

178. 178

179. 179 Categorize Select Implement Assess Authorize Monitor

183. 183 the controls are implemented correctly, operating as intended, and producing the desired outcome Categorize Select Implement Assess Authorize Monitor

186. 186

187. 187 “Ransomware is a type of malware installed on a computer or server that encrypts the files, making them inaccessible until a specified ransom is paid. Ransomware is typically installed when a user clicks on a malicious link, opens a file in an e-mail that installs the malware, or through drive-by downloads (which does not require user-initiation) from a compromised Web site.” Source FBI

188. 188 • Local Government

189. 189

190. 190

191. 191

192. 192 You have been hit. Now what?

193. 193

194. 194 194

195. 195 Mission Business Unit IT Security Audit

196. 196

197. 197

198. 198 http://www.mazeassociates.com/maze-live-survey/

2017 Maze Live

Maze & Associates

2017 Maze Live