Professional Documents
Culture Documents
Risk Assessment and Gap Analysis For Programs Receiving Funds From The Arra
Risk Assessment and Gap Analysis For Programs Receiving Funds From The Arra
The American Recovery and Reinvestment Act of 2009 (ARRA) was signed into law on February 17, 2009. The legislation seeks to stimulate the economy by preserving and
creating jobs, providing tax cuts and credits to working families and businesses, expanding renewable energy and to improve the nation’s infrastructure. The President has
committed himself and the Federal government to provide the public with unprecedented levels of transparency and accountability relating to how ARRA funds are spent and the
outcomes that are achieved. The Office of Management and Budget (OMB) issued initial implementation guidance for ARRA which provides an initial set of government-wide
requirements and guidelines that Federal agencies must immediately implement, plan to implement, in order to meet ARRA objectives. One of these requirements directs agencies
to perform a risk assessment that will identify risks that could hinder the agency’s ability to fulfill the ARRA accountability objectives. These accountability objectives include:
• Funds are awarded and distributed in a prompt, fair and reasonable manner;
• The recipients and uses of all funds are transparent to the public, and the public benefits of these funds are reported clearly, accurately, and in a timely manner;
• Funds are used for authorized purposes and instances of fraud, waste, error, and abuse are mitigated;
• Projects funded under this Act avoid unnecessary delays and cost overruns; and
• Program goals are achieved, including specific program outcomes and improved results on broader economic indicators.
Meeting these objectives will require sustained focus by managers throughout the Federal government, particularly in planning, awarding, managing, and overseeing contracts and
grants. The attached risk assessment is intended to assess risk and internal controls specifically tailored to the requirements of the ARRA and is Step 1 of the Risk Management
Plan.
The risk assessment contains a series of questions related to each identified area listed below:
* General
* Reporting
* Human Capital
* Grant
* Procurement
* Budget/Financial
* IT Systems
* Audits and Investigations
Each tab of the ARRA Risk Assessment Questionnaire must be filled out (except for Sample Tab). Each question listed must be answered in paragraph format to assess the existing
controls process and must include a gap analysis and description - please see the Sample Tab for an example of how to complete the form.
Department of Defense
Risk Assessment and Gap Analysis --- American Recovery and Reinvestment Act (ARRA) of 2009
General Information
Before beginning the questionnaire, please provide the following information. Note: all fields must be completed.
DoD Component:
Title:
Phone Number:
Email Address:
Page 2 of 11
RISK ASSESSMENT AND GAP ANALYSIS FOR PROGRAMS RECEIVING FUNDS FROM THE ARRA
GAP
ATTRIBUTE CONTROL ASSESSMENT (EXISTING CONTROL IN PLACE) / GAP ASSESSMENT
ARRA INTERNAL CONTROL POINT GET WELL PLAN
REFERENCE DESCRIPTION (IS THERE A
GAP - Y/N)
GAP
CONTROL ASSESSMENT (EXISTING
ATTRIBUTE ASSESSMENT
ARRA INTERNAL CONTROL CONTROL IN PLACE) / GAP GET WELL PLAN
REFERENCE (IS THERE A
DESCRIPTION
GAP - Y/N)
GAP
ATTRIBUTE CONTROL ASSESSMENT (EXISTING CONTROL IN ASSESSMENT
Risk GET WELL PLAN
REFERENCE PLACE) / GAP DESCRIPTION (IS THERE A
GAP - Y/N)
R.5
Is there a process in place to ensure the data
reported under ARRA accurate and complete?
R.8
Are reports issued on the effectiveness of risk
management strategies and tactics timely?
R.9
Has your risk management plan been approved
by Department-level personnel?
R.10
Will your risk management plan be updated and
monitored periodically?
Does my organization have reporting
mechanisms in place to collect the required data
R.11
from recipients to meet ARRA transparency
requirements?
GAP
ATTRIBUTE CONTROL ASSESSMENT (EXISTING CONTROL IN ASSESSMENT
ARRA INTERNAL CONTROL GET WELL PLAN
REFERENCE PLACE) / GAP DESCRIPTION (IS THERE A
GAP - Y/N)
GAP
ATTRIBUTE CONTROL ASSESSMENT (EXISTING CONTROL IN ASSESSMENT
ARRA INTERNAL CONTROL GET WELL PLAN
REFERENCE PLACE) / GAP DESCRIPTION (IS THERE A
GAP - Y/N)
GT.2
Are funds used for authorized purposes and instances of fraud,
waste, error, and abuse minimized and/or mitigated?
GT.3
Have projects funded under ARRA avoided unnecessary delays and
cost overruns?
GT.5
Is there a strategy to evaluate the credibility and completeness of
cost and schedule estimates?
GAP
ATTRIBUTE CONTROL ASSESSMENT (EXISTING CONTROL IN ASSESSMENT
ARRA INTERNAL CONTROL GET WELL PLAN
REFERENCE PLACE) / GAP DESCRIPTION (IS THERE A
GAP - Y/N)
Are funds used for authorized purposes and the potential for fraud,
P.4
waste, error, and abuse minimized and/or mitigated?
P.5
Do projects funded under ARRA avoid unnecessary delays and cost
overruns?
GAP
ATTRIBUTE CONTROL ASSESSMENT (EXISTING CONTROL IN ASSESSMENT
ARRA INTERNAL CONTROL GET WELL PLAN
REFERENCE PLACE) / GAP DESCRIPTION (IS THERE A
GAP - Y/N)
F.1
Has my organization established separate Treasury Appropriation Fund
Symbols (TAFS) to ensure ARRA funds are clearly distinguishable?
Are there controls in place to ensure that ARRA funds are not commingled
F.2
with other agency funds?
Has my organization identified the need for and risks associated with new
F.4
processes established for ARRA?
GAP
ATTRIBUTE CONTROL ASSESSMENT (EXISTING CONTROL IN ASSESSMENT
Risks GET WELL PLAN
REFERENCE PLACE) / GAP DESCRIPTION (IS THERE A
GAP - Y/N)
S.1
Are financial and operational systems configured to manage and
control recovery funds?
GAP
ATTRIBUTE CONTROL ASSESSMENT (EXISTING CONTROL IN ASSESSMENT
Risks GET WELL PLAN
REFERENCE PLACE) / GAP DESCRIPTION (IS THERE A
GAP - Y/N)