Audit of Controls Around Payment Processes: Program Payments – Phase 1

Official title: Audit of Controls Around Payment Processes: Program Payments – Phase 1

On this page

Alternate formats

Audit of Controls Around Payment Processes: Program Payments - Phase 1 [PDF - 664 KB]

Large print, braille, MP3 (audio), e-text and DAISY formats are available on demand by ordering online or calling 1 800 O-Canada (1-800-622-6232). If you use a teletypewriter (TTY), call 1-800-926-9105.

List of abbreviations

ADM
Assistant Deputy Minister
BDM
Benefits Delivery Modernization
BISB
Benefits and Integrated Services Branch
CERB
Canada Emergency Response Benefit
CFO
Chief Financial Officer
CFOB
Chief Financial Officer Branch
CPP
Canada Pension Plan
CRA
Canada Revenue Agency
CRB
Canada Recovery Benefit
EI
Employment Insurance
ERB
Emergency Response Benefit
ESDC
Employment and Social Development Canada
FAA
Financial Administration Act
GIS
Guaranteed Income Supplement
ISAMS
Identity Services and Access Management Solution
ISB
Integrity Services Branch
MoU
Memorandum of Understanding
NHQ
National Headquarters
OAS
Old Age Security
OTP-PWD
One-Time Payment to Persons With Disabilities
OTP-Seniors
One-Time Payment for Seniors
ROE
Record of Employment
TB
Treasury Board
TBS
Treasury Board Secretariat

1. Background

Employment and Social Development Canada (ESDC) provides direct services and support to Canadians by delivering statutory programs. The Department must maintain reliable payment procedures and processes to ensure the accuracy of programs payments issued. The Emergency Response Benefit (ERB) delivered by the Department relied on the applicants' attestation of eligibility with limited pre-payment controls to allow benefits to be paid rapidly during the COVID-19 pandemic. The Phase 1 audit scope included payments issued by the 5 programs presented below:

1.1 Audit objectives

The objectives of the Phase 1 audit were to assess whether:

1.2 Audit scope

The scope of the Phase 1 audit included controls related to the processing of payments completed between April 1, 2020, and December 31, 2020, for the 5 programs. The audit scope also included quality assurance activities and monitoring of recipient records. See Appendix B for a description of the 5 programs.

1.3 Audit methodology

The audit was conducted remotely using the following methodologies which included, but were not limited to:

2. Audit findings

The results of the data analytics and file reviews completed on the payments processed during the audit period are presented below.

2.1 Reviewing applications and assessing eligibility

Recommendation

1. PROTECTED

Management response

PROTECTED

2.2 Processing program payments

Overpayments

2.3 Financial Administration Act approvals of payment processed

The FAA requires that Sections 32, 34 and 33 approvals be completed by officers with financial authorities before program payments are issued. FAA Section 32 is the commitment authority to ensure sufficient funds are available before issuing a program payment. FAA Section 34 is the authority to certify, before making a program payment, that the recipient is eligible to receive the program benefit. FAA Section 33 is the authority to release program payments.

Recommendation

2. The CFOB should identify existing quality assurance activities, assess whether they adequately support the FAA Section 33 account verification requirements, and document the Department’s updated approach.

Management response

Agreed. While the Department has a framework that outlines the quality assurance activities to support the FAA Section 33 account verification, a review of these activities and an update to the framework will be done to clearly identify all existing assurance activities that the Department has in place to support FAA section 33 of Program payments.

2.4 Memorandum of Understanding with the Canada Revenue Agency

3. Conclusion

Overall, the audit concluded that payments issued by the 5 programs assessed in the audit scope and the CRA CERB invoices received were processed in accordance with the requirements of applicable TB policies and directives as well as departmental policies and procedures.

PROTECTED

The audit found that the CFOB needs to identify and assess whether the quality assurance activities support the FAA Section 33 account verification requirements.

4. Statement of assurance

In our professional judgment, the audit team gathered and analysed sufficient and appropriate evidence to support the accuracy of conclusions found in this report. The audit team based these conclusions on observations and analyses at the time of the audit. These conclusions are applicable only for the Audit of Controls Around Payment Processes: Program and Plan Payments – Phase I. The audit team followed the Treasury Board Policy on Internal Audit and the International Standards for the Professional Practice of Internal Auditing.

Appendix A: Audit criteria assessment

2.1 EI, ERB and Simplified EI

Audit criteria Rating
Reviewing applications and assessing eligibility: It was expected that the Department has implemented controls to:
  • PROTECTED
  • PROTECTED
Processing payments: It was expected that the Department has implemented controls to:
  • Verify that FAA Sections 32, 33 and 34 approvals of program payments are performed by officers with proper financial authority delegations in accordance with the TB Directive on Delegation of Spending and Financial Authorities
  • Process and issue accurate payments and identify overpayments for recovery in a timely manner
  • Controlled, but should be strengthened; medium-risk exposure
Monitoring recipient records and payment processes: It was expected that the Department has implemented controls to:
  • Detect errors and prevent unauthorized access to program payment recipient records
  • Perform account verification activities as part of a risk-based quality assurance process that is based on a sound sampling and execution methodology
  • Controlled, but should be strengthened; medium-risk exposure

2.2 OAS, GIS and One-Time (tax-free) Payments for Seniors and Persons With Disabilities

Audit criteria Rating
Processing payments: It was expected that the Department has implemented controls to:
  • Verify that FAA Sections 32, 33 and 34 approvals of program payments are performed by officers with proper financial authority delegations in accordance with the TB Directive on Delegation of Spending and Financial Authorities
  • Process and issue accurate payments and identify overpayments for recovery in a timely manner
  • Controlled, but should be strengthened; medium-risk exposure
Monitoring recipient records and payment processes: It was expected that the Department has implemented controls to:
  • Detect errors and prevent unauthorized access to program payment recipient records
  • Perform account verification activities as part of a risk-based quality assurance process that is based on a sound sampling and execution methodology
  • Controlled, but should be strengthened; medium-risk exposure

2.3 CERB and CRB

Audit Criteria Rating
Processing payments to CRA: It was expected that the Department has implemented controls to approve and accurately record invoices received from CRA for CERB and CRB payments administered on behalf of the Department
  • Sufficiently controlled; low-risk exposure
Monitoring recipient records and CRA MoU administration: It was expected that the Department has implemented controls to obtain assurance that the CERB and CRB payments are processed in accordance with the MoU with CRA
  • Sufficiently controlled; low-risk exposure

Appendix B: Background

Context

Employment and Social Development Canada (ESDC) provides direct services and support to Canadians during various phases of their lives by delivering programs. The payments provided by the 5 programs included in this audit report are briefly described below:

Page details

Date modified: