Single Audit
In the United States, the Single Audit, Subpart F of the OMB Uniform Guidance, is a rigorous, organization-wide audit or examination of an entity that expends $750,000 or more of federal assistance received for its operations. Usually performed annually, the Single Audit's objective is to provide assurance to the US federal government as to the management and use of such funds by recipients such as states, cities, universities, non-profit organizations, and Indian Tribes. The audit is typically performed by an independent certified public accountant and encompasses both financial and compliance components. The Single Audits must be submitted to the Federal Audit Clearinghouse along with a data collection form, Form SF-SAC.
History
Before implementing the Single Audit, the federal government relied on numerous audits carried out on individual federally funded programs to ensure these funds were spent properly. Because the government had numerous agencies awarding hundreds of different programs, the task of auditing all programs became increasingly difficult and time-consuming. To improve this situation, the Single Audit Act of 1984 standardized audit requirements for States, local governments, and Indian tribal governments that receive and use federal financial assistance programs.In 1985, the United States Office of Management and Budget issued OMB Circular A-128, "Audits of State and Local Governments," to help recipients and auditors implement the new Single Audit. In 1990, OMB administratively extended the Single Audit process to non-profit organizations by issuing OMB Circular A-133, "Audits of Institutions of Higher Education and Other Non-Profit Organizations" which superseded OMB A-128. These new guides and provisions standardized the Single Audit in the United States to include all states, local governments, non-profit organizations, and institutions that receive federal funds from the US government. On December 26, 2013, OMB issued the Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards, which standardized compliance and audit requirements for government entities, non-profit organizations and institutions of higher education. These consolidated requirements are codified in Title 2 of the Code of Federal Regulations, part 200 with the single audit requirements in Subpart F of this section. The terms 2 CFR 200 and Uniform Guidance can be used interchangeably.
Purpose and components
The federal government provides an extensive array of federal assistance to recipients reaching over $400 billion annually. This assistance is provided through thousands of individual grants and awards annually for the purpose of benefiting the general public in the areas of education, health, public safety, welfare, and public works, among others. However, as a condition of receiving this assistance recipients must comply with applicable federal and state laws and regulations, as well as any particular provisions tied with the specific assistance. The Single Audit provides the Federal government with assurance that these recipients comply with such directives by having an independent external source report on such compliance. However, it only applies to state, local government, and nonprofit recipients that expend $750,000 or more of such assistance in one year.A Single Audit encompasses an examination of a recipient's financial records, financial statements, federal award transactions and expenditures, the general management of its operations, internal control systems, and federal assistance it received during the audit period. The Single Audit is divided into two areas: Compliance and Financial.
The compliance component of a Single Audit covers the study and understanding as well as the testing and evaluation of the recipient with respect to federal assistance usage, operations and compliance with laws and regulations. The financial component is exactly like a financial audit of a non-federal entity which includes the audit of the financial statements and accompanying notes. Depending on the recipient, the Single Audit can be simple and straightforward, or it could be complex and troublesome. This is because there are millions of federal grants awarded each year to thousands of recipients, each with its own independent way of operating. Therefore, the Single Audit differs from recipient to recipient and from federal program to program.
For these reasons, the federal government requires auditors to perform the compliance audit of a recipient with a planning stage and an exam stage. During the first stage, or planning stage, the auditor must study the recipient, determine whether there is a high or low risk that the recipient does not comply with laws and regulations, identify federal programs, and evaluate such programs. The second stage, or exam or audit stage, is where the auditor actually audits the federal assistance and programs. The planning stage is considered an integral part of the Single Audit because it allows the auditor to design and perform the audit based on the qualities, characteristics and needs of the recipient to be audited.
Compliance audit: Planning stage
Low- or high-risk auditee
Before determining which federal programs to examine, the auditor must first determine, based on specific criteria, whether the recipient is a high-risk auditee or a low-risk auditee. A high-risk auditee is a recipient which has a high risk of not complying with federal laws and regulations, while a low-risk auditee is the exact opposite. The Uniform Guidance has set certain requirements a recipient must meet to be considered a low-risk auditee. This includes the following to be evaluated for each of the preceding two audit periods:- Single audits have been performed on an annual basis in prior years.
- The auditor's opinions on the financial statements and the Schedule of Federal Expenditures were unmodified.
- There are no material weaknesses identified.
- The auditor did not report a substantial doubt about the auditee's ability to continue as a going concern.
- None of the Federal programs had audit findings from any of the following in either of the preceding two audit periods in which they were classified as Type A programs:
- *Internal control deficiencies that were identified as material weaknesses in the auditor's report on internal control for major programs;
- *A modified opinion on a major program in the auditor's report on major programs; or
- *Known or likely questioned costs that exceeded five percent of the total Federal awards expended for a Type A program during the audit period.
This determination affects the entire Single Audit because the auditor adjusts the scope of the audit accordingly. Since the auditor must provide an opinion to the federal government on whether the recipient and its programs complied with laws and regulations, the auditor performs sufficient procedures to confirm the opinion is correct.
Identification of major programs
Step 1: Type A or Type B
To determine which federal programs to audit under the compliance audit, federal assistance expended by the recipient during one year is identified by federal program name, Federal agency and CFDA number. These federal expenditures are then combined to determine the total amount expended during the year. Any recipient whose total federal expenditures during a year equal or exceed $750,000 requires a Single Audit. If the recipient does not meet this threshold, a Single Audit is not required, although the recipient may elect to have a program-specific audit. Once this determination is performed, requires that federal programs be categorized in two groups: Type A programs and Type B programs.Type A program
A Type A program is any federal program within a recipient that meets the following criteria.- If total federal awards expended during the audit period are greater than or equal to $750,000 and less than or equal to $25million, then any program that expends more than $750,000 is Type A.
- If total federal awards expended during the audit period are greater than $25million and less than or equal to $100million, then any program that expends more than 3% of total federal awards is Type A.
- If total federal awards expended during the audit period are greater than $100million and less than or equal to $1billion, then any program that expends more than $3million is Type A.
- If total federal awards expended during the audit period are greater than $1billion and less than or equal to $10billion, then any program that expends more than 0.3% of total federal awards is Type A.
- If total federal awards expended during the audit period are greater than $10billion and less than or equal to $20billion, then any program that expends more than $30million is Type A.
- If total federal awards expended during the audit period are greater than $20billion, then any program that expends more than 0.15% of total federal awards is Type A.
Type B program
A Type B program is any single program which does not meet the Type A requirements.Examples
Example 1: The City of Example operates a Section 8 program, and expended $950,000 in Section 8 funds and $5,000,000 of total federal assistance during the year. Since this amount does not exceed $25,000,000, the Section 8 program is considered a Type A program because $950,000 exceeds the $750,000 threshold.Example 2: Using the same data in Example 1 with the exception that the City of Example now expended a total of $30,000,000 in federal assistance, the Section 8 program would meet the Type A threshold because $950,000 is greater than $30,000,000 x 3%.
Example 3: Using the same data in Example 1 with the exception that the City of Example now expended a total of $100,000,000 in federal assistance, the Section 8 program would not meet the Type A threshold because $950,000 is less than $3 million, and would be considered a Type B program.
Steps 2 and 3: Risk assessment
After determining which programs are Type A and Type B, the Uniform Guidance requires that the auditor study and understand the operations and internal controls of such programs within the entity, and perform and document a risk assessment based on such study to determine whether each program has either a high or low risk of not complying with laws and regulations. Auditor may consider numerous factors including current and prior audit experience, good or poor internal controls over Federal programs, many or no prior audit findings, continuous or lack of oversight exercised by the federal government over the recipient, evidence or knowledge of fraud, and the inherent risk of the Federal program.For a Type A program to be considered low risk according to, it must have been audited as a major program at least once in the past two years and must not have had:
- Material weaknesses in internal control
- A modified opinion in the audit report
- Known or likely questioned costs exceeding 5% of total federal award expenditures
In assessing the risk of Type B programs, auditors should use professional judgement and criteria established in the Uniform Guidance. According to, a minimum number of Type B programs must be identified as high risk, calculated as 25% of the number of low-risk Type A programs. In assessing risk, auditors are encouraged to use an approach that allows different programs to be identified as high risk over time. The auditor is not expected to perform risk assessments on smaller Type B programs with expenditures that do not exceed 25% of the Type A threshold determined in step 1. Type B programs which have a low risk of not complying are not required to be audited.
Step 4: Major program determination and percentage of coverage
High-risk Type A and high-risk Type B programs are considered major programs and must be audited. The auditor then totals all of the federal award expenditures for the identified major programs and divides by the total federal award expenditures for the entity as a whole. For low-risk auditees, major program expenditures as a percentage of total award expenditures must be at least 20%. For high-risk auditees, the required coverage percentage is increased to 40%. If the identified major programs do not meet the required coverage percentage, then the auditor must select additional programs to audit until the required coverage percentage is met.Compliance audit: exam stage
After the auditor determines which federal programs to audit, the auditor performs a compliance audit that scrutinizes operations of the program—examining files, documents, contracts, checks, etc. The auditor investigates, to some degree, transactions between the federal program and other parties. These functions are compared with the laws and regulations applicable to a program to see if they complied or not. The examination does not require observing every single document and every single process generated by the program, nevertheless the auditor is required to perform enough procedures to form an opinion on whether the program complied with laws and regulations.Due to the amount of federal regulations, the federal government has provided certain guides and literature to assist the auditor in the examination, which includes the OMB Compliance Supplement and the Compliance requirements:
OMB compliance supplement
The OMB Compliance Supplement is a large and extensive guide created by the OMB for Single Audits, and is considered the most important tool of both the auditor and the recipient when performing, or being subject to, a Single Audit. It was created following amendments in 1996 to the Single Audit Act and serves to identify existing important compliance requirements that the Federal Government expects to be considered as part of a Single Audit. Without it, auditors would need to research thousands of laws and regulations for each single program of a recipient to determine which compliance requirements are important to the Federal Government. For Single Audits, the Supplement replaces any agency audit guides and other audit requirement documents for individual Federal programs.Compliance requirements
Compliance requirements are series of directives provided by Federal agencies that summarize hundreds of laws and regulations applicable to federal assistance and are important to the successful management of such assistance. The OMB created 14 basic and standard compliance requirements for which recipients must always comply with when receiving and using federal assistance, and provided detailed explanations, discussions, and guidance about them in the OMB Compliance Supplement. These compliance requirements only serve as guidelines for compliance with the specific laws and regulations applicable to the assistance and their objectives are designed to be generic in nature, because of the amount of different federal programs provided by the government. For example, many federal programs have eligibility requirements for individuals or organizations to participate in such programs because they have been established by either laws, regulations, or contract provisions. However, while the criterion for determining eligibility varies from program to program, the objective of the Eligibility compliance requirement that "only eligible and qualified individuals or organizations participate" is consistent and universal across all federal assistance programs. This eligibility universal criteria is called the Eligibility compliance requirement.Financial audit
The Single Audit requires that a recipient prepare financial statements that reflect its financial position, results of operations or changes in net assets, and, where appropriate, cash flows for the fiscal year audited. The Single Audit also requires that a financial audit be performed on the recipient that includes the federal assistance operations as well as the non-federal assistance operations. Tests of transactions and account balances are performed to ensure that the information presented in the financial statements, and notes thereof, are presented fairly in all material respects in accordance with generally accepted accounting principles. Additionally, the recipient must prepare a Schedule of Expenditures of Federal Awards, which is supplementary information to the financial statements unique to recipients of federal assistance that details all the federal assistance expended by the recipient during the year, categorized by federal program. The auditor must then audit and report on this Schedule "in relation to" the financial statements as a whole.Data Collection Form and Reporting Package
After the Single Audit is concluded, the recipient prepares two documents: a "Data Collection Form" and a "Reporting Package". The data collection form, Form SF-SAC, is a standard form which is basically a summary of the Single Audit. It includes details of the auditor, a list of the federal programs audited, and a summary of any audit findings reported by the auditor. The Reporting Package includes all the auditor's final reports along with the recipient's financial statements. It includes:- Auditor's reports
- Management Discussion and Analysis – This serves as an introduction to the recipient's financial statements where the recipient's management discusses the results of operations and other financial information, offering insight and detailed description about the recipient itself.
- Recipient's financial statements – This contains the financial statements required by the Governmental Accounting Standards Board, which includes the Government-wide statements as well as the Fund Financial Statements.
- Recipient's notes to the financial statements – This includes any notes and disclosures for the financial statements as required by US Generally Accepted Accounting Principles.
- Supplemental Information – This section includes both financial and non-financial information relative to the recipient which is not covered in the MD&A or the financial statements and their respective notes.
- Schedule of Federal Award Expenditures – This document details all federal assistance expenditures made by the recipient during the audit period, categorized by the federal program and federal agency.
- Schedule of Findings and Questioned Costs – If the auditor finds situations where the recipient did not comply with laws and regulations, where internal controls are deficient, or a situation of illegal acts or fraud, the auditor is required to report such situations in this section, as well as any questioned costs. Questioned costs are amounts that the recipient expended, but which the auditor has determined that they were not permitted and must be returned to the federal government.
- Schedule of Prior Audit Findings – In this section, the auditor is required to follow up and report about the recipient's corrective action of any audit findings reported in prior years.
Extension
On March 19, 2020, the Office of Management and Budget issued a memo allowing certain extensions of deadlines because of the COVID-19 pandemic. For award recipients with fiscal year-ends through June 30, 2020, an agency is allowed to extend recipients' deadlines to complete and submit a Single Audit package by up to six months. For award recipients with fiscal year-ends between July 1 and September 30, 2020, an agency is allowed to extend recipients' deadlines to complete and submit a Single Audit package by up to three months.The extension may be given automatically, but recipients should still retain documentation of how the pandemic reduced its operational capacity and how the award was affected.
On June 18, 2020, the Office of Management and Budget issued a memo, stating that extensions are no longer allowed for organizations with 2020 year-ends because, "during the Coronavirus pandemic, many recipients learned the capabilities and are now getting the experience to perform the objectives of the Federal programs remotely with limited access to their physical office."
Auditor responsibility
The auditor is responsible for conducting the actual audit of the recipient in accordance with Generally Accepted Government Auditing Standards and using the guidance provided by the OMB Circular A-133 and its Compliance Supplement, all of which establish certain rules to follow during the Single Audit. The auditor must establish audit objectives that determine whether the recipient complied with laws and regulations. They must research the recipient's federal assistance awards and programs to determine applicability of specific laws and regulations. They must understand the recipient, its organization, operations, internal control systems, and ability to responsibly manage federal assistance. They must perform audit procedures to meet these audit objectives.The auditor must understand the recipient's internal control system to determine if the recipient has proper safeguards that help manage federal assistance responsibly. After obtaining sufficient knowledge of that system, the auditor must perform audit procedures to verify the recipient's internal control system works properly, and the recipient's federal program operations comply with laws and regulations.
As part of the Single Audit, the auditor must prepare and submit three individual reports to the recipient and to the federal government. The first report is an opinion, or a disclaimer thereof, on whether the recipient's financial statements are presented in conformity with US Generally Accepted Accounting Principles, identical to a financial audit's report on a non-recipient entity. The second report is about the status of internal controls relative to the financial statements and major programs. The third report is an opinion, or a disclaimer thereof, on the degree to which the recipient has complied with laws, regulations, and the terms and conditions of the federal assistance awards. Following the last two reports, if the Single Audit produced audit findings, the auditor must prepare the Schedule of Findings and Questioned Costs discussed earlier.
The auditor's judgment is necessary to determine which audit procedures are sufficient to achieve the audit objectives, and whether additional or alternative audit procedures are needed to achieve such objectives. The auditor is responsible for determining the nature, timing, and extent of the audit procedures necessary to meet the audit objectives.
Primary sources
- United States Office of Management and Budget , as revised on June 26, 2007.
- United States Office of Management and Budget
- United States Office of Management and Budget; Office of Federal Financial Management,
OMB circulars
- United States Office of Management and Budget
- United States Office of Management and Budget
- United States Office of Management and Budget
- United States Office of Management and Budget
- United States Office of Management and Budget
- United States Office of Management and Budget
Secondary sources
- ;
- ,
- ,
- Warren Ruppel, Miller Not-For-Profit Organization Audits With Single Audits: 2003–2004, Aspen Law & Business,
- Rhett D. Harrell, Local Government and Single Audits 2006, CCH,
- ; AICPA Audit Committee Toolkit: Non-profit Organizations; American Institute of Certified Public Accountants