Unimplemented Recommendations

Review existing financial advisory and consulting services Receivership Basic Ordering Agreements and take appropriate steps to establish an adequate supply of contractors with appropriate resources to address the FDIC’s future procurement needs in the event of financial institution failures and financial crises.

Establish a process to periodically review financial advisory and consulting services Receivership Basic Ordering Agreements to ensure sufficient contractor resources are available to meet the FDIC’s mission-critical needs.

Establish an upfront pricing framework or advanced pricing within all financial advisory and consulting service Receivership Basic Ordering Agreements.

Establish an emergency response acquisition team with appropriate FDIC personnel and ensure that a dedicated team of key individuals (including Technical Monitors) is available to carry out emergency procurement procedures.

Develop and implement periodic emergency procurement testing exercises for appropriate FDIC employees.

Establish a process for emergency procurements to document and maintain analysis, decisions, and commitments, to include, at a minimum, those identified in this report.

Develop and implement a process to analyze and determine when documented deliverables should be required on emergency service contracts to ensure contract personnel have the ability and resources to oversee contractor performance.

Perform retrospective reviews when the FDIC conducts or tests emergency acquisition procedures.

Review the work performed and information used by the four non-U.S. citizens and take appropriate action.

Provide training and guidance to its Executive Management and personnel reinforcing their roles and responsibilities in carrying out and overseeing the FDIC’s emergency acquisition procedures. This training and guidance should include, at a minimum, the following:
• understanding roles and responsibilities;
• initiating and performing emergency and expedited procedures; and
• initiating, modifying, approving, and submitting requirements packages.

The Chairman and FDIC Board of Directors set a tone at the top where all FDIC executives model the FDIC’s core values and principles through their behaviors and attitudes. This should be assessed and measured regularly by climate surveys with appropriate actions taken.

Establish and implement an agency-wide resource committee to monitor and report on corporate resource needs, including existing recruiting strategies, staffing levels, and information technology resources in order to strengthen resource planning and response capabilities for large regional bank resolutions.

Establish a practice of regular interdivisional participation in the development and review of the Regional Resolution Framework procedural documents, as appropriate.

Develop and implement a resolution readiness training program for key personnel responsible for executing the Regional Resolution Framework and related procedures. The training program should address awareness, plan-specific, role-based, and functional training.

Establish and implement a process of periodic interdivisional exercises of large regional bank resolution activities, to test the ongoing effectiveness of agency-wide response and coordination.

Identify from after-action review documents the recommendations that are the most critical for large regional bank resolutions and prioritize them with formal tracking and monitoring.

Establish a plan for ensuring that CISR regularly conducts internal reviews of its large regional bank resolution planning activities, as appropriate based on risk.

Revise examiner guidance to ensure supervisory personnel consider significant delays in required financial filings and any associated perspectives of external auditors when assessing UFIRS ratings.

Revise the FDIC’s Internal Formal and Informal Actions Procedures to include specific process and documentation requirements related to circumstances in which an approved formal enforcement action is replaced with a less severe action.

Develop detailed guidance that clarifies what information should be considered when assessing whether it is appropriate to approve a brokered deposit waiver for “Adequately Capitalized” IDIs.

Enforce existing policies and procedures to consistently perform reviews and analyze system audit records, and document and maintain those reviews and analysis for privileged users and actions taken on [redacted] devices in accordance with FDIC policy.

Emphasize to examiners in the form of training and other internal communications the requirements around timely escalation of supervisory concerns in line with the FDIC’s
forward-looking approach to supervision.

Reiterate to examiners requirements around prompt communication of risk and supervisory results to bank management, emphasizing the significance of prompt communication over linear or chronological issuance of supervisory products.

Reevaluate the FDIC's strategy to attract, retain, and allocate staffing, including how to enhance the supervision of large, complex financial institutions.

a. This evaluation should be documented and submitted to the FDIC’s Chairman for review and approval.

Implement target metrics and monitor variances for key supervisory outputs consistent with requirements contained in CEP Procedures, such as:

a. Supervisory Plan percentage completed to actual percentage completed to identify and take timely corrective action when examination teams are not on

track to achieve objectives detailed in annual supervisory plans.

b. Target review start date to actual review start date to identify and take timely corrective action when examination teams are not on track to achieve objectives

detailed in annual supervisory plans.

c. Number of days elapsed between target review start date and exit meeting to expectation to identify and take corrective action when reviews are not being completed and informal results communicated to the bank timely.

d. Number of days elapsed between target review start date and issuance of Supervisory Letter to expectation to identify and take corrective action when the results of reviews are not being completed and results communicated to the bank timely.

e. Number of days elapsed between year-end and ROE issuance to expectation to identify and take corrective action when ROEs are not being completed and

results communicated to the bank timely.

f. Number of days elapsed between quarter-end and issuance of Ongoing Monitoring Reports to expectations to identify and take corrective action when

ongoing monitoring is not being completed timely.

Develop and consistently maintain comprehensive Orderly Liquidation Authority policies and procedures for systemically important financial companies, to include:

a. Tier I policies and procedures for framework-level activities.

b. Tier II policies and procedures for operational process-level activities.

c. Tier III policies and procedures for institution-specific planning activities.

d. Other operational program policies and procedures for Orderly Liquidation Authority resolution planning activities.

Apply Tier III policies and procedures to develop and consistently maintain institution-specific resolution planning documents for all nonbank financial companies and financial market utilities designated by the Financial Stability Oversight Council as systemically important.

Establish a process for identifying and preparing staff who would be responsible for key Orderly Liquidation Authority resolution governance roles, such as the Executive Advisory and Oversight Group, the Tactical Project Manager, and the Onsite Liaison, to include:

a. Completing planned guidance and/or preparing a charter that will define in more detail the key resolution governance roles and responsibilities.

b. Maintaining a roster of potential staff for key resolution governance roles.

c. Informing potential staff for the key resolution governance roles of their respective Orderly Liquidation Authority resolution responsibilities.

Ensure the completed Tier I and II policies, procedures, and related guidance documents fully define the applicable Orderly Liquidation Authority roles and responsibilities of each FDIC Division and Office.

Ensure the FDIC establishes a timeframe to obtain, and then obtains, the staff resources needed to mature the Orderly Liquidation Authority resolution planning program.

Conduct and document a representative survey or other assessment of the Orderly Liquidation Authority-related skill sets existing or needed within the Division of Complex Institution Supervision and Resolution and ensure the Division’s Professional Development Plan incorporates the results.

Regularly conduct and document Orderly Liquidation Authority general and functional training and ensure that training is clearly linked to the key components of the systemic resolution framework and processes.

Develop an FDIC readiness plan for a financial crisis, to include a scenario that involves the resolution of multiple concurrent failures of systemically important financial companies.

Implement process improvements to ensure prompt notification and removal of user network accounts on or before the user’s separation date.

Develop clear guidance on running business reports out of Community Affairs Reporting and Events System, including the use of filters.

Ensure that all data sets within the FDIC that contain relevant threat and vulnerability information are assessed and natural language processing or alternative technological capabilities are considered for enhancing threat and vulnerability information sharing operations.

Develop a strategy to periodically assess workload imbalances and implement a strategy to address such imbalances among Oversight Managers in the FDIC CIOO.