Growing With Our Clients for 75 Years

2025 Employee Benefit Plan Updates

Key Updates for Your 2025 Employee Benefit Plan

Important Takeaways

  • There are significant updates in retirement plan regulations. Many of these changes are designed to enhance and protect retirement security.
  • The Department of Labor has highlighted the importance of audit quality for employee benefit plans. Firms conducting more audits tend to have fewer deficiencies.
  • Retirement plans are attractive targets for cybercriminals. It’s crucial to have a robust cybersecurity plan in place to protect participants’ personal data and assets.

 

Serving as a fiduciary on an employee benefit plan is an important responsibility. And with often-changing regulatory requirements, it can be challenging to stay on top of them all.

Learn some of the new regulations and insights you should know as a plan advisor.

Secure 2.0 Act update

The SECURE 2.0 Act of 2022 introduces significant changes to enhance and protect retirement security. Key provisions include:

  • Mandatory automatic 3% enrollment for new retirement plans
  • Increased starting age for required minimum distributions
  • Enhanced catch-up contributions
  • Matching contributions for student loan repayments instead of matching retirement plan contributions

Other new changes include increasing incentives and credits for small businesses to offer retirement plans, allowing 403(b) plan sponsors to join multiple employer and pooled employer plans, enhancing the saver’s credit, reducing excise tax penalties for failing to take RMDs, and establishing penalty-free withdrawals for domestic abuse victims and terminally ill individuals.

DOL focus on audit quality

In 2024, the Department of Labor (DOL) issued the results of its most recent audit quality study, which focused on the financial statement audits of employee benefit plans covered under the Employee Retirement Income Security Act (ERISA) for the 2020 filing year.

The study showed 30% of audits had at least one deficiency, an improvement from 39% in the previous study. Additionally, only 8% of audits had five or fewer deficiencies, compared to 48% previously. Most deficiencies were found in testing participant data and contributions.

The DOL found a strong link between the number of audits a firm performs and the quality of those audits. Firms conducting at least 25 audits annually had a major deficiency rate of 25%, while those with fewer than 25 audits had a rate of 55%. Firms with 100 or more audits had the lowest rate at 17%.

Audit standard changes

Auditing standards (SAS 143–145) are in effect. These changes are driven by updates in international accounting standards and observations from AICPA peer reviews. SAS 143 focuses on auditing accounting estimates, requiring auditors to assess inherent and control risks separately. This means auditors will need to understand the plan, system, and internal controls better to evaluate estimates accurately.

SAS 144 and 145 bring additional clarity and enhancements. SAS 144 addresses the use of specialists and pricing information, which may lead to more specialists being involved in audits of complex investments. SAS 145 updates the approach to understanding an entity and its environment, emphasizing IT risks and a holistic risk assessment. These standards aim to improve audit quality by modernizing and clarifying the auditing process.

SAS 143–145 already had a significant impact on audits as they have provided clarification with a focus to increase audit quality based on modernized auditing standards. After the release of these audit standards, the AICPA issued SAS 146, applicable for plan years beginning on or after December 31, 2025. W&D is helping clients prepare to comply with the new standard, which clarifies and strengthens the key elements of quality management at the engagement level.

New contribution limits

In November 2024, the IRS released the 2025 contribution and income limits for retirement accounts. These limits typically increase annually to reflect cost-of-living adjustments.

Cybersecurity

Retirement plans often hold millions of dollars or more in assets and maintain participants’ personal data, which can make them attractive targets for cybercriminals.

The DOL’s Employee Benefits Security Administration recommends a cybersecurity plan that includes, among other items, cybersecurity program and awareness training; internal or third-party audits of the plan’s cybersecurity system; and regular, documented reviews of users with administrative access to key IT systems.

Responsibilities of an ERISA fiduciary

Under ERISA, fiduciaries have a legal obligation to act in the plan’s best interests. To help fulfill your role successfully:

  • Regularly evaluate and assess the performance and fees of vendors and service providers to verify they meet obligations and align with plan objectives.
  • Monitor plan performance and benefits and follow the plan document.
  • Report and disclose all required information, including government forms and annual audited financial statements.
  • Keep comprehensive records of all plan-related activities and seek professional guidance if uncertain about any aspect of your duties.

Fee reasonableness

Fee reasonableness continues to be a key issue in plan lawsuits and fees continue to be in the spotlight. Consider conducting benchmarking studies internally or through an investment advisor.

Employee Benefit Plan Audit Questions?

Warady & Davis LLPs employee benefit plan audit team is here to help you navigate plan audit complexities to ensure you’re in compliance and upholding your fiduciary responsibilities.  Contact your W&D advisor at 847-267-9600 or [email protected].

Legal Notice: The materials communicated in this transmission are for informational purposes only and not for the purpose of providing accounting, legal or investment advice. You should contact your accountant or advisor to obtain advice with respect to any particular issue or problem. Use of and access to this Web site or any of the e-mail links contained within the site do not create an accountant-client relationship between Warady & Davis and the user or browser. You should not act upon any such information without first seeking qualified professional counsel on your specific matter. Any accounting, business or tax advice contained in this communication is not a substitute for a formal opinion, nor is it sufficient to avoid tax-related penalties. If desired, Warady & Davis would be pleased to perform the requisite research and provide you with a detailed written analysis. Such an engagement may be the subject of a separate engagement letter that would define the scope and limits of the desired consultation services.  © 2025 All Rights Reserved

 

SEARCH T.I.E. BLOG
Filter By

Categories

Archives

[crp]
Share This

Warady & Davis LLP is a Top 25 Chicago CPA Firm and a Great Lakes Regional Leader that provides a full range of audit, accounting, tax and consulting services and solutions to privately-held businesses, owners, high net-worth individuals and their families. We serve clients in Illinois, Wisconsin, throughout the United States and internationally.