We evaluated the U.S. Department of Housing and Urban Development (HUD) practices for identifying and protecting personally identifiable information (PII).  The evaluation assessed HUD’s current capabilities to properly manage and protect PII and to properly maintain paper and electronic PII records.  This evaluation was conducted in conjunction with the fiscal year (FY) 2019 Federal Information Security Act of 2014 (FISMA) evaluation…

This memorandum report summarizes survey and interview results on the impact mandatory telework is having on U.S. Housing and Urban Development’s (HUD) operations. The HUD Office of Inspector General (OIG) conducted surveys and interviews to evaluate HUD’s use of agency-wide telework in response to the novel coronavirus disease of 2019 (COVID-19) pandemic. The study was designed to provide insights into the types of obstacles that impeded HUD…

The U.S. Department of Housing and Urban Development (HUD), Office of Inspector General audited HUD’s compliance with the purchase card program requirements for fiscal years 2017 and 2018 based on our risk assessment. Our audit objective was to determine whether HUD maintained accurate records of cardholders and transactions; HUD employees took purchase card training when required; and HUD purchase cards were used for illegal, improper, or…

This topic brief summarized the current status of all information technology (IT) and privacy program recommendations issued to the U.S. Department of Housing and Urban Development (HUD) by the Office of Inspector General’s Office of Evaluation, Information Technology Evaluations Division (iTED) from Fiscal Year (FY) 2014 through 2019.  The report breaks down numbers of recommendations by functional areas and analyzes the progress made…

The U.S. Department of Housing and Urban Development (HUD), Office of Inspector General, has completed its annual risk assessment of HUD’s purchase cards as required by the Government Charge Card Abuse Prevention Act of 2012 (Public Law 112-194) and Office of Management and Budget Memorandum M-13-21.  Our objective was to identify and analyze risks of illegal, improper, or erroneous purchases and payments in HUD’s fiscal years 2017 and…

We audited information system controls over the U.S. Department of Housing and Urban Development’s (HUD) computing environment.  This review was conducted as part of our audit of HUD’s financial statements for fiscal year 2018 under the Chief Financial Officers Act of 1990.  Our objective was to assess general controls over HUD’s computing environment for compliance with HUD information technology policies and Federal information…

The Federal Government may choose to outsource for products or services using contracts and contractors.  HUD-owned and contractor-supported products and services are core to achieving HUD’s mission.  In FY 2017, HUD awarded 2,338 contracts, modifications, and task orders valued at $3.9 billion.  Specifically, HUD awarded 1,598 contracts totaling $3.1 billion in ultimate contract value for FY 2017.  While 19 HUD offices…

We audited the U.S. Department of Housing and Urban Development’s (HUD) use of funds for building improvements, managed by its Office of Administration, in response to a request from the U.S. House and Senate Committees on Appropriations Subcommittee on Transportation, Housing and Urban Development, and Related Agencies.  HUD planned to use repurposed and transferred funds from fiscal years 2015 and 2016, totaling $18.3 million, for Office…

The Federal Information Security Modernization Act of 2014 (FISMA) directs Inspectors General to conduct an annual evaluation of the agency information security program.  FISMA, Department of Homeland Security (DHS), Office of Management and Budget (OMB) and National Institute of Standards and Technology (NIST) establish information technology (IT) security guidance and standards for Federal agencies. We conducted this evaluation to assess…

We conducted this evaluation to determine the effectiveness of the U.S. Department of Housing and Urban Development’s (HUD) privacy program   We assessed the adequacy of agency strategies, plans, controls and practices at the enterprise and program levels.  We also examined the level of progress achieved since we last evaluated the program in 2014. We found that HUD had updated its privacy impact assessment processes, and took a…

On December 21, 2017, smoke spread from a malfunctioning air-handling unit on the 11th floor to parts of many other floors.  While a smoke detector in an air duct functioned properly and the fire department was notified, there was no audible alarm or public announcement to notify occupants to evacuate. People in one suite described the smoke as “heavy” and “thick.” HUD and the General Services Administration believe that the fire safety…

We audited information system controls over the U.S. Department of Housing and Urban Development’s (HUD) computing environment.  This review was conducted as part of our audit of HUD’s financial statements for fiscal year 2017 under the Chief Financial Officer’s Act of 1990.  Our objective was to assess general controls over HUD’s computing environment for compliance with HUD information technology policies and Federal information…

We audited general and application controls over selected Federal Housing Administration (FHA) information systems and the credit reform estimation and reestimation process as part of the internal control assessments required for the fiscal year 2017 financial statement audit under the Chief Financial Officer’s Act of 1990.  Our objective was to review the controls for compliance with U.S. Department of Housing and Urban Development (HUD)…

The U.S. Department of Housing and Urban Development, Office of Inspector General (HUD OIG), has completed its annual risk assessment of HUD’s charge cards as required by the Government Charge Card Abuse Prevention Act of 2012, Public Law 112-194, and Office of Management and Budget (OMB) Memorandum M-13-21.  Our objective was to analyze the risks of illegal, improper, or erroneous purchases in HUD’s fiscal year 2016 travel and purchase…

This briefing paper highlights challenges the Department of Housing and Urban Development (HUD) faces in managing and improving its Information Technology (IT) program.  This document analyzed past HUD OIG and GAO IT related reports and recommendations to highlight key management challenges in HUD’s IT program. We are highlighting these challenges so HUD leadership is aware of and can be better prepared to address them. The OIG has…

HUD has a contract with Leidos Innovations Corporation for E-Discovery services using the E-Discovery Management System.  The process for collecting electronically stored information (ESI) and delivering it to customers has two major subprocesses: (1) an initial ESI collection and (2) a keyword search to refine the initial collection results.  OGC’s and Leidos’ collection of ESI does not meet customer demand because processing ESI…

In accordance with the statutory requirements of the Digital Accountability and Transparency Act of 2014 (DATA Act) and standards established by the Office of Management and Budget (OMB), we audited the U.S. Department of Housing and Urban Development’s (HUD) Office of the Chief Financial Officer’s (OCFO) compliance with the DATA Act for the second quarter of fiscal year 2017. In the DATA Act Compliance Audit of the U.S. Department of Housing…

The Federal Information Security Modernization Act of 2014 (FISMA) directs Inspectors General to conduct an annual evaluation of the agency information security program.  FISMA, Department of Homeland Security (DHS), Office of Management and Budget (OMB) and National Institute of Standards and Technology (NIST) establish information technology (IT) security guidance and standards for Federal agencies. We conducted this evaluation to assess…

The U.S. Department of Housing and Urban Development (HUD), Office of Inspector General audited the HUD’s travel and purchase card programs for fiscal year 2016 based on (1) our annual risk assessment of these programs and (2) our requirement under the Charge Card Abuse Prevention Act of 2012 to periodically review government travel and purchase cards.  The most recent risk assessment found that there was a moderate risk of illegal,…

The U.S. Department of Housing and Urban Development (HUD), Office of Inspector General audited the HUD’s government purchase card program.  We initiated the review based on our participation in a collaborative effort with other inspectors general under the direction of the Council of Inspectors General on Integrity and Efficiency (CIGIE) to issue a consolidated report to the Office of Management and Budget on government purchase card use…