We have completed our fiscal year (FY) 2023 Federal Information Security Modernization Act of 2014 (FISMA) penetration test and vulnerability assessment.  The objective of this evaluation was to test and verify the technical implementation of a limited set of security controls on judgmentally selected U.S. Department of Housing and Urban Development (HUD) information systems and applications.HUD demonstrated successes in securely...

HUD OIG is auditing HUD’s subaward data reported in USAspending.gov. Doing this work will provide the current condition and challenges faced by grantees to comply with the Federal Funding Accountability and Transparency Act (FFATA) subaward data reporting requirements. Our audit objective is to determine if prime grant recipients of HUD funding reported all of the FFATA requirements for their subawards on USASpending.gov, including the...

The Federal Information Security Modernization Act of 2014 (FISMA) directs Inspectors General to conduct an annual evaluation of the agency information security program.  FISMA, Department of Homeland Security (DHS), Office of Management and Budget (OMB) and National Institute of Standards and Technology (NIST) establish information technology (IT) security guidance and standards for Federal agencies. We conducted this evaluation...

The Federal Information Security Modernization Act of 2014 (FISMA) requires all federal agencies to conduct independent security technical verification testing on a sampling of information systems annually.  In conjunction with our fiscal year 2021 FISMA evaluation (2021-OE-0001), we conducted a targeted security testing assessment of sample systems that resulted in a Topic Brief.  The objective of this application...

HUD OIG is auditing HUD's compliance with the Payment Integrity Information Act of 2019 (PIIA).  The PIIA requires HUD to identify and review all programs and activities it administers that may be susceptible to significant improper payments based on guidance provided by OMB.  The audit objectives are to (1) review the payment integrity section of HUD's Annual Financial Report for Fiscal Year 2020 to determine whether HUD is...