The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
2017-OE-0007 | October 31, 2017
HUD Fiscal Year 2017 Federal Information Security Modernization Act Of 2014 (FISMA) Evaluation Report
Chief Information Officer
- Status2017-OE-0007-16OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
- Status2017-OE-0007-17OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
- Status2017-OE-0007-18OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
- Status2017-OE-0007-19OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
2017-OE-0011 | September 15, 2017
The Office of Residential Care Facilities’ Use of Real Estate Assessment Center Scores
Enforcement Center
- Status2017-OE-0011-01OpenClosed
Identify and implement a method to ensure that eligible RCFs receive database adjustments when appropriate under local code
- Status2017-OE-0011-02OpenClosed
Identify and implement a method to ensure that HUD does not instruct facilities to negate safety features
- Status2017-OE-0011-03OpenClosed
Identify and implement a method that ensures the expeditious followup inspection of RCFs
2016-OE-0002 | July 06, 2017
HUD Web Application Security Evaluation Report
Chief Information Officer
- Status2016-OE-0002-01OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
- Status2016-OE-0002-02OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
- Status2016-OE-0002-03OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
PriorityPriorityWe believe these open recommendations, if implemented, will have the greatest impact on helping HUD achieve its mission to create strong, sustainable, inclusive communities and quality affordable homes for all.
Enforce the requirement for all HUD web applications and services to be approved by the CIO and ensure OCIO reviews and approves all IT contracts and services agreements dealing with creation or support of web applications or services.
Corrective Action Taken
In January 2023, HUD's Office of the Chief Information Officer developed and released a Web Applications Directive to all HUD program offices. This directive described how web applications are defined, approved, inventoried, and maintained, including processes for tracking, and monitoring such applications.
- Status2016-OE-0002-04OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
- Status2016-OE-0002-05OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
- Status2016-OE-0002-06OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
- Status2016-OE-0002-07OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
- Status2016-OE-0002-08OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
- Status2016-OE-0002-09OpenClosedSensitiveSensitive
Sensitive information refers to information that could have a damaging import if released to the public and, therefore, must be restricted from public disclosure.
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
2016-OE-0011S | May 03, 2017
HUD’s Internal Audit Requirement for Disaster Relief Appropriations Act of 2013 Grantees
Community Planning and Development
- Status2016-OE-0011S-01OpenClosed
Provide clearer guidance and instruction to PL 113-2 disaster grantees to assist them in establishing an effective internal audit activity.
- Status2016-OE-0011S-02OpenClosed
Establish a recurring training and discussion forum among the PL 113-2 grantees and CPD that enables grantees to share ideas and receive guidance and information about CPD’s expectations regarding the internal audit requirement.
2016-OE-0010 | April 19, 2017
Assessing HUD Plans for Evaluating Urban Promise Zones and HUD Grant Programs Participating in Promise Zones
Field Policy and Management
- Status2016-OE-0010-01OpenClosed
Complete all steps necessary for an effective evaluation effort.
- Status2016-OE-0010-02OpenClosed
Work with grant program offices to overcome reporting challenges. Ensure that grant program offices report OMB-requested data. Learn from and leverage results of participating grant programs.