We reviewed information system controls over the U.S. Department of Housing and Urban Development’s (HUD) computing environment.  This review was conducted as part of the Office of Inspector General’s audit of HUD’s financial statements for fiscal year 2014 under the Chief Financial Officer’s Act of 1990. The OIG has determined that the contents of this report would not be appropriate for public disclosure and has therefore limited its…

We are required to audit the consolidated financial statements of the U.S. Department of Housing and Urban Development (HUD) annually in accordance with the Chief Financial Officers Act of 1990 as amended.  Our objectives were to evaluate HUD’s internal controls over financial reporting and compliance with applicable laws, regulations, and government wide policy requirements and provisions of contracts and grant agreements.  This…

The Federal Information Security Management Act of 2002 (FISMA) directs the Office of Inspector General (OIG) to conduct an annual evaluation of the U.S. Department of Housing and Urban Development (HUD) information security program.  FISMA, Department of Homeland Security (DHS), Office of Management and Budget (OMB) and National Institute of Standards and Technology (NIST) establish information technology (IT) security guidance and…

The U.S. Department of Housing and Urban Development – Office of Inspector General audited HUD’s fiscal year 2013 compliance with the user fee requirements in Office of Management and Budget Circular A-25 and the Chief Financial Officers (CFO) Act of 1990.  We initiated the audit based on observations in our audit of the Federal Housing Administration (FHA) annual lender renewal process (Audit Report No. 2010-KC-0002, issued August 6, 2010…

Based upon a complaint, we reviewed two Intergovernmental Personnel Act (IPA) agreements as part of a joint assignment with our Office of Investigation and Office of Legal Counsel.  Our objective was to determine whether the U. S. Department of Housing and Urban Development (HUD) violated the Antideficiency Act (ADA)  when it obtained the services of two people through IPA agreements.  During the review, we identified potential…

Federal organizations have a fundamental responsibility to protect the privacy of individuals and their personally identifiable information (PII) that is collected, used, maintained, shared, and disposed of by agency programs and information systems. The management of U.S. Department of Housing and Urban Development (HUD) programs demands the availability and use of extensive amounts of financial, demographic, and personal information. HUD is…

We conducted an audit of the U.S. Department of Housing and Urban Development’s (HUD) fiscal year 2013 compliance with the Improper Payments Information Act of 2002 as amended by the Improper Payments Elimination and Recovery Act of 2010 (IPERA).  IPERA was enacted to eliminate and recover improper payments by requiring agencies to identify and report on programs that are susceptible to significant improper payments.  IPERA also…

We reviewed the U.S. Department of Housing and Urban Development’s (HUD) violation report regarding the misuse of a government purchase card in accordance with the Office of Management and Budget’s (OMB) implementing guidance and the Government Charge Card Abuse Prevention Act of 2012.   HUD is responsible for the violation report and the conclusions expressed in the report.  Our objective was to evaluate the fairness of the…

The U.S. Department of Housing and Urban Development’s (HUD), Office of Inspector General reviewed HUD’s oversight of contracting for architectural and engineering contracts due to a referral involving a multi-State manufactured home inspection contract awarded by HUD in which the contractor received excessive payments.  Our audit objective was to determine whether HUD properly procured and made reasonable payments for its manufactured…

We are required to annually audit the consolidated financial statements of the U.S. Department of Housing and Urban Development (HUD) in accordance with the Chief Financial Officers Act of 1990 as amended. This report supplements our report on the results of our audit of HUD’s principal financial statements for the fiscal years ending September 30, 2013 and 2012 (restated). Also provided are assessments of HUD’s internal controls and our…

The Federal Information Security Management Act of 2002 (FISMA) directs the Office of Inspector General (OIG) to conduct an annual evaluation of the U.S. Department of Housing and Urban Development (HUD) information security program.  FISMA, Department of Homeland Security (DHS), Office of Management and Budget (OMB) and National Institute of Standards and Technology (NIST) establish information technology (IT) security guidance and…

We completed an evaluation of the U.S. Department of Housing and Urban Development’s (HUD) property inventory system.  The evaluation was performed at the request of Office of Inspector General (OIG) management due to long standing issues with HUD’s property inventory system.  Our objectives were to determine why HUD did not have a properly working property inventory system in place and the status of procuring a new property inventory…

The U.S. Department of Housing and Urban Development (HUD), Office of Inspector General audited the City of Spokane, WA’s Lead-Based Paint Hazard Control program funded by the American Recovery and Reinvestment Act to determine whether the City complied with procurement, matching, and reporting requirements when executing its grant. This audit was part of the mandate to monitor grant activities funded by the Recovery Act. We selected the City…

The U.S. Department of Housing and Urban Development (HUD), Office of Inspector General conducted a limited scope internal review of Office of Healthy Homes and Lead Hazard Control (Healthy Homes) to determine whether Healthy Homes allowed excessive administrative costs to be charged to the Lead-Based Paint Hazard Control grant program. This review was the result of the audit of the Washington State Lead Hazard Control grant (2012-SE-1005,…

We conducted an evaluation of the U.S. Department of Housing and Urban Development’s (HUD) toll free phone lines.  Our objective was to determine whether HUD’s phone lines were functioning at optimal levels with regard to phone line operations and the level of customer service provided to the public. Our review disclosed that HUD could not determine (1) whether its toll free phone lines were functioning at an optimal level and (2) the…

We audited the U.S. Department of Housing and Urban Development’s (HUD) plans and procedures for data conversion and system interfaces for the implementation of the HUD Integrated Core Financial System (ICFS). We conducted this audit as a component of the testing of general and technical controls for information systems in connection with the annual audit of HUD’s consolidated financial statements. HUD’s effort to modernize its financial…

We audited the U.S. Department of Housing and Urban Development’s (HUD)’s plans and procedures for data conversion of the HUD Integrated Core Financial System (ICFS). Our audit objective was to review HUD’s readiness to fully implement ICFS and determine whether HUD had properly managed the payments related to data conversion activities. We determined that OCFO incorrectly paid the Integrated Financial Management Improvement Project…

We have completed a review to determine whether HUD followed proper policies and procedures in responding to a breach of personally identifiable information which occurred on September 21, 2012. Specifically, for this incident, we identified what actions were taken and any deficiencies within HUD policies, plans, or current practices. We determined that HUD responded to the incident properly, following United States Computer Emergency…

The U.S. Department of Housing and Urban Development (HUD), Office of Inspector General audited the Washington State Department of Commerce to determine whether it complied with Lead Hazard Control grant project eligibility, matching contribution, administrative cost, and American Recovery and Reinvestment Act reporting requirements. This audit is part of the national mandate to monitor grant activities funded by the Recovery Act. We selected…

The U.S. Department of Housing and Urban Development’s (HUD) Office of Inspector General audited the Office of the Chief Human Capital Officer based on concerns about security risks of hard drives in multifunction devices. Our objective was to determine whether HUD had documented and implemented procedures to effectively remove sensitive data from the hard drives of multifunction devices before disposing of them. HUD did not monitor or test…