The Digital Accountability and Transparency Act of 2014 (DATA Act) and implementation guidance provided in the Office of Management and Budget Memorandum M-15-12 mandates that Federal agencies must report their financial, budgetary and programmatic information to the USASpending.gov web site by the statutory May 2017 deadline. In our second of two Data Act Readiness Reviews, OIG reviewed the U.S. Department of Housing and Urban Development’s (…

In accordance with the Chief Financial Officers Act of 1990, as amended, we are required to annually audit the consolidated financial statements of the U.S. Department of Housing and Urban Development (HUD). HUD reissued its fiscal year 2016 and 2015 (Restated) consolidated financial statements due to pervasive material errors that were identified by us. Our objective was to express an opinion on the fairness of HUD’s consolidated…

We reviewed the general and application controls over the Federal Housing Administration’s (FHA) Single Family Premiums Collection Subsystem – Periodic (SFPCS-P) and Single Family Acquired Asset Management System (SAMS) as part of the internal control assessments required for the fiscal year 2016 financial statement audit under the Chief Financial Officer’s Act of 1990.  Our objective was to review the general and application controls over…

This page previously contained our independent auditor’s report on HUD’s fiscal year 2016 and 2015 (Restated) consolidated financial statements  (OIG Audit Report 2017-FO-0004), issued November 15, 2016.  In the report, one basis for our disclaimer of opinion was that HUD was unable to provide final consolidated financial statements and accompanying notes in a timeframe that would allow us to obtain sufficient, appropriate evidence to…

This report presents the results of our audit of Ginnie Mae’s fiscal years 2016 and 2015 (restated) financial statements, including our report on Ginnie Mae’s internal control and test of compliance with selected provisions of laws and regulations applicable to Ginnie Mae.  For the third consecutive year, in fiscal year 2016, we were unable to obtain sufficient, appropriate evidence to express an opinion on the fairness of the $ 4.2…

The Federal Information Security Modernization Act of 2014 (FISMA) directs Inspectors General to conduct an annual evaluation of the agency information security program.  FISMA, Department of Homeland Security (DHS), Office of Management and Budget (OMB) and National Institute of Standards and Technology (NIST) establish information technology (IT) security guidance and standards for Federal agencies. We conducted this evaluation to assess…

The U.S. Department of Housing Urban Development (HUD), Office of Inspector General audited the Government National Mortgage Association’s (Ginnie Mae) process for identifying and removing uninsured single-family Federal Housing Administration loans from mortgage-backed securities (MBS) pools.  Our audit objective was to determine whether loans remained in Ginnie Mae MBS pools for 1 year or longer without the required mortgage insurance.…

We reviewed the general and application controls over the Federal Housing Administration’s (FHA) Single Family Insurance System (SFIS) and Single Family Insurance Claims Subsystem (Claims) as part of the internal control assessments required for the fiscal year 2015 financial statement audit under the Chief Financial Officer’s Act of 1990. Our objective was to assess the general and application controls over SFIS and Claims for compliance with…

The Digital Accountability and Transparency Act of 2014 (DATA Act), and implementing guidance provided in the Office of Management and Budget Memorandum M-15-12, is a mandate that Federal agencies must follow to report their financial, budgetary and programmatic information to the USASpending.gov web site.  We have reviewed the U.S. Department of Housing and Urban Development’s (HUD) compliance efforts as of July 15, 2016.  To…

We reviewed the general and application controls over the Federal Housing Administration’s (FHA) Single Family Insurance System (SFIS) and Single Family Insurance Claims subsystem (Claims) as part of the internal control assessments required for the fiscal year 2015 financial statement audit under the Chief Financial Officer’s Act of 1990.  Our objective was to evaluate the general and application controls over SFIS and Claims for…

The Federal Information Security Modernization Act of 2014 (FISMA) directs the Office of Inspector General (OIG) to conduct an annual evaluation of the U.S. Department of Housing and Urban Development (HUD) information security program.  FISMA, Department of Homeland Security (DHS), Office of Management and Budget (OMB) and National Institute of Standards and Technology (NIST) establish information technology (IT) security guidance and…

This report presents the results of our audit of Ginnie Mae’s fiscal years 2015 and 2014 (restated) financial statements, including our report on Ginnie Mae’s internal control and test of compliance with selected provisions of laws and regulations applicable to Ginnie Mae.  For the second consecutive year, in fiscal year 2015, we were unable to obtain sufficient appropriate evidence to express an opinion on the fairness of the $ 5.4…

We reviewed information system controls over the U.S. Department of Housing and Urban Development’s (HUD) computing environment.  This review was conducted as part of the Office of Inspector General’s audit of HUD’s financial statements for fiscal year 2015 under the Chief Financial Officer’s Act of 1990. The OIG has determined that the contents of this report would not be appropriate for public disclosure and has therefore limited its…

This report presents the results of our fiscal year 2014 audit of Ginnie Mae’s financial statements, including our report on Ginnie Mae’s internal control and test of compliance with selected provisions of laws and regulations applicable to Ginnie Mae.  We contracted with the independent certified public accounting firm of CliftonLarsonAllen LLP to audit Ginnie Mae’s fiscal year 2013 financial statements.  CliftonLarsonAllen was…

Office of Evaluation, IT Evaluation Division (iTED) conducted an evaluation of HUD’s IT Modernization program, which included reviews on the implementation and maturity of HUD’s capital planning and investment control (CIPIC) process and Enterprise Architecture (EA) program. With the corroboration of HUD’s Office of Chief Information Officer (OCIO), the report focuses on three major IT programs and policies within the CPIC and EA programs: IT…

The Office of Evaluation performed preliminary research of the HUD Office of the Chief Information Officer’s (OCIO) management of the agency’s reporting of financial and project information on the Federal IT Dashboard (Dashboard).  The objective of the evaluation was to determine if OCIO processes ensured accurate IT investment information was reported on the Dashboard.  We found that project managers did not consistently follow…

We reviewed information system controls over the U.S. Department of Housing and Urban Development’s (HUD) computing environment.  This review was conducted as part of the Office of Inspector General’s audit of HUD’s financial statements for fiscal year 2014 under the Chief Financial Officer’s Act of 1990. The OIG has determined that the contents of this report would not be appropriate for public disclosure and has therefore limited its…

The Federal Information Security Management Act of 2002 (FISMA) directs the Office of Inspector General (OIG) to conduct an annual evaluation of the U.S. Department of Housing and Urban Development (HUD) information security program.  FISMA, Department of Homeland Security (DHS), Office of Management and Budget (OMB) and National Institute of Standards and Technology (NIST) establish information technology (IT) security guidance and…

We reviewed the information security controls over the U.S. Department of Housing and Urban Development’s (HUD) Ginnie Mae Financial Accounting System (GFAS) as part of the internal control assessments required for the fiscal year 2014 financial statement audit under the Chief Financial Officer’s Act of 1990.  Our audit objective was to determine the effectiveness of general and application controls over GFAS for compliance with HUD…

Federal organizations have a fundamental responsibility to protect the privacy of individuals and their personally identifiable information (PII) that is collected, used, maintained, shared, and disposed of by agency programs and information systems. The management of U.S. Department of Housing and Urban Development (HUD) programs demands the availability and use of extensive amounts of financial, demographic, and personal information. HUD is…