HUD Grantees Need to Enhance Monitoring of ESG CARES Act Subrecipients
Develop and implement additional subrecipient monitoring training and guidance for all ESG grantees.
FHEO Faces Challenges in Completing Investigations Within 100 Days
We recommend that HUD’s Deputy Assistant Secretary for Fair Housing and Equal Opportunity update protocols to promote consistent expectations for timely supervisory, legal, and headquarters reviews of complex cases.
FHEO Faces Challenges in Completing Investigations Within 100 Days
We recommend that HUD’s Deputy Assistant Secretary for Fair Housing and Equal Opportunity review and update the MOUs with OGC for each region to identify and remove inefficiencies that can lead to longer FHEO investigation times and OGC review times and identify best practices that can be implemented across all regions.
FHEO Faces Challenges in Completing Investigations Within 100 Days
We recommend that HUD’s Deputy Assistant Secretary for Fair Housing and Equal Opportunity review and update investigative processes followed by each regional office to identify best practices that can be implemented across all regions and identify and remove inefficiencies that can lead to longer investigation times.
HUD's Use and Oversight of Telework and Remote Work
Implement a process to identify teleworkers most at risk of receiving incorrect locality payments, verify that their official duty stations are correct and they are reporting to their official duty stations as required, and if necessary, correct their locality payments.
FY 2024 Federal Information Security Modernization Act of 2014 (FISMA) Evaluation Report
HUD OCIO should implement an automated governance, risk, and compliance tool to manage risk from all sources across the three tiers of the organization in a timely manner. This recommendation updates FY 2021 FISMA recommendation number 5 (IG FISMA metrics 5, 9, and 10).
FY 2024 Federal Information Security Modernization Act of 2014 (FISMA) Evaluation Report
HUD OCIO should employ automation to maintain a timely and accurate view of security configuration information for all systems connected to its network (IG FISMA metric 20).
FY 2024 Federal Information Security Modernization Act of 2014 (FISMA) Evaluation Report
HUD OCIO should review its security training program and determine whether it should provide general cybersecurity awareness training to external users of its systems and data (IG FISMA metric 44).
FHA Catalyst PII Risk Management in a Zero Trust Environment Interim Report
Housing should include zero trust requirements as part of the Housing Strategic Roadmap for Housing Modernization.
FHA Catalyst PII Risk Management in a Zero Trust Environment Interim Report
Housing should refine access controls within the FHA Catalyst modules that are dynamic, are tailored to user actions, and require continuous reauthentication to ensure that users have access only to information needed.
FHA Catalyst PII Risk Management in a Zero Trust Environment Interim Report
Housing should coordinate with HUD’s SOC to
a. Ensure that FHA Catalyst user behavior monitoring logs are regularly captured and adequately reviewed for discrepancies in user activities.
b. Establish program office responsibility for the log review process.
Timing of PHAs' Lead-Based Paint Visual Assessments
Issue guidance to PHAs clarifying the timing of unit inspections and lead-based paint visual assessments to address the misinterpretation caused by the terms “annual” and “every 12 months.”
LA Wildfires: Fraud Risk Awareness for Affected Residents
The devastating and tragic wildfires in Los Angeles, like many natural disasters, have caused hardship conditions that leave individuals, businesses, and communities vulnerable to bad actors who take advantage of those impacted by these severe weather emergencies.
Fraud bulletins or alert
FHA's Office Of Asset Sales Did Not Have Adequate Information To Measure Its Loan Sales' Program Success
Update the Conveyance, Assignment, and Assumption Agreement to require purchasers to report final property outcomes and identifying information including those of third-party purchasers when applicable.
FHA's Office Of Asset Sales Did Not Have Adequate Information To Measure Its Loan Sales' Program Success
Enhance data collection and processing controls to ensure consistency in reporting data.
FHA's Office Of Asset Sales Did Not Have Adequate Information To Measure Its Loan Sales' Program Success
Enhance existing demonstration guidance within the Conveyance, Assignment, and Assumption Agreement to provide further detail regarding documentation retention requirements.
FY24 FISMA Penetration Test Report
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
FY24 FISMA Penetration Test Report
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
FY24 FISMA Penetration Test Report
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.
FY24 FISMA Penetration Test Report
The OIG has determined that the contents of this recommendation would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.