HUD OIG is auditing HUD’s contract administration quality assurance processes over its management & marketing contracts.  HUD awarded seven firm-fixed price contracts totaling $8.98 billion to five different vendors.  The audit objective is to determine whether HUD effectively administered quality assurance surveillance plans for management & marketing contracts to assist in meeting HUD’s mission.

HUD OIG is auditing HUD’s compliance with the Digital Accountability and Transparency Act of 2014 (DATA Act) as it relates to HUD’s program funds and Coronavirus Aid, Relief, and Economic Security (CARES) Act funding.  OMB requires Federal agencies to report all financial and award data in accordance with DATA Act reporting standards which is displayed on USASpending.gov, a publicly available website.  This audit is statutorily mandated by the DATA Act and is the last of three required audit reports due by November 8, 2021.

To provide the HUD Secretary, senior leadership and Congress with an overview of the current status of Information Technology (IT) at HUD, the challenges they have overcome since the first 2018 IT Brief and the challenges they continue to face.

We will review HUD OCIO’s most recent IT modernization roadmap and strategy along with any other supporting documentation HUD can provide regarding modernization progress and milestones. Specifically, we will identify the various ongoing modernization projects within the roadmap and obtain documentation about the status of the individual projects. We will interview HUD officials knowledgeable about HUD’s modernization plans to confirm our understanding of the documentation we review. 

To determine if HUD has processes in place to efficiently and effectively conduct information technology (IT) acquisitions.

In accordance with the mandated work in FISMA, we are conducting the annual evaluation of information security practices, policies, and procedures established by HUD and the HUD Office of the Chief Information Officer. As part of the evaluation, we will also review 8 sample systems within 7 HUD program offices. Two products will result from our work; the mandated DHS CyberScope FISMA IG metrics report and a narrative report.

In accordance with the mandated work in FISMA, we are conducting the annual evaluation of information security practices, policies, and procedures established by HUD and the HUD Office of the Chief Information Officer. As part of the evaluation, we will also review 8 sample systems within 7 HUD program offices. Two products will result from our work; the mandated DHS CyberScope FISMA IG metrics report and a narrative report.