Freddie Mac

As part of Freddie Mac's Enterprise Risk Management (ERM), the Information Risk Management Team provides 2nd line oversight of the company's Cybersecurity and Identity Access Management (IAM) programs.. Develop effective and measurable metrics (KRI, KPI and KCI) to analyze data and proactively identify trends or new/emerging risks. Bachelor's Degree and 8+ year working in and/or auditing IT security areas such as penetration testing, operations, threat intelligence, monitoring, vulnerability management, identity access management, Keys and Certificate Management or security engineering in large enterprises. Some industry leading Certifications preferred: CISSP, CISA, CRISC, CISM, CEH, and/or CIPT. Prior experience in Cybersecurity Operational Risk Management, supporting CISO in deployment and sustainment of cybersecurity capabilities, and previous big four experience preferred

risk manager

At Freddie Mac, you will do important work to build a better housing finance system and you'll be part of a team helping to make homeownership and rental housing more accessible and affordable across the nation. Position Overview: Are you passionate about cybersecurity and technical risk? We can offer an exciting career opportunity that allows you to do rewarding work with the newest technologies, while growing your cybersecurity and risk management skillsets! **This position can be performed from a Remote Location in the U.S., but must be within a 2-hr time zone differential from EST!** **Travel expected approximately once per quarter to HQ in McLean, VA, if Remote. ** Our Impact: As part of Freddie Mac's Enterprise Risk Management (ERM), the Information Risk Management Team provides 2nd line oversight of the company's Cybersecurity and Identity Access Management (IAM) programs. We are looking for a team member to support the development, validation, and monitoring of cyber security capabilities. Your Impact: Cybersecurity
As a subject matter expert of the Cybersecurity risk domain, provide oversight and challenge function for the Information Security programs of the IT division and other lines of business
Review the Information Security operations, solutions and architecture to identify risks, evaluate effectiveness and completeness of the cybersecurity capabilities and report the findings for enhancement and opportunities
Enhance and mature Risk Management practices by supporting the development of enterprise-wide cybersecurity policies and standards
Provide oversight and advisory services to1st line partners regarding the application of standard requirements across a wide variety of technologies to manage risk
Support the development and execution of controls to monitor cybersecurity compliance and drive organizational change
Develop effective and measurable metrics (KRI, KPI and KCI) to analyze data and proactively identify trends or new/emerging risks
Execute risk analytics and reporting
Provide advisory consultation to lines of businesses and make course of action recommendations to manage risk Oversight
Effectively challenge our 1st line of defense technology teams while collaborating with the 3rd line (Internal Audit) and internal 2nd line partners.
Collaborate with key risk areas, business partners, and IT counterparts to design action plans to address Cybersecurity and IAM risk
Autonomously lead program execution with documented project plans, expectations and schedule
Provide status reports, escalation and impediment resolution when needed
Support the Director in leading and managing the team; mentor and guide team members Qualifications:
Bachelor's Degree and 8+ year working in and/or auditing IT security areas such as penetration testing, operations, threat intelligence, monitoring, vulnerability management, identity access management, Keys and Certificate Management or security engineering in large enterprises
Formal big 4 Cybersecurity Risk Consulting or Audit experience preferred
Some industry leading Certifications preferred: CISSP, CISA, CRISC, CISM, CEH, and/or CIPT
Prior experience in Cybersecurity Operational Risk Management, supporting CISO in deployment and sustainment of cybersecurity capabilities, and previous big four experience preferred
Knowledge of cloud migration, AI, security and access management experience preferred
Demonstrate proficiencies in above stated cybersecurity domains
Working knowledge of industry security standards and guidance such as NIST or ISO
Capable of working independently and with a collaborative team
Deliver effective verbal, written and interpersonal communication skills with strong attention to detail Keys to Success in this Role:
Think broadly and analytically, developing solutions in an ambiguous and fast paced environment
Ability to understand and work with a diverse group of partners within all lines of defense
Demonstrable experience with IT, privacy data and management practices/processes
Self-motivated, pro-active and results oriented problem solver; able to prioritize without heavy supervision Current Freddie Mac employees please apply through the internal career site. Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you'll do important work for the housing finance system and make a difference in the lives of others. We are an equal opportunity employer and value diversity and inclusion at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by applicable law. We will ensure that individuals with differing abilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC. Time-type:Full time FLSA Status:Exempt Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site. This position has an annualized market-based salary range of $138,000 - $206,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.

START NEW SEARCH