At Freddie Mac, you will do important work to build a better housing finance system and you’ll be part of a team helping to make homeownership and rental housing more accessible and affordable across the nation.
Position Overview:
The Information Security Policy & Reporting Tech Lead provides hands-on experience across all information security domains and direct interactions with cybersecurity and technology management. This tech lead will focus on defining and socializing changes to security requirements, establishing implementation guidance and compliance reporting for security requirements, and preparing various cybersecurity related reports for management, the board of directors and the regulator.
Our Impact:
Security Policy & Reporting Team defines and maintains clear security requirements to improve overall security posture and align expectations across stakeholder groups. We also support security service owners in providing leadership, risk partners and regulators with timely and informative security reporting. Our objectives:
Position leadership to make timely and informed risk decisions based on current threats and control deficiencies in the organization.
Improve accountability with security service owners, asset owners, and individual users throughout the organization.
Fulfill Information Security’s reporting obligations to business technology partners, risk management teams, senior management and regulators.
Your Impact:
Establish relationships with information security and risk management teams, becoming a trusted adviser for cybersecurity risk, control and reporting challenges.
Maintain a comprehensive understanding of the firm’s information security processes and controls, and consult process owners as new initiatives, risks, threats, control activities, and issues emerge.
Define and socialize changes to enterprise Information Security requirements by working with security service owners, other IT departments, and business stakeholders to propose changes, assess impact, refine implementation approach, and establish compliance reporting.
Build presentations on top risks, trends and internal controls for senior IT leadership, risk oversight, and cross-business consumption.
Work independently, as part of a Security Policy & Reporting team or in collaboration with other security teams.
Ensure work is completed on time and in alignment with professional standards.
Stay abreast of current business and industry trends relevant to our industry.
Leverage data analytics and automation knowledge to enhance current security requirement and reporting processes.
Maintain technical knowledge through ongoing research and review of industry publications.
Qualifications:
8+ years working experience. Experience must include a minimum of 5 years in information security.
Extensive knowledge of cybersecurity frameworks (NIST, ISO, etc.) and DevOps concepts.
Security certifications such as CISA, CRISC, or CISSP.
Relevant degree in Management Information Systems, Business Administration with an emphasis in Technology, Computer Science, Accounting Information Systems or related discipline.
Keys to Success in this Role:
Critical thinking and problem-solving skills
Ability to deep dive into any cybersecurity process
Ability to work with stakeholders from many IT, cybersecurity and risk management disciplines
Excellent professional writing skills and verbal communications to executive leadership
Ability to work well under minimal supervision, while maintaining calmness and clarity under pressure.
Current Freddie Mac employees please apply through the internal career site.
Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you’ll do important work for the housing finance system and make a difference in the lives of others.
We are an equal opportunity employer and value diversity and inclusion at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by applicable law. We will ensure that individuals with differing abilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
CA Applicants: Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.
Time-type:Full timeFLSA Status:Exempt
Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.
This position has an annualized market-based salary range of $127,000 - $191,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.