Cyber Security Technical Lead

At Freddie Mac, our mission of Making Home Possible is what motivates us, and it’s at the core of everything we do. Since our charter in 1970, we have made home possible for more than 90 million families across the country. Join an organization where your work contributes to a greater purpose.

Position Overview:

We are seeking a Cybersecurity Tech Lead to join the Credential Management team within the Information Security of the Enterprise Operations and Technology Division. Technical lead will provide engineering, automation, implementation and operations of privileged access management and credential management technologies. This role also includes a monthly on-call rotation and will assist with level 3 troubleshooting.

Our Impact:

As a Technical Lead, you will be part of the Cybersecurity Engineering Team at Freddie Mac and will help fulfill the Information Security department’s vision of reducing information risk by ensuring and enhancing the Confidentiality, Availability, and Integrity of Information systems at Freddie Mac. You will lead the development and delivery of our technical solutions related to Privileged Access Management and Credential Management. You will build, develop, and maintain relationships with internal and external customers, and vendors to formulate remediation solutions for issues related with Cybersecurity.

Your Impact:

Technical Leadership and Engineering Management:

• Enhance privileged access management capability of blending the needs from enterprise wide technical & business groups

• Lead, design and collaborate with architecture teams to align with zero-trust roadmap and architecture standards.

• Mentor Engineers to ensure engagement and advancement of the overall Team

• Develop best practices for engineering and administration of PAM and Credential Management solutions.

Continuous process improvement and automation

• Always start from a view of automating as much of the overall process as possible.

• On a continuous basis review task, increase efficiency, and mark tasks for automation/transfer to delivery team.

• Utilize and drive project milestones through Jira to ensure clear communication/expectations with leadership and stakeholder.

Engineering-Driven Compliance & Best Practices:

• Ensure solutions align with regulatory and compliance requirements – specifically NIST, while maintaining scalability to meet evolving business needs

• Engineer solutions with the understanding FM is a highly regulated firm which requires control validation by non-technical team members.

• Assist in audits and ensure compliance with security standards.

• Utilize a problem-solving approach to design solutions that not only address immediate risks but also future-proof solutions/defenses against emerging threats.

Collaboration and Stakeholder Engagement:

• Collaborate with IT, Operations, End User Support, and software engineering teams to integrate security while keeping users experience as a key function of the solution.

• Work closely with senior leadership on the selection, design and delivery blueprint of new  security technologies and tools to address evolving threat landscape

Qualifications:

• 8+ years of professional IT experience with extensive experience in modernizing privileged access management at large enterprises along with credential and secrets management

• 4+ years of experience implementation and administration of Privileged Access Management, Credential Management, Privileged Session management, and Privileged Remote Access.

• Deep understanding of credential and secrets management, along with the ability to implement cutting-edge solutions such as Just-In-Time entitlements and zero-standing privileges using industry-leading technologies.

• Experience and understanding of Identity life cycle management tools.

• Experience and understanding of SEIM configuration and management

• Experience and understanding of platforms Such as Windows, Linux, Databases, and Mainframe

• Experience in implementing secrets management and PAM in hybrid and multi-cloud environments (AWS, GCP and Azure)

• Experience of AWS security and CFT

• Experience on Firewalls, VPNs and Network Segmentation

• Added advantage on Experience with infrastructure automation platform Ansible, terraform

• Experience with windows and Networking troubleshooting

• Ability to prioritize work without management direction and provide clear, documented status updates to the management and the team.

• Advanced problem-solving skills and ability to work effectively under tight deadlines.

• Experience in supporting encryption and/or security appliance devices.

• Bachelor’s degree in information technology, engineering, computer science, related field, or equivalent experience.

Keys to Success in this Role:

• Excellent collaborator and partner

• Spirit for innovation and ability to work in the space of “no longer” and “not yet”

• Ability to quickly comprehend the functions and capabilities of new technologies

• Proactive in nature with security and customer satisfaction a top priority

• Innovative in providing solutions, likes to take on challenges with calculated risk

Current Freddie Mac employees please apply through the internal career site.

We consider all applicants for all positions without regard to gender, race, color, religion, national origin, age, marital status, veteran status, sexual orientation, gender identity/expression, physical and mental disability, pregnancy, ethnicity, genetic information or any other protected categories under applicable federal, state or local laws. We will ensure that individuals are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

A safe and secure environment is critical to Freddie Mac’s business. This includes employee commitment to our acceptable use policy, applying a vigilance-first approach to work, supporting regulatory mandates, and using best practices to protect Freddie Mac from potential threats and risk. Employees exercise this responsibility by executing against policies and procedures and adhering to privacy & security obligations as required via training programs.

CA Applicants:  Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.

Time-type:Full time

FLSA Status:Exempt

Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.

This position has an annualized market-based salary range of $150,000 - $224,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.