Cyber Security Technical Lead
Headquarters 2, United States
Full Time Senior-level / Expert USD 150K - 224K
Freddie Mac
We are supporting America's homeowners and renters while serving as a stabilizing force in the U.S. housing finance system.At Freddie Mac, our mission of Making Home Possible is what motivates us, and it’s at the core of everything we do. Since our charter in 1970, we have made home possible for more than 90 million families across the country. Join an organization where your work contributes to a greater purpose.
Position Overview:
We are seeking a Cybersecurity Tech Lead to join the Credential Management team within the Information Security of the Enterprise Operations and Technology Division. Technical lead will provide engineering, automation, implementation and operations of privileged access management and credential management technologies. This role also includes a monthly on-call rotation and will assist with level 3 troubleshooting.
Our Impact:
As a Technical Lead, you will be part of the Cybersecurity Engineering Team at Freddie Mac and will help fulfill the Information Security department’s vision of reducing information risk by ensuring and enhancing the Confidentiality, Availability, and Integrity of Information systems at Freddie Mac. You will lead the development and delivery of our technical solutions related to Privileged Access Management and Credential Management. You will build, develop, and maintain relationships with internal and external customers, and vendors to formulate remediation solutions for issues related with Cybersecurity.
Your Impact:
Technical Leadership and Engineering Management:
Enhance privileged access management capability of blending the needs from enterprise wide technical & business groups
Lead, design and collaborate with architecture teams to align with zero-trust roadmap and architecture standards.
Mentor Engineers to ensure engagement and advancement of the overall Team
Develop best practices for engineering and administration of PAM and Credential Management solutions.
Continuous process improvement and automation
Always start from a view of automating as much of the overall process as possible.
On a continuous basis review task, increase efficiency, and mark tasks for automation/transfer to delivery team.
Utilize and drive project milestones through Jira to ensure clear communication/expectations with leadership and stakeholder.
Engineering-Driven Compliance & Best Practices:
Ensure solutions align with regulatory and compliance requirements – specifically NIST, while maintaining scalability to meet evolving business needs
Engineer solutions with the understanding FM is a highly regulated firm which requires control validation by non-technical team members.
Assist in audits and ensure compliance with security standards.
Utilize a problem-solving approach to design solutions that not only address immediate risks but also future-proof solutions/defenses against emerging threats.
Collaboration and Stakeholder Engagement:
Collaborate with IT, Operations, End User Support, and software engineering teams to integrate security while keeping users experience as a key function of the solution.
Work closely with senior leadership on the selection, design and delivery blueprint of new security technologies and tools to address evolving threat landscape
Qualifications:
8+ years of professional IT experience with extensive experience in modernizing privileged access management at large enterprises along with credential and secrets management
4+ years of experience implementation and administration of Privileged Access Management, Credential Management, Privileged Session management, and Privileged Remote Access.
Deep understanding of credential and secrets management, along with the ability to implement cutting-edge solutions such as Just-In-Time entitlements and zero-standing privileges using industry-leading technologies.
Experience and understanding of Identity life cycle management tools.
Experience and understanding of SEIM configuration and management
Experience and understanding of platforms Such as Windows, Linux, Databases, and Mainframe
Experience in implementing secrets management and PAM in hybrid and multi-cloud environments (AWS, GCP and Azure)
Experience of AWS security and CFT
Experience on Firewalls, VPNs and Network Segmentation
Added advantage on Experience with infrastructure automation platform Ansible, terraform
Experience with windows and Networking troubleshooting
Ability to prioritize work without management direction and provide clear, documented status updates to the management and the team.
Advanced problem-solving skills and ability to work effectively under tight deadlines.
Experience in supporting encryption and/or security appliance devices.
Bachelor’s degree in information technology, engineering, computer science, related field, or equivalent experience.
Keys to Success in this Role:
Excellent collaborator and partner
Spirit for innovation and ability to work in the space of “no longer” and “not yet”
Ability to quickly comprehend the functions and capabilities of new technologies
Proactive in nature with security and customer satisfaction a top priority
Innovative in providing solutions, likes to take on challenges with calculated risk
Current Freddie Mac employees please apply through the internal career site.
We consider all applicants for all positions without regard to gender, race, color, religion, national origin, age, marital status, veteran status, sexual orientation, gender identity/expression, physical and mental disability, pregnancy, ethnicity, genetic information or any other protected categories under applicable federal, state or local laws. We will ensure that individuals are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
A safe and secure environment is critical to Freddie Mac’s business. This includes employee commitment to our acceptable use policy, applying a vigilance-first approach to work, supporting regulatory mandates, and using best practices to protect Freddie Mac from potential threats and risk. Employees exercise this responsibility by executing against policies and procedures and adhering to privacy & security obligations as required via training programs.
CA Applicants: Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.
Time-type:Full timeFLSA Status:ExemptFreddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.
This position has an annualized market-based salary range of $150,000 - $224,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.Tags: Ansible Audits Automation AWS Azure Cloud Compliance Computer Science Encryption Firewalls GCP Jira Linux Mainframe NIST Privacy Terraform VPN Windows
Perks/benefits: Career development Competitive pay Equity / stock options
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.