Cloud Security Architect - Advisor (Remote)

Reston, VA, United States

Applications have closed

Fannie Mae

We facilitate equitable and sustainable access to homeownership and quality, affordable rental housing across America.

View all jobs at Fannie Mae

Company Description

At Fannie Mae, futures are made. The inspiring work we do helps make a home a possibility for millions of homeowners and renters. Every day offers compelling opportunities to use tech to tackle housing’s biggest challenges and impact the future of the industry. You’ll be a part of an expert team thriving in an energizing, flexible environment. Here, you will grow your career and help create access to fair, affordable housing finance.

Job Description

As a valued contributor to our team, you will advise team members on the design and processes for implementation of components of technological structures. In this role, you will create solutions with a process-driven view, as well as devise processes for maintaining and/or updating existing structures.

THE IMPACT YOU WILL MAKE
The Cloud Security - Architecture - Advisor role will offer you the flexibility to make each day your own, while working alongside people who care so that you can deliver on the following responsibilities:

  • Apply advanced skills, knowledge, and/or experience to lead modeling, analysis, and planning projects.
  • Translate functional requirements into technical solutions to meet customer needs by applying advanced skills, knowledge, and experience.
  • Maintain existing structures and collaborate with management to define governance processes.
  • Perform modeling, analysis, and planning to solve technical business problems and inform the team's technical direction.

Qualifications

Minimum Required Experience

  • 6 years

Certifications

  • AWS Solution Architect Associate or Professional is a must
  • AWS Security Specialty is a must
  • CISSP is desirable
  • Any other certifications like CompTIA Security+, CSA, Azure Security, GCP Security are bonus

Desired Experiences

  • Bachelor degree or equivalent
  • 5+ Years of experience in Cyber Security field as an Information Security Architect or Cloud Security Architect 
  • 4+ years of experience in AWS as a Cloud Security Architect/Engineer and must be certified in the cloud technologies/infrastructures
  • Preferred industry recognized experience in security (e.g., CISSP, CCSK, CISA, CISM, CEH)
  • Minimum of 5 years of experience in IT security risk assessments and related frameworks (e.g., NIST 800 series, ISO 27000 series, IT General Controls
  • Strong knowledge of the AWS Infrastructure services.
  • Strong communication, proactive methods for problem solving, strong documentation and collaboration skills across the enterprise.  
  • Excellent coordination skills and must be detail oriented 

 

Key Areas of Responsibility

  • Partner with Enterprise/Portfolio Architecture team and Business Units development squads to collaboratively develop security architectures/designs leveraging approved patterns that ensure applications migrating from on-premises to Cloud, achieving high standards of security practices and compliance. 
  • Drive the development and adoption of cloud security standards, best practices, and technologies within Enterprise IT infrastructure 
  • Liaise on security-related issues with internal business stakeholders, InfoSec, Enterprise Architecture, and application development squads 
  • Work to develop, enhance and document security architecture, security policies, patterns, procedures, guidelines, and standards required to design cloud-based solutions 
  • Educate application, portfolio and solution architects on secure solution design and industry best security practices 
  • Work on assessments of compliance and standards including and not limited to NIST, FedRAMP, FIPS, etc. 
  • Support threat modeling and update application security architecture as needed.  
  • Support application development squads with Security implementations and issues  

  

Skills

  • Serve as an expert in Fannie Mae’s Information Security capabilities, solutions policies, procedures, and standards.
  • Act to apply NIST frameworks on all cloud patterns, capabilities, and application migrations
  • Influence technical patterns and capabilities to apply security and cloud policy to shift left in the development processes
  • Act as a central point of contact for all conceptual knowledge of regulations for PCI, Sarbanes-Oxley, GLBA, and FISMA
  • Responsibilities include setting the compliance strategy for infrastructure and application build, deploy, monitor, and operate applications.
  • Candidate should have architected applications at scale on modern cloud native architectures (AWS).
  • The candidate needs expertise to architect cloud native infrastructure using containerization and microservices transformation in application APIs and address platform operational security concerns.
  • Plan and document design methods for the optimization and integration of various technology platforms, tools, policies, and principles that lead to target state implementation with cloud policy and compliance.

 

Tools

  • Deep Knowledge in containerization of applications, design, and deployment
  • Skilled in Amazon Web Services (AWS) offerings, development, and networking platforms
  • Experience with Agile Tools and methodologies
  • Experience in object-oriented programming preferrable JAVA, Python, etc.,
  • Knowledge of storage software platforms such as NetApp, Nimble, and Pure Storage
  • Knowledge of ITSM Tools e.g., ServiceNow to manage digital workflows
  • Experience using APIs for developing or programming software
  • Skilled in CICD Tools and Pipelines
  • Knowledge of virtualization software such as Microsoft Hyper-V, VMWare vSphere, or Citrix XenDesktop.

 

Nice-to-Haves

  • Cloud agnostic security architecture experience a plus 
  • Container Security experience to protect container workloads during build and run-time 
  • API Security architecture experience with industry standard API Gateways  
  • Security engineering/administration background leveraging SIEM, Network firewalls, host-based security, and security configuration 
  • The group of skills related to Security including designing and evaluating security systems, identifying security threats, securing computers, assessing vulnerability, etc. 
  • The group of skills related to Relationship Management including managing and engaging stakeholders, customers, and vendors, building relationship networks, contracting, etc. 
  • Skilled in presenting information and/or ideas to an audience in a way that is engaging and easy to understand 
  • The group of skills related to Risk Assessment and Management including evaluating and designing controls, conducting impact assessments, identifying control gaps, remediating risk, etc. 
  • Experience identifying and determining levels of risk to an organization's networks and systems using cybersecurity techniques  
  • Working with people with different functional expertise respectfully and cooperatively to work toward a common goal 
  • Skilled in cloud technologies and cloud computing 
  • The group of skills related to Influencing including negotiating, persuading others, facilitating meetings, and resolving conflict 

 

Additional Information

The future is what you make it to be. Discover compelling opportunities at careers.fanniemae.com.

Fannie Mae is an Equal Opportunity Employer, which means we are committed to fostering a diverse and inclusive workplace. All qualified applicants will receive consideration for employment without regard to race, religion, national origin, gender, gender identity, sexual orientation, personal appearance, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation in the application process, email us at careers_mailbox@fanniemae.com.
 

The hiring range for this role is set forth on each of our job postings located on Fannie Mae's Career Site. Final salaries will generally vary within that range based on factors that include but are not limited to, skill set, depth of experience, certifications, and other relevant qualifications. This position is eligible to participate in a Fannie Mae incentive program (subject to the terms of the program). As part of our comprehensive benefits package, Fannie Mae offers a broad range of Health, Life, Voluntary Lifestyle, and other benefits and perks that enhance an employee’s physical, mental, emotional, and financial well-being. See more here.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  3  0  0

Tags: Agile APIs Application security AWS Azure CCSK CEH CISA CISM CISSP Citrix Cloud Compliance CompTIA FedRAMP Finance Firewalls FISMA GCP GLBA Governance Hyper-V ISO 27000 IT infrastructure Java Microservices NIST NIST Frameworks Python Risk assessment SIEM Strategy VMware

Perks/benefits: Career development Flex hours Health care Salary bonus

Regions: Remote/Anywhere North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.