Network Security Engineer Technical Lead

At Freddie Mac, our mission of Making Home Possible is what motivates us, and it’s at the core of everything we do. Since our charter in 1970, we have made home possible for more than 90 million families across the country. Join an organization where your work contributes to a greater purpose.

Position Overview:

We are seeking a Network Security Engineer Tech Lead to join the Security Perimeter team within the Enterprise Network Services of the Information Technology Division. The Network Security Engineer Tech Lead will provide engineering and automation of Firewall/Web Application Firewall

on-prem and in the cloud. Other opportunities include automation through scripting, companywide new application implementation and other secure perimeter activities for the Freddie Mac infrastructure and applications across multi-site enterprise cloud and data center environments. This role also includes a monthly on-call rotation and will assist with level 3 troubleshooting.

Our Impact:

We protect the firm internally and externally by engineering and operating network security services enterprise wide.

We run and improve network security services and platforms, collaborate with teams and leadership within IT and with business partners to advance our technical capabilities and provide network security solutions that drive business results

Your Impact:

Technical Leadership and Engineering Management:

• Build a network capability of blending the needs from enterprise wide technical & business groups into a product road map

• Lead, design and collaborate with architecture teams to align with network security services architecture standards.

• Focus on delivering functional blueprints based on patterns approved by and collaborated with Infrastructure Architects

• Mentor Engineers to ensure engagement and advancement of the overall Team

• Develop best practices for engineering and deploying network security services.

Create and maintain a process and automation library.

• Always start from a view of automating as much of the overall process as possible.

• On a continuous basis review task, increase efficiency, and mark tasks for automation/transfer to delivery team.

• Utilize and drive project milestones through Jira to ensure clear communication/expectations with leadership and stakeholder.

Engineering-Driven Compliance & Best Practices:

• Ensure solutions align with regulatory and compliance requirements – specifically NIST, while maintaining scalability to meet evolving business needs

• Engineer solutions with the understanding FM is a highly regulated firm which requires control validation by non-technical team members.

• Utilize a problem-solving approach to design solutions that not only address immediate risks but also future-proof network defenses against emerging threats.

Collaboration and Stakeholder Engagement:

• Collaborate with IT, Operations, End User Support, and software engineering teams to integrate security into every layer while keeping users experience as a key function of the solution.

• Work closely with senior leadership on the selection, design and delivery blueprint of new network security technologies and tools to address evolving threat landscape

Qualifications:

• Bachelor’s degree in information technology, engineering, computer science, related field, or equivalent experience.

• 8+ years of professional IT experience with implementation and administration of any firewalls and other secure perimeter applications

• Proficiency in scripting/programming languages Python ,Perl, Yaml ,powershell

• Experience of AWS security and CFT

• Experience on VMware NSX Distributed Firewall (DFW),Prisma Access ( Global Protect) ,Micro-segmentation /Zero trust

• Added advantage on Experience with infrastructure automation platform Ansible ,terraform

• Added advantage on Knowledge of CI/CD pipeline

• Linux skills

• Experience with Networking and troubleshooting

• Ability to prioritize work without management direction and provide clear, documented status updates to the management and the team.

• Advanced problem-solving skills and ability to work effectively under tight deadlines.

• Experience in supporting encryption and/or security appliance devices.

Keys to Success in this Role:

• Excellent collaborator and partner

• Spirit for innovation and ability to work in the space of “no longer” and “not yet”

• Ability to quickly comprehend the functions and capabilities of new technologies

• Proactive in nature with security and customer satisfaction a top priority

• Innovative in providing solutions, likes to take on challenges with calculated risk

Current Freddie Mac employees please apply through the internal career site.

We consider all applicants for all positions without regard to gender, race, color, religion, national origin, age, marital status, veteran status, sexual orientation, gender identity/expression, physical and mental disability, pregnancy, ethnicity, genetic information or any other protected categories under applicable federal, state or local laws. We will ensure that individuals are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

A safe and secure environment is critical to Freddie Mac’s business. This includes employee commitment to our acceptable use policy, applying a vigilance-first approach to work, supporting regulatory mandates, and using best practices to protect Freddie Mac from potential threats and risk. Employees exercise this responsibility by executing against policies and procedures and adhering to privacy & security obligations as required via training programs.

CA Applicants:  Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.

Time-type:Full time

FLSA Status:Exempt

Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.

This position has an annualized market-based salary range of $150,000 - $224,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.