McLean, Virginia, USA
3 days ago
Cybersecurity Risk Manager (Hybrid or Remote Work)

At Freddie Mac, you will do important work to build a better housing finance system and you’ll be part of a team helping to make homeownership and rental housing more accessible and affordable across the nation.

Position Overview:

Are you passionate about cybersecurity and technical risk? We can offer an exciting career opportunity that allows you to do rewarding work with the newest technologies, while growing your cybersecurity and risk management skillsets!

**This position can be performed from a Remote Location in the U.S., but must be within a 2-hr time zone differential from EST.**

**Travel expected approximately once per quarter to HQ in McLean, VA, if Remote. **
 

Our Impact:

As part of Freddie Mac’s Enterprise Risk Management (ERM), the Information Risk Management Team provides 2nd line oversight of the company’s Cybersecurity and Identity Access Management (IAM) programs.

We are looking for a team member to support the development, validation, and monitoring of cyber security capabilities.

Your Impact:

Cybersecurity

As a subject matter expert of the Cybersecurity risk domain, provide oversight and challenge function for the Information Security programs of the IT division and other lines of business

Review the Information Security operations, solutions and architecture to identify risks, evaluate effectiveness and completeness of the cybersecurity capabilities and report the findings for enhancement and opportunities

Enhance and mature Risk Management practices by supporting the development of enterprise-wide cybersecurity policies and standards

Provide oversight and advisory services to1st line partners regarding the application of standard requirements across a wide variety of technologies to manage risk

Support the development and execution of controls to monitor cybersecurity compliance and drive organizational change

Develop effective and measurable metrics (KRI, KPI and KCI) to analyze data and proactively identify trends or new/emerging risks

Execute risk analytics and reporting

Provide advisory consultation to lines of businesses and make course of action recommendations to manage risk

Oversight

Effectively challenge our 1st line of defense technology teams while collaborating with the 3rd line (Internal Audit) and internal 2nd line partners.

Collaborate with key risk areas, business partners, and IT counterparts to design action plans to address Cybersecurity and IAM risk

Autonomously lead program execution with documented project plans, expectations and schedule

Provide status reports, escalation and impediment resolution when needed

Support the Director in leading and managing the team; mentor and guide team members

Qualifications:

Bachelor’s Degree and 8+ year working in and/or auditing IT security areas such as penetration testing, operations, threat intelligence, monitoring, vulnerability management, identity access management, Keys and Certificate Management or security engineering in large enterprises

Formal big 4 Cybersecurity Risk Consulting, Audit or Assurance experience preferred

Some industry leading Certifications preferred: CISSP, CISA, CRISC, CISM, CEH, and/or CIPT

Prior experience in Cybersecurity Operational Risk Management, supporting CISO in deployment and sustainment of cybersecurity capabilities, and previous big four experience preferred

Knowledge of cloud migration, AI, security and access management experience preferred

Demonstrate proficiencies in above stated cybersecurity domains

Working knowledge of industry security standards and guidance such as NIST or ISO

Capable of working independently and with a collaborative team

Deliver effective verbal, written and interpersonal communication skills with strong attention to detail

Keys to Success in this Role:

Think broadly and analytically, developing solutions in an ambiguous and fast paced environment

Ability to understand and work with a diverse group of partners within all lines of defense

Demonstrable experience with IT, privacy data and management practices/processes

Self-motivated, pro-active and results oriented problem solver; able to prioritize without heavy supervision

Current Freddie Mac employees please apply through the internal career site.

Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you’ll do important work for the housing finance system and make a difference in the lives of others.

We are an equal opportunity employer and value diversity and inclusion at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by applicable law. We will ensure that individuals with differing abilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

CA Applicants:  Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.

Time-type:Full time

FLSA Status:Exempt

Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.

This position has an annualized market-based salary range of $138,000 - $206,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.
Confirm your E-mail: Send Email