Cloud Security Posture Architect – Technical Lead (Hybrid or Remote Work Schedule)

Position Overview:

The Cloud Security Posture Architect Technical Lead will collaborate the organizations security architecture team to validate the implementation of security controls within Lines of Business (LOB) systems and solutions. This role focuses on ensuring robust security measures across LOB projects and initiatives! This role will be directly involved in the validation of secure design of LOB applications and enterprise services in addition to the following:

• Work with the Project Team’s solution architects and technical team members to validate that security solution architectures are following the organization’s InfoSec policies, standards, non-functional requirements, reference architectures and patterns under the guidance of senior staff Domain Security Architects

• Identify security risks and provide recommendations, solutions, and options to best mitigate those risks

• Have advanced knowledge in cloud security services to evaluate security and compliance in a variety of cloud platforms

• Collect, interpret, evaluate, and validate business requirements, functions and processes associated with assigned projects

• Have a detailed understanding of industry standard Information Security control frameworks such as ISO 27001/27002, NIST, CIS and for cloud-specific control frameworks such as the Cloud Security Alliance (CSA) Cloud Control Matrix (CCM)

Our Impact:

This role ensures a robust and resilient operating environment that conforms to all regulatory, corporate and IT requirements! The Information Security Architect team aids in the validation of secure design in solutions and enterprise architecture. The extended coverage this position will provide is paramount to the success of Freddie Mac security architecture maturity.

Your Impact:

This role provides validation, oversight, consultation, advisory, controls design, compliance framework adherence and patterns documentation to the benefit of IT and the businesses.

Qualifications:

• 8-10 years of information technology experience, preferably within the financial services and/or mortgage industry

• Advanced working knowledge of Azure Security Center, AWS CloudWatch and CloudTrail

• Cloud security (IaaS, PaaS, and SaaS) across multiple cloud platforms such as Azure, AWS, and Google.

•  Demonstrate basic understanding the concepts and application of the following:
  o    Cloud Security Posture Management (CSPM)
  o    Cloud-Native Application Protection Platforms (CNAPP)

•  Demonstrate basic understanding the concepts and application of the following architecture and design principles and practices:
  o    Network security and segmentation
  o    Mobile device security (smartphones, tablets, iPads, etc.), to include Bring Your Own Device (BYOD)

• Basic understanding of one or more of the following technologies:
  o    Next Generation Firewalls
  o    External Secure Web Gateways and CASBs
  o    Network and Host-based IDS/IPS
  o    Security Information and Event Management (SIEM)
  o    Identity and Access Management (IAM)
  o    ADFS and other federated technologies, including Active Directory, SAML, OAuth, OIDC, and SSO integrations.

• AWS Certified Solutions Architect (Associated, Professional) - preferred

• AWS Certified Security – Specialty certification - preferred

• Google Professional Cloud Architect - preferred

• CISSP (+ ISSAP), CCSP - preferred

• CompTIA Security +, Associate of IC2 preferred

• BA/BS degree in Computer Science, Information Systems or a related technical field, or the equivalent combination of education and experience1+ years of information technology experience, preferably the infrastructure space

• SABSA (F1 & F2 minimum) are a plus

Keys to Success in this Role:

• A customer-focused demeanor

• Commit to execution

• Continuous improvement to work processes and documentation

• Experience within the Financial Services/Mortgage industries

Current Freddie Mac employees please apply through the internal career site.

Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you’ll do important work for the housing finance system and make a difference in the lives of others.

We are an equal opportunity employer and value diversity and inclusion at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by applicable law. We will ensure that individuals with differing abilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

CA Applicants:  Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.

Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.