Cybersecurity Risk Manager (Hybrid or Remote Work)

$138,000 - $206,000/Yr

Freddie Mac - McLean, VA

posted 10 days ago

Full-time - Mid Level
McLean, VA
Credit Intermediation and Related Activities

About the position

The Cybersecurity Risk Manager at Freddie Mac plays a crucial role in enhancing the company's cybersecurity and risk management capabilities. This position involves providing oversight and advisory services for the Information Security programs, developing enterprise-wide cybersecurity policies, and executing risk analytics to identify and manage risks effectively. The role supports the organization's mission to make homeownership and rental housing more accessible and affordable across the nation.

Responsibilities

  • Provide oversight and challenge function for the Information Security programs of the IT division and other lines of business.
  • Review Information Security operations, solutions, and architecture to identify risks and evaluate effectiveness.
  • Enhance and mature Risk Management practices by supporting the development of enterprise-wide cybersecurity policies and standards.
  • Provide oversight and advisory services to 1st line partners regarding standard requirements across various technologies.
  • Support the development and execution of controls to monitor cybersecurity compliance.
  • Develop effective and measurable metrics (KRI, KPI, KCI) to analyze data and identify trends or new risks.
  • Execute risk analytics and reporting.
  • Provide advisory consultation to lines of businesses and make recommendations to manage risk.
  • Collaborate with key risk areas, business partners, and IT counterparts to design action plans for Cybersecurity and IAM risk.
  • Lead program execution with documented project plans and expectations.
  • Provide status reports, escalation, and impediment resolution when needed.
  • Support the Director in leading and managing the team; mentor and guide team members.

Requirements

  • Bachelor's Degree and 8+ years of experience in IT security areas such as penetration testing, operations, threat intelligence, monitoring, vulnerability management, identity access management, or security engineering.
  • Formal big 4 Cybersecurity Risk Consulting, Audit or Assurance experience preferred.
  • Industry-leading Certifications preferred: CISSP, CISA, CRISC, CISM, CEH, and/or CIPT.
  • Prior experience in Cybersecurity Operational Risk Management and supporting CISO in deployment and sustainment of cybersecurity capabilities.
  • Knowledge of cloud migration, AI, security, and access management experience preferred.
  • Demonstrated proficiency in cybersecurity domains and working knowledge of industry security standards such as NIST or ISO.
  • Effective verbal, written, and interpersonal communication skills with strong attention to detail.

Nice-to-haves

  • Experience with IT, privacy data, and management practices/processes.
  • Self-motivated, proactive, and results-oriented problem solver.

Benefits

  • Competitive compensation
  • Market-leading benefit programs
  • Annual incentive program

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service