Watch this video to learn more about Freddie Mac
Freddie Mac makes home possible for millions of families and individuals by providing mortgage capital to lenders. Benefits include:
Job Type
Job Details
At Freddie Mac, you will do important work to build a better housing finance system and you’ll be part of a team helping to make homeownership and rental housing more accessible and affordable across the nation.
Freddie Mac is seeking a Threat Modeling engineer l to join our Information Security Architecture team. The Threat Modeling Engineer will partner closely and collaboratively with Enterprise Architecture (EA), Developers, Platform Owners, and other areas of the firm to help ensure Freddie Mac provides secure services and solutions
Our Impact:Assess Security Risk from an Architectural Perspective and Apply a Risk-Based Approach to Security
Your Impact:Develop training material for how to engage the Threat Management service, make use of technologies, and interpret findings.
Drive beneficial security change into the business through supporting Developers with creation of threat models for their applications and remediation of potential threats, balancing risk against business need.
Support the Security Architecture team to develop and mature an Application Threat Modeling Program by defining processes, procedures, controls, KRI’s/KPI’s, etc., that identify threats early in the development process reducing risks prior to deployment.
Work with the InfoSec functional teams in the development of the Information Security strategy and roadmap, including and with focus on Threat Modeling; liaison and consult with Enterprise Architecture, IT and the business for ongoing input and awareness
Advise and Contribute to Strategy and Roadmaps
2-5 years related experience in Cyber Security, Insider Threat, Intelligence Community, Federal Law Enforcement, or a related field
Bachelor’s Degree OR a related discipline or an equivalent combination of education and/or work experience
Strong understanding of access controls and authentication mechanisms, PKI, and cryptography
Demonstrated experience developing technical threat models
Demonstrated experience performing security code reviews and explaining results to project teams
Previous or active experience with bug bounty programs
Experience working in Sprint or Agile environments
Strong understanding of protocols, networking, firewalls, caching, VIPs, proxies, web applications, and database systems
Experience with AWS and Azure or working knowledge of GCP
Knowledge of several of the following programming languages; Java, C#, Python, C++, Node.JS, JavaScript
Knowledge in one or several of the following Frontend frameworks; React, Angular, Ember, Vue
Minimum of 2 years’ experience working as an Information Security Threat Modeling subject matter expert at a senior level
Minimum of 2 years’ experience working as an Information Security Professional, preferably within the architecture or engineering disciplines
Passion for leading change and ability to bring others along
(Desirable) Able to provide references to CVEs filled, Bug Bounty Username, or GitHub repositories
(Desirable) One or more security-related certifications associated with AWS, GCP, or Azure
(Desirable) CISSP (+ ISSAP), CCSP, CEH, OSCP, CSSLP
Strong written and verbal communication skills
Able to mentor and guide team members
Self-starter, candidate must be able to anticipate tasks and take action
Excellent presentation, program management and relationship management skills
Ability to work with others
Attention to detail
Current Freddie Mac employees please apply through the internal career site.
Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you’ll do important work for the housing finance system and make a difference in the lives of others.
We are an equal opportunity employer and value diversity and inclusion at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by applicable law. We will ensure that individuals with differing abilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
CA Applicants: Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.
Time-type:Full timeFLSA Status:ExemptFreddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.
This position has an annualized market-based salary range of $88,000 - $132,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.Careers with Impact Our mission of Making Home Possible is what motivates us, and it’s at the core of everything we do. Since our charter in 1970,... Read more