Information Security, Senior

Freddie Mac
McLean, VA
Mar 15, 2019
Mar 15, 2019
Full Time
The Business Information Security Lead (BISL) / Information Security, Senior will work closely with the Line of Businesses (LOB) to develop a strong understanding of the business in order to have specialized information security risk-based discussions. This relationship will ensure a focus on the right Information Security (IS) risk priorities. The BISL Senior will also act as the day-to-day executive providing guidance on information security topics, policies, and controls. The ideal candidate will be a security specialist with very strong business acumen who can bridge the gap between business and technology and can understand operational impact.

Responsibilities include:
  • Work with the relevant Business Unit to ensure that their security, risk and privacy requirements are fulfilled through a strong understanding of the business unit's operational needs.
  • Support business units with their disclosure and recognition of control issues, including the review of all evidence to ensure that issues are managed to consistently high standards.
  • Driving execution of information security risk process to assess proposed technologies within policy, standard, risk and governance frameworks.
  • Providing oversight and review of vulnerability assessment for applications and infrastructure.
  • Assist with information security reviews of vendors & third parties.
  • Advise the relevant business unit as to their risks and issues associated with information and cyber security.
  • Assist with the resolution of security and risk issues.
  • Provide reporting and assessments to the business units as required.
  • Support the larger team in the delivery of information and cyber security, and risk management to the business
  • Identification and specification of appropriate information security training and awareness programs.
  • Coordination of information security incidents cross functionally.
  • Provide technical security advice on security related infrastructure, technologies, and services to ensure satisfaction of information security requirements.
  • Engage with cross-sector, risk teams in the review and reengineering of key controls and processes to effectively and efficiently manage IS issues.
  • Contribute to, interpret and disseminate IS policy, standards and awareness communications throughout the business units.
  • Lead IS forums, such as working groups, and other initiatives/programs as assigned.
  • Work with risk management teams in presenting recommendations for improvement to technology to subject matter experts and management.
  • Additional ad-hoc IS & Risk related initiatives and projects.


  • 5+ years of combined IT and security work experience with broad exposure to infrastructure/network and legacy environments.
  • Expert knowledge of security issues, techniques and implications across all existing computing platforms.
  • Knowledge of SOX, ISO and NIST standards mandatory.

Preferred Skills

  • Bachelor degree in computer science, information systems or other related field preferred but not required.
  • CISSP, CISM, CEH or CISA preferred.
  • Strong written and verbal communication skills with the ability to present ideas to multiple audiences.

Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you'll do important work for the housing finance system and make a difference in the lives of others. Freddie Mac is an equal opportunity and top diversity employer. EOE, M/F/D/V.

Similar jobs