Information Security - Technical Lead

Employer
Freddie Mac
Location
Reston, Virginia
Salary
Competitive
Posted
Nov 21, 2020
Closes
Nov 26, 2020
Ref
JR1219
Function
IT
Hours
Full Time
At Freddie Mac, you will do important work to build a better housing finance system and you'll be part of a team helping to make homeownership and rental housing more accessible and affordable across the nation.

Position Overview:

Are you someone with a passion for Information Security and have a strong background in finding vulnerabilities? We are seeking a Technical Lead to join our vulnerability hunting team.

Your Work Falls into Three Primary Categories:

Vulnerability Discovery
  • Scanning of infrastructure and network devices, operating systems, databases, and wireless to detect vulnerabilities and misconfigurations
  • Create custom scans and scan policies, tune settings for optimal performance and troubleshoot scan issues
  • Provide enhanced vulnerability analysis and contextual feedback to stakeholders for discovered vulnerabilities or misconfigurations.
  • Investigate false positive findings
  • Report metrics for scan coverage and discovered misconfigurations or misconfigurations
  • Deploy, maintain, and tune scanners to meet current and future needs
  • Troubleshoot issues with the scans, credentials, agents, policies
  • Update scan zones to include new network ranges


Baseline Security Configurations
  • Develop custom audit scripts for automated monitoring of approved Baseline Security Configurations (BSC) for servers, workstations, network devices, databases, etc.
  • Work with platform SMEs to ensure accuracy and completeness for the BSC scans
  • Design monitoring solutions for new and existing technologies to determine compliancy with published standards.
  • Tune scan policies for accuracy and speed


Develop Team Capabilities and Leadership
  • Generate innovative ideas and challenge the status quo
  • Develop scripts, automations, tools, or methodologies to enhance the team's processes and capabilities, and reduce toil
  • Create/update runbooks and SOP documentation
  • Participate in and actively support mentoring with other members of the team, and mentoring less experienced staff


Our Impact:

The vulnerability hunting team is responsible for continuous monitoring for vulnerabilities and mis-configurations across multiple environments, and technologies. These include local and cloud infrastructure, databases, endpoints, perimeter and others.
Your Impact:

Provide domain expertise in Vulnerability and Compliance Scanning for on-prem and cloud Infrastructure, as well as enhanced vulnerability analysis and contextual feedback to support the resolution of discovered vulnerabilities and facilitate risk awareness. In this role, the candidate will deploy and administer various scanning solutions or automations to ensuring completeness and maintain scan coverage.

Qualifications:
  • 8-10 years hands-on experience, working with security tools and performing vulnerability, and compliance scanning
  • Bachelor of Science in Engineering, Computer Science, Information Technology, or equivalent work experience
  • Must have expert knowledge of Linux and Windows operating systems, and cloud technologies
  • Must have advanced knowledge in networking and databases
  • Must have solid understanding of deploying and maintaining scanning infrastructure
  • Must be proficient with scripting languages - Python, Bash, PowerShell
  • Experience leading projects and initiatives
  • Required certifications: CISSP, AWS/GCP/Azure


Keys to Success in this Role:
  • Critical thinking and problem-solving skills
  • Good communication skills
  • Ability to work independently, as well as on a team of individuals with variety of skills and backgrounds
  • Innovative in providing solutions and loves new challenges
  • Detail oriented


Current Freddie Mac employees please apply through the internal career site.

Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you'll do important work for the housing finance system and make a difference in the lives of others.

We are an equal opportunity employer and value diversity and inclusion at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by applicable law. We will ensure that individuals with differing abilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.

Time-type:Full time

Job Category:Information Technology

FLSA Status:Exempt

Similar jobs