IT Risk Professional

Freddie Mac
McLean, Virginia
Jan 24, 2021
Jan 26, 2021
Full Time
At Freddie Mac, you will do important work to build a better housing finance system and you'll be part of a team helping to make homeownership and rental housing more accessible and affordable across the nation.

Position Overview:
Freddie Mac's Information Technology Division exists to enable and transform Freddie Mac's business. We provide systems and technology that benefit the enterprise, customers, employees, and our business partners. The IT Division seeks a Risk & Controls Professional to manage information security risk and activities with respect to the firm's operations. The candidate will be part of a team that has an extensive coordination role across the three lines of defense. This position requires demonstrated understanding and experience with information security risk management and controls, effective communications, persistence, and well-developed organizational skills.

Your Work Falls into Three Primary Categories:

IT Operational Risk Management Framework
  • Support IT division's information security risk and control priorities, as a member of the IT Risk Management team and Freddie Mac's first line of defense (1LOD)
  • Support implementation of risk management efforts to reduce risk to Freddie Mac Information Security program business processes in the areas of identity and access management, cybersecurity, threat and vulnerability management and security assurance, security architecture and capability governance, and to strengthen controls that reduce risk
1st LOD Operational Risk Management Oversight
  • Support IT Division business process reporting (BPR)
  • Track, monitor and report on risk and control issues
  • Coordinate with management on information security issue remediation
  • Assist with preparation of monthly/quarterly key stakeholder meeting materials
  • Coordinate audits and exams; includes managing action plans to ensure they are completed timely and accurately
  • Create clear and concise documentation
  • Support the development of communication and training materials
  • Assist with stakeholder coordination and relationship management
Information Security Process, Risk, and Controls
  • Advise information security process and control owners on process design, control narratives, and related documentation
  • Support information security process owners on process and control design, and execution testing
  • Support information security leadership on completion of risk assessments to information security processes for quarterly IT Risk and Control Self-Assessment Process, for emerging risks, and for issue management

Qualifications :
  • Bachelor's degree in Finance, Accounting, IT, Management or equivalent work experience
  • 2-4 years of risk, control, compliance, or operational risk experience in the financial services industry
  • Experience with information security risk management, security control frameworks and standards (ex: NIST CSF, COBIT, FFIEC)
  • Experience with Sarbanes-Oxley (SOX) control testing
  • CISA, CISM, CRISC, CPA, CIA, PMP, CISSP or other relevant professional certification

Keys to Success in this Role:
  • Focus on partnership: What is right for the company, not just my own area
  • Drive for Execution: Focus on real results rather than the appearance of results (i.e., be good, not just look good)
  • Customer Focus (Internal and External): Personally engage with customers to learn their needs

Current Freddie Mac employees please apply through the internal career site.

Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you'll do important work for the housing finance system and make a difference in the lives of others.

We are an equal opportunity employer and value diversity and inclusion at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by applicable law. We will ensure that individuals with differing abilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit and register with our referral code: MAC.

Time-type:Full time

Job Category:Risk

FLSA Status:Exempt

Similar jobs