Director, Operational Risk (Technology And Security Risk Governance)

At Freddie Mac, our mission of Making Home Possible is what motivates us, and it's at the core of everything we do. Since our charter in 1970, we have made home possible for more than 90 million families across the country. Join an organization where your work contributes to a greater purpose.

Position Overview:

Are you looking to apply your extensive knowledge of Security Risk to the financial services industry? We are seeking a highly skilled risk Director with a proven understanding of the primary and secondary mortgage business. This onsite position in McLean, VA will lead the technology, security and governance activities for the Single-Family Portfolio & Servicing division. You will lead security risk oversight and control activities for the Single-Family division, collaborate with division leaders to assess risk, design and implement appropriate security measures and coordinate remediation efforts and consolidate the division's information risk profile.

Our Impact:

Our incident/crisis management team embedded within the business provides proactive and reactive measures to manage security threats and crises effectively, by identifying risks on business operations, data integrity and divisional reputation, and then activating incident response plans as appropriate.

Your Impact:

• Lead incident response efforts
• Develop and implement comprehensive information security protocols
• Collaborate with cross-functional teams to assess and mitigate security risks
• Stay abreast of the latest cybersecurity threats, trends, and best practices
• Investigate technology operational events and incidents
• Conduct counterparty risk assessments and audits to identify vulnerabilities and gaps in existing security risk and controls, and develop remediation plans as needed
• Provide communication and support to senior leadership
• Foster a culture of information security awareness and accountability
• Supervise a team of risk professionals through recruitment, training, mentoring, and performance management

Qualifications:

• 12+ years of experience working in and/or with information security, operational risk, compliance, or incident management with a focus on the financial services industry, preferably in the mortgage sector
• Bachelor's Degree in CS, IT, or a related field; or equivalent experience
• 4 years of management experience
• Relevant certifications (e.g., CISSP, CISM, CRISC) preferred, with knowledge of NIST Cybersecurity framework
• Solid understanding of cybersecurity principles, practices, and technologies, including but not limited to network security, endpoint protection, encryption, and identity and access management
• Understanding of the primary and secondary mortgage business, including regulatory requirements, privacy protocols and industry standards (e.g., Fannie Mae, Freddie Mac, CFPB)
• Proven track record of developing and implementing risk strategies and protocols in sophisticated, highly regulated environments
• Executive presence and superb communication skills, both written and verbal
• Ability to thrive in a fast-paced, dynamic environment and effectively multitask
• Ability to travel ~10% nationwide

Keys to Success in this Role:

• Strong leadership skills with the ability to build and empower cross-functional teams, drive consensus, and influence decision-making at all levels of the organization
• Highly motivated and energetic self-starter with solid organizational and time management skills
• Execution focused with proven initiative and personal accountability
• Critical thinking skills with a problem-solving mentality

Current Freddie Mac employees please apply through the internal career site.

We consider all applicants for all positions without regard to gender, race, color, religion, national origin, age, marital status, veteran status, sexual orientation, gender identity/expression, physical and mental disability, pregnancy, ethnicity, genetic information or any other protected categories under applicable federal, state or local laws. We will ensure that individuals are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

A safe and secure environment is critical to Freddie Mac's business. This includes employee commitment to our acceptable use policy, applying a vigilance-first approach to work, supporting regulatory mandates, and using best practices to protect Freddie Mac from potential threats and risk. Employees exercise this responsibility by executing against policies and procedures and adhering to privacy & security obligations as required via training programs.

CA Applicants: Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.

Time-type:Full time

FLSA Status:Exempt

Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.

This position has an annualized market-based salary range of $192,000 - $288,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.