Explore opportunities for the next step in your career.
Position Overview:We are seeking an Information Security Tech Lead to join the Endpoint Security team within the Platform Security Technology department of the Information Technology Division. The Tech Lead is responsible for providing leadership, guidance and technical support for multiple endpoint security tools. The Tech Lead will have the opportunity to lead Security Engineers and provide technical guidance and direction.
Our Impact: We are a dynamic team that is tasked with providing endpoint protection and security configuration management to the enterprise!
Your Impact: LeadershipProviding guidance and assistance to junior engineers will be required.Supporting the retention and growth of existing engineers.Strong communication skills keeping leadership informed and aware.Technical mentor for a highly collaborative, technical savvy team of junior and midlevel engineers.Must be a self-starter that can effectively perform both independently and collaboratively as a strong team leader.ProcessProblem solving with repeatable processes and automation.Develop SOP's and Runbooks to promote successful operations and controls.Ensure processes reflect our technical obligations of system uptime and performance.Presentation of metrics and other attributes to convey accomplishments.Security Administration and OperationsInstall, configure and troubleshoot Endpoint antivirus/antimalware and other agent-based software on Windows desktops, as well as Windows and Unix servers.Apply patches and upgrades to clients, administrative tools, and utilities on a regular basis.Perform daily monitoring for integrity and availability of appliances, management servers, systems and processes which may also include reviewing system and application logs, and verifying services and jobs are running as expected.Establish and maintain operational, configuration and other process/procedures to ensure effectiveness of new and existing detective and preventative configuration policies.Provide support Management and IT Security Audit teams to provide answers, artifacts and solutions.Provide support to the Cyber Security Operations Center and Threat Detection Teams with recommendations and handling of their requests for changes, updates and improvements to endpoint policies.Coordinate with other infrastructure, engineering, and application project/support teams to ensure new policies/assets are deployed and issues impacting tools and systems are resolved quickly and effectively without adversely impacting the affected business systems.Augment production support team to ensure 24/7 coverage and operations. Responsibilities sometimes require working evenings and weekends, sometimes with little or no advanced notice.Coordinate with Information Security team to ensure solution assurance and compliance to security policy, procedures, standards and baseline security configurations.Understand and advocate IT Security standards, reference architectures.Demonstrate an understanding of malware, threats, vulnerabilities and the complete affect these could have in the environment.Communicate effectively with clients, vendors and leadership to identify needs and evaluate alternative technical solutions and strategies.Qualifications:8-10 years of relevant experience in IT Security.3-5+ years of leadership experience, preferably as a tech lead for multiple security efforts required.Must have experience with CrowdStrike.Familiar with industry security regulations and frameworks (MITRE Attack Framework, NIST, CIS CSC, etc.).Familiar with change management, approval meetings, controls.3-5+ years of experience in administration of security tools.A good understanding of Endpoint Protection, Malware Protection, HIPS, Host-based firewalls, File Integrity Monitoring, Data Loss Prevention, Security Configuration Management, Database Activity Monitoring, SaaS, and Cloud Security.Solid understanding of vulnerabilities vs threats vs risk.Working knowledge of communications ports, protocols and firewalls.The ability to search logs to troubleshoot and perform analysis. Building dashboards, setting up alerts and monitoring in the technology or in a SIEM using these logs.Working knowledge of cloud security for AWS, GCP, Azure.Must be organized with ability to multitask, work individually or together to troubleshoot, solve problems, solution and complete tasks to closure working on multiple technologies.Must have experience working on physical and virtual appliances. Configurations, Linux and Network commands.Some scripting and Python experience is a plus.Security Certifications or equivalent experience preferred.Keys to Success in this Role:Must be able to effectively perform both independently and cross-functionally as a strong team contributor.Can work to help model and mentor other team members.Strong communication.Leadership.Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you'll do important work for the housing finance system and make a difference in the lives of others.
We are an equal opportunity employer and value diversity and inclusion at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by applicable law.
Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.
This position has an annualized market-based salary range of $144,000 - $216,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.
#J-18808-Ljbffr
