Single Family F/I Credit Risk Senior Manager (Hybrid - 3 Days in Office)

At Freddie Mac, you will do important work to build a better housing finance system and you'll be part of a team helping to make homeownership and rental housing more accessible and affordable across the nation.

Position Overview:

Are you looking to apply your extensive knowledge of Cybersecurity Risk to the financial services industry? Single Family Division of Freddie Mac is seeking a highly skilled Cybersecurity Risk Senior Manager with a proven understanding of the primary and secondary mortgage business and third-party risk management. You will implement and execute third party cyber and information risk oversight and monitoring activities for the Single-Family division, collaborate with division leaders to understand third party cyber security posture, assess risk, and design, and implement appropriate security monitoring measures, coordinate remediation efforts, and consolidate the division's information risk profile. You will work in coordination and collaboration with the Chief Information Security Officer's team.

• Work closely with the Chief Information Security Officer (CISO) and implement third party oversight and monitoring strategy aligned with CISO objectives.
• Support Single-Family Third-Party incident response engagement and efforts.
• Implement effective Third-Party vulnerability management monitoring, threat intelligence analysis, and risk assessment processes.
• Conduct third party exams to evaluate the information security risk and develop remediation plans with Third parties to address weaknesses.
• Provide effective leadership, risk management and collaboration across the division and with CISO office.
• Stay abreast of the latest cybersecurity threats, trends, industry guidance, regulatory requirements and best practices.
• Continually assess areas for enhancement and incorporate lessons learned into current processes.
• Provide support to the team and leadership.
• Foster a culture of information security awareness and accountability across the Division.

• Minimum 10 years of experience working in and/or with information security, technology, threat intelligence, vulnerability management, Cybersecurity tools and technologies, and cyber risk with a focus on the financial services industry, preferably in the mortgage sector.
• Bachelor's or master's degree in computer science, Cyber Security, Information Technology, or a related field; advanced degree preferred or equivalent experience.
• Relevant certifications (e.g., CISSP, CISM, CRISC) preferred, with knowledge of NIST (National Institute of Standards and Technology) Cybersecurity framework.
• Solid understanding of cybersecurity principles, practices, and technologies, including network security, endpoint protection, encryption, and identity and access management.
• Knowledge of security policy/ manuals and other guiding policy documents
• Understanding of the primary and secondary mortgage business, including regulatory requirements, privacy protocols and industry standards (e.g., Fannie Mae, Freddie Mac, CFPB).
• Perform analysis of third-party Cyber Security, Privacy review findings
• Perform a security risk impact analysis and ensure security control accuracy and completeness.
• Proven record of managing team, performance, and priorities
• Proven record of accomplishment of implementing and executing risk strategies and protocols in sophisticated, highly regulated environments.
• Superb interpersonal presentation, communication skills, both written and verbal

• Strong collaboration, communication skills with the ability to build connections, relationships across the organization, result driven and effective.
• Highly motivated and energetic self-starter with solid organizational and time management skills
• Execution focused with proven initiative and personal accountability, and ownership.
• Critical thinking skills with a problem-solving mentality
• Strong coaching and mentoring skills
• Thinking and acting strategically
• Ability to manage priorities.
• Have passion for driving business, culture, and technology change in dynamic and complex operating environments.