Principal - Business Information Security Office

  • Reston, VA, USA
  • Full-time

Company Description

At Fannie Mae, futures are made. The inspiring work we do makes an affordable home a reality and a difference in the lives of Americans. Every day offers compelling opportunities to modernize the nation's housing finance system while being part of an inclusive team using new, emerging technologies. Here, you will help lead our industry forward, enhance your technical expertise, and make your career.

Job Description

As a valued contributor to our team, you will consult with management on best practices and recommendations for technology products and processes; assessing enterprise functional needs and implementing technology solutions to support; defining strategic outlook; planning, directing, or coordinating operational activities of the unit with the help of subordinate executives and staff managers

THE IMPACT YOU WILL MAKE
The Business Information Security - Technology Management - Principal role will offer you the flexibility to make each day your own, while working alongside people who care so that you can deliver on the following responsibilities:

  • Build and manage relationships with lines of business technology and risk leaders to ensure effective communication is maintained and understood.
  • Advise lines of business on cyber security matters based on the company's risk tolerance and information security strategy, as directed by the Chief Information Security Officer.
  • Act as a trusted advisor to Information Security by connecting services and control capabilities directly with the lines of business.
  • Keep the lines of business apprised of tactical and strategic information security risks and cyber security-related requirements, in addition to communicating Information Security initiatives, priorities, and remediation efforts.
  • Provide regular updates to executive leadership with the lines of business on the overall Information Security health and risk environment.
  • Lead a team of Information Security Consultants to provide subject-matter expertise to both lines of business and development teams, specifically in the areas of security, risk and compliance.
  • Educate and influence executive leadership and associates to effectively leverage security capabilities and solutions to mitigate risks and emerging threats.
  • Serve as an advisor and thought leader in Fannie Mae’s Information Security capabilities, policies, procedures and standards, awareness of and compliance with IT/Security related policies and standards.
  • Act as a change agent to shift security risk identification and proactive solutions left in enterprise processes, through consultation and coordination.
  • Assist with business continuity and disaster recovery plans as related to Information Security and assist with testing of plans and other scenario-based exercises.

Qualifications

THE EXPERIENCE YOU BRING TO THE TEAM

Minimum Required Experiences

  • Bachelor’s degree (or military experience) in computer/technical or business area.
  • At least 8 years of experience in Information Technology, performing Security Risk Assessments or Security Consulting.
  • At least 5 years of experience leading a technical team of Information Security professionals. 


Desired Experiences

  • Master’s degree or PhD in a related field
  • 10+ years of combined experience with Security Architecture, Engineer, Operations and Data Security
  • Demonstrable experience in securing public cloud environments and services (e.g. AWS, GCP, Azure)
  • Experience utilizing Agile methodologies within DevOps environments
  • Experience with data protection techniques and tools such as encryption, tokenization, cloud access security brokers
  • Maintain industry-recognized professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), and AWS Certified Solutions Architect

 

Skills

  • Develop and deliver strategic engagement plans to internal clients by utilizing expertise, industry experience, analysis and innovation in the areas of security, risk and compliance.
  • Educate and influence assigned division leadership and associates to effectively leverage security capabilities and solutions to mitigate risks and emerging threats.
  • Partner with technology teams to ensure information security risks are identified, assessed, mitigated and controlled.
  • Build and manage relationships with lines of business, technology and risk leaders to maximize engagement and ensure effective ongoing communication.
  • Advise division leadership on cyber security matters based on the company's risk tolerance and information security strategy.
  • Act as a trusted advisor to Information Security by connecting services and control capabilities directly with the lines of business.
  • Provide regular updates to division and COO leadership on the overall Information Security health and risk environment.
  • Serve as an advisor and thought leader in Fannie Mae’s Information Security capabilities, policies, procedures and standards, awareness of and compliance with IT/Security related policies and standards.
  • Facilitates effective communication and collaboration between division stakeholders and information security COE’s during incident response situations. 

Additional Information

The future is what you make it to be. Discover compelling opportunities at Fanniemae.com/careers.

Fannie Mae is an Equal Opportunity Employer, which means we are committed to fostering a diverse and inclusive workplace. All qualified applicants will receive consideration for employment without regard to race, religion, national origin, gender, gender identity, sexual orientation, personal appearance, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation in the application process, email us at [email protected]
 

 

REF5956R

Privacy Policy