Freddie Mac
Seller/Servicer Information Security Risk Oversight Senior
Freddie Mac, Mc Lean, Virginia, us, 22107
Seller/Servicer Information Security Risk Oversight Senior
At Freddie Mac, our mission of Making Home Possible is what motivates us, and it’s at the core of everything we do. Since our charter in 1970, we have made home possible for more than 90 million families across the country. Join an organization where your work contributes to a greater purpose.
Position Overview We are seeking a highly skilled and motivated individual to join our Seller/Servicer Information Security Risk Oversight (Cyber) team. In this key role, you will be responsible for evaluating and monitoring the information security risk profiles of third‑party sellers and servicers. You will ensure compliance with all relevant regulatory requirements and play an active part in developing and supporting risk mitigation strategies to safeguard our organization.
Responsibilities
Conduct thorough risk assessments of seller/servicer information security practices, with a focus on data protection, cyber risk, and regulatory compliance.
Develop and maintain robust frameworks and methodologies for overseeing and evaluating third‑party information security risks.
Collaborate with cross‑functional teams—including IT, Legal, Compliance, and Enterprise Third Party Oversight (ETPO)—to identify, assess, and address risks associated with seller/servicer relationships.
Monitor ongoing risk exposure and performance, delivering regular reports and actionable insights to senior management.
Support the implementation of risk mitigation strategies and remediation plans for identified vulnerabilities.
Stay abreast of industry trends, emerging threats, and regulatory changes affecting information security risk management.
Lead or contribute to special projects aimed at enhancing the risk oversight program.
Qualifications
Bachelor’s degree in finance, Risk Management, Information Security, or a related field preferred.
5–7 years’ experience in credit risk, information security risk management, or third‑party risk oversight within the financial services sector.
Strong understanding of regulatory frameworks (such as FFIEC, GLBA, GDPR) and industry standards (such as NIST, ISO 27001).
Demonstrated expertise in conducting risk assessments and developing risk oversight methodologies.
Outstanding analytical, communication, and interpersonal skills.
Professional certifications (e.g., CISSP, CISM, CRISC, CRCM) are highly desirable.
Keys to Success in this Role
Strategic vision to guide risk management initiatives and ensure alignment with enterprise objectives.
Strong organizational and time management skills to manage multiple priorities and meet critical deadlines.
Exceptional collaboration skills to build partnerships across technology, business, and governance functions.
Advanced analytical skills to evaluate risks and provide actionable insights.
Ability to drive program development and foster continuous improvement.
Flexibility and adaptability to thrive in a dynamic, evolving environment.
Compensation and Benefits This position has an annualized market‑based salary range of $106,000 – $160,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.
Current Freddie Mac employees please apply through the internal career site.
Equal Employment Opportunity Statement We consider all applicants for all positions without regard to gender, race, color, religion, national origin, age, marital status, veteran status, sexual orientation, gender identity/expression, physical and mental disability, pregnancy, ethnicity, genetic information or any other protected categories under applicable federal, state or local laws. We will ensure that individuals are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
CA Applicants:
Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
A safe and secure environment is critical to Freddie Mac’s business. This includes employee commitment to our acceptable use policy, applying a vigilance‑first approach to work, supporting regulatory mandates, and using best practices to protect Freddie Mac from potential threats and risk. Employees exercise this responsibility by executing against policies and procedures and adhering to privacy & security obligations as required via training programs.
#J-18808-Ljbffr
Position Overview We are seeking a highly skilled and motivated individual to join our Seller/Servicer Information Security Risk Oversight (Cyber) team. In this key role, you will be responsible for evaluating and monitoring the information security risk profiles of third‑party sellers and servicers. You will ensure compliance with all relevant regulatory requirements and play an active part in developing and supporting risk mitigation strategies to safeguard our organization.
Responsibilities
Conduct thorough risk assessments of seller/servicer information security practices, with a focus on data protection, cyber risk, and regulatory compliance.
Develop and maintain robust frameworks and methodologies for overseeing and evaluating third‑party information security risks.
Collaborate with cross‑functional teams—including IT, Legal, Compliance, and Enterprise Third Party Oversight (ETPO)—to identify, assess, and address risks associated with seller/servicer relationships.
Monitor ongoing risk exposure and performance, delivering regular reports and actionable insights to senior management.
Support the implementation of risk mitigation strategies and remediation plans for identified vulnerabilities.
Stay abreast of industry trends, emerging threats, and regulatory changes affecting information security risk management.
Lead or contribute to special projects aimed at enhancing the risk oversight program.
Qualifications
Bachelor’s degree in finance, Risk Management, Information Security, or a related field preferred.
5–7 years’ experience in credit risk, information security risk management, or third‑party risk oversight within the financial services sector.
Strong understanding of regulatory frameworks (such as FFIEC, GLBA, GDPR) and industry standards (such as NIST, ISO 27001).
Demonstrated expertise in conducting risk assessments and developing risk oversight methodologies.
Outstanding analytical, communication, and interpersonal skills.
Professional certifications (e.g., CISSP, CISM, CRISC, CRCM) are highly desirable.
Keys to Success in this Role
Strategic vision to guide risk management initiatives and ensure alignment with enterprise objectives.
Strong organizational and time management skills to manage multiple priorities and meet critical deadlines.
Exceptional collaboration skills to build partnerships across technology, business, and governance functions.
Advanced analytical skills to evaluate risks and provide actionable insights.
Ability to drive program development and foster continuous improvement.
Flexibility and adaptability to thrive in a dynamic, evolving environment.
Compensation and Benefits This position has an annualized market‑based salary range of $106,000 – $160,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.
Current Freddie Mac employees please apply through the internal career site.
Equal Employment Opportunity Statement We consider all applicants for all positions without regard to gender, race, color, religion, national origin, age, marital status, veteran status, sexual orientation, gender identity/expression, physical and mental disability, pregnancy, ethnicity, genetic information or any other protected categories under applicable federal, state or local laws. We will ensure that individuals are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
CA Applicants:
Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
A safe and secure environment is critical to Freddie Mac’s business. This includes employee commitment to our acceptable use policy, applying a vigilance‑first approach to work, supporting regulatory mandates, and using best practices to protect Freddie Mac from potential threats and risk. Employees exercise this responsibility by executing against policies and procedures and adhering to privacy & security obligations as required via training programs.
#J-18808-Ljbffr