Hiring During COVID-19: Fannie Mae is hiring for all open positions as we deliver on our mission of providing stability, liquidity, and affordability to the housing market during this critical time. All interviews and onboarding are conducted virtually. We look forward to connecting with you. Learn more

Cyber Security Director

Job Description

Fannie Mae provides reliable, large-scale access to affordable mortgage credit in communities across our nation. We are the leading source of funding for housing in America, which means more people can buy or rent a home. We are focused on sustaining the housing recovery, improving our company, and leading change to make housing better.
Join our diverse, high-performing team and make a difference as we work together to enable access to a good home.
Plan and direct the work of a unit whose staff design and administer procedures to detect and respond to cybersecurity incidents.  Lead Information Security’s Security Operations Center (SOC) function.  Assess risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organization's systems and the data contained in them. Track security violations and identify trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security.

  • Develop procedures intended to sustain the security of the organization's data and access to its technology and communications systems. Ensure the distribution and communication of these procedures in appropriate systems and media.
  • Plan the performance of tests (and simulated attacks) on the security procedures of the organization's systems and communications technology to assess their vulnerability and ways in which existing security measures are adequate or insufficient.
  • Track daily reporting of breaches or attempted breaches of the organization's data and systems security measures in order to plan appropriate upgrades of security or new measures or operating procedures needed to advance security interests.
  • Track security measures of clients or partners of the organization that may compromise sensitive data or information. Communicate the organization's security standards or specific concerns to clients or partners regarding their operating procedures.
  • Report to senior management on the unit's production, activities, and efforts.
  • Represent the unit as an expert or resource to cross-functional project or coordinating teams.
  • Plan, document, and manage the performance of subordinate managers and/or staff. Provide for professional or technical growth through assignment, mentoring, or training.
  • Plan and manage the unit's budget. Approve expenditures or budget transfers.


Education Level Required

  • Bachelor Degree or Equivalent
Education Level Preferred
  • Master or Other Advanced Degree
Area of Study Preferred
  • Computer Science or IT/IS
  • 8-10 years of related experience
  • Knowledge of intelligence analysis and analytic tradecraft, preferably in the cyber domain.
  • Knowledge of risk analysis methodologies, preferably Factor Analysis of Information Risk (FAIR) or other Value-at-Risk (VaR) models.
  • Knowledge of incident detection methodologies, including network-based and host-based signatures.
  • Knowledge of incident handling methodologies and practices, including log and system forensics.
  • Knowledge of insider threat programs
  • Knowledge of malware and malware analysis.
  • Skill in driving consistent and effective process execution.
  • Skill in cybersecurity incident coordination, communication, and reporting.
  • Skill practicing a wide range of leadership approaches to match situational requirements, from fostering talent within a team, to balancing business and cyber risk, and aggressively driving incident containment.
As a condition of employment with Fannie Mae, any successful job applicant will be required to successfully complete a background investigation.
Fannie Mae is an Equal Opportunity Employer.

Req ID: 59004