Prisma Cloud Solutions Architect - Technical Lead

At Freddie Mac, our mission of Making Home Possible is what motivates us, and it’s at the core of everything we do. Since our charter in 1970, we have made home possible for more than 90 million families across the country. Join an organization where your work contributes to a greater purpose.

Position Overview:

The Cloud Security Posture Architect Technical Lead will collaborate the organizations security architecture team to validate the implementation of security controls within Lines of Business (LOB) systems and solutions. This role focuses on ensuring robust security measures across LOB projects and initiatives! This role will be directly involved in the validation of secure design of LOB applications and enterprise services in addition to the following:

• Work with the Project Team’s solution architects and technical team members to validate that security solution architectures are following the organization’s InfoSec policies, standards, non-functional requirements, reference architectures and patterns under the guidance of senior staff Domain Security Architects

• Identify security risks and provide recommendations, solutions, and options to best mitigate those risks

• Have advanced knowledge in cloud security services to evaluate security and compliance in a variety of cloud platforms

• Collect, interpret, evaluate, and validate business requirements, functions and processes associated with assigned projects

• Have a detailed understanding of industry standard Information Security control frameworks such as ISO 27001/27002, NIST, CIS and for cloud-specific control frameworks such as the Cloud Security Alliance (CSA) Cloud Control Matrix (CCM)

Our Impact:

This role ensures a robust and resilient operating environment that conforms to all regulatory, corporate and IT requirements! The Information Security Architect team aids in the validation of secure design in solutions and enterprise architecture. The extended coverage this position will provide is paramount to the success of Freddie Mac security architecture maturity.

Your Impact:

This role provides validation, oversight, consultation, advisory, controls design, compliance framework adherence and patterns documentation to the benefit of IT and the businesses.

Qualifications:

• 8-10 years of information technology experience, preferably within the financial services and/or mortgage industry

• PRISMA or PRISMA CORTEX experience required

• Advanced working knowledge of Azure Security Center, AWS CloudWatch and CloudTrail

• Cloud security (IaaS, PaaS, and SaaS) across multiple cloud platforms such as Azure, AWS, and Google.

•  Demonstrate basic understanding the concepts and application of the following:
  o    Cloud Security Posture Management (CSPM)
  o    Cloud-Native Application Protection Platforms (CNAPP)

•  Demonstrate basic understanding the concepts and application of the following architecture and design principles and practices:
  o    Network security and segmentation
  o    Mobile device security (smartphones, tablets, iPads, etc.), to include Bring Your Own Device (BYOD)

• Basic understanding of one or more of the following technologies:
  o    Next Generation Firewalls
  o    External Secure Web Gateways and CASBs
  o    Network and Host-based IDS/IPS
  o    Security Information and Event Management (SIEM)
  o    Identity and Access Management (IAM)
  o    ADFS and other federated technologies, including Active Directory, SAML, OAuth, OIDC, and SSO integrations.

• AWS Certified Solutions Architect (Associated, Professional) - preferred

• AWS Certified Security – Specialty certification - preferred

• Google Professional Cloud Architect - preferred

• CISSP (+ ISSAP), CCSP - preferred

• CompTIA Security +, Associate of IC2 preferred

• BA/BS degree in Computer Science, Information Systems or a related technical field, or the equivalent combination of education and experience1+ years of information technology experience, preferably the infrastructure space

• SABSA (F1 & F2 minimum) are a plus

Keys to Success in this Role:

• A customer-focused demeanor

• Commit to execution

• Continuous improvement to work processes and documentation

• Experience within the Financial Services/Mortgage industries

Current Freddie Mac employees please apply through the internal career site.

We consider all applicants for all positions without regard to gender, race, color, religion, national origin, age, marital status, veteran status, sexual orientation, gender identity/expression, physical and mental disability, pregnancy, ethnicity, genetic information or any other protected categories under applicable federal, state or local laws. We will ensure that individuals are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

A safe and secure environment is critical to Freddie Mac’s business. This includes employee commitment to our acceptable use policy, applying a vigilance-first approach to work, supporting regulatory mandates, and using best practices to protect Freddie Mac from potential threats and risk. Employees exercise this responsibility by executing against policies and procedures and adhering to privacy & security obligations as required via training programs.

CA Applicants:  Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.

Time-type:Full time

FLSA Status:Exempt

Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.

This position has an annualized market-based salary range of $150,000 - $224,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.