Retour aux emplois
XX
Lead Information Security ArchitectFannie MaeReston, Virginia, United States
XX

Lead Information Security Architect

Fannie Mae
  • US
    Reston, Virginia, United States
  • US
    Reston, Virginia, United States

À propos

Playing an essential role in the U.S. economy, FannieMae is foundational to housing finance. Here, your expertise can help fuel purpose‑driven innovation that expands access to homeownership and affordable rental housing across the country. As a valued colleague on our team, you will provide expert advice and lead your team in implementing the design of components of technological structures. In this role, you will lead a team in implementing solutions with a process‑driven view, as well as schedule maintenance and/or updates to existing structures. Responsibilities Expertise in defining and enforcing enterprise security guardrails for complex cloud‑native architectures, including APIs, microservices, event‑driven and streaming platforms, serverless workloads, and containerized applications within large enterprise environments. Analyze AWS IAM and network policies to ensure they align with Zero Trust security principles and enforce least‑privilege access. Deep understanding of Zero Trust Architecture and the ability to integrate identity‑centric security, least privilege, segmentation, continuous verification, and defense‑in‑depth into solution architectures. Expertise in securing enterprise data platforms, including data analytics, relational databases, NoSQL databases, data lakes, and data migration services (DMS), with a focus on data classification, encryption, access governance, and regulatory compliance. Extensive experience applying industry security frameworks and regulatory standards, including NIST Cybersecurity Framework (CSF), NIST SP 800‑53, NIST SP 800‑207 (Zero Trust), FedRAMP, ISO 27001, OWASP ASVS/API Security Top10 and SOX to enterprise solution architectures. Strong understanding of secure application architecture, including RESTful APIs, API security, OAuth2.0/OIDC, JWT, mTLS, secure service‑to‑service communication, and API gateway security. Experience defining cloud adoption strategies, reference architectures, technology roadmaps, and proof‑of‑concept (PoC) initiatives for AWS‑based enterprise platforms. Strong knowledge of container and orchestration security, including Amazon ECS, Amazon EKS, AWS Fargate, Kubernetes security, workload identity, runtime protection, and container image security. Expertise in securing AWS database services, including Amazon RDS (PostgreSQL, MySQL), Amazon Aurora, DynamoDB, and ElastiCache, with emphasis on encryption, network isolation, backup, and disaster recovery. Proven ability to design secure, highly available, and resilient architectures, including multi‑region deployments, disaster recovery, failover strategies, business continuity, and cyber resiliency. Familiarity with DevSecOps practices and Infrastructure as Code (IaC) technologies such as Terraform, AWS CloudFormation, and automated security policy validation. Experience establishing enterprise logging, monitoring, and security observability standards using Amazon CloudWatch, CloudTrail, AWS Config, Security Hub, GuardDuty, centralized logging platforms, and SIEM integrations. Experience defining enterprise network segmentation, firewall policies, security groups, and access control strategies to support Zero Trust architecture. Experience developing secure scalability and performance strategies while maintaining compliance with enterprise security, resiliency, and governance requirements. There is 1 opening for this position which can be based in our Reston, VA or Plano, TX office. Minimum Required Experiences 4 years of experience designing and implementing AWS‑based solution architectures. Hands‑on expertise with AWS services including network architecture, IAM, KMS, serverless computing (Lambda), container services (ECS, EKS), Amazon RDS, and messaging services (SNS/SQS/EventBridge). Strong knowledge of cloud security principles and controls, including IAM, security auditing, data encryption, data loss prevention (DLP), and Zero Trust architecture. Solid understanding of industry‑standard cybersecurity frameworks and best practices, including NIST CSF and related standards. Desired Experiences 12+ years of progressive experience in Information Security, including 6+ years specializing in cloud security, solution architecture, systems architecture, engineering, security analysis, and application security. Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field. AWS certifications such as: AWS Certified Solutions Architect – Professional, AWS Certified Security – Specialty. Other relevant AWS Professional or Specialty certifications. CISSP (Certified Information Systems Security Professional) or equivalent certification strongly preferred. CCSP (Certified Cloud Security Professional), SABSA, TOGAF, or equivalent enterprise architecture certification (preferred). Cloud Security – Architecture – Lead Associate role salary expectation (141,000 – 184,000). Qualifications Active Directory (AD) Amazon Web Services (AWS) Artificial Intelligence (AI) Atlassian JIRA Authentication Management Backup and Recovery (Software) Business Insight Skills Business Process Management Skills Cleaning and Transforming Data Cloud Technology Collaborating Cross‑Functionally Communicating in Technical Writing Communicating Technical Information Communication Configuration Management (CM) Conflict Resolution Coordination Customer Relationship Management (CRM) CyberArk Cybersecurity Analysis Data Analysis Data Analysis Interpretation Database Management Data Mining and additional related technical skills Education Bachelor’s Level Degree (Required). Compensation & Benefits Hiring range for this role: 141,000–184,000. Final salaries will vary based on experience, certifications, and other qualifications. The position is eligible to participate in FannieMae incentive program. For most roles, employees are expected to work onsite on a regular basis at their designated office location. Equal Opportunity Employment FannieMae is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity/gender expression, marital or parental status, or any other protected factor. FannieMae is committed to providing reasonable accommodations to qualified individuals with disabilities who are employees or applicants for employment, unless doing so would cause undue hardship to the company.
#J-18808-Ljbffr
  • Reston, Virginia, United States

Compétences linguistiques

  • English
Avis aux utilisateurs

Cette offre provient d’une plateforme partenaire de TieTalent. Cliquez sur « Postuler maintenant » pour soumettre votre candidature directement sur leur site.