Are you interested in helping solve today's most critical housing challenges? In simplest terms, Fannie Mae serves the people who house America. We work at the heart of housing by providing reliable, affordable mortgage financing in all markets at all times, buying loans that banks and other lenders originate, so they can fund new loans. This gives more people the opportunity to buy, refinance, or rent homes and apartments. Creating these opportunities is what drives the people who work at Fannie Mae.
For more information about Fannie Mae, visit http://www.fanniemae.com/progress
Design and implement systems and procedures to sustain the security, integrity, and availability of the organization's data. Assess risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organization's systems and the data contained in them. Track security violations and identify trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security. May participate in simulated attacks or security violations to assess the organization's data security measures.
KEY JOB FUNCTIONS
Conduct platform or operating system vulnerability scans that assess exposure of system to attacks or hacking. Monitor
Security Operations pager and respond to issues of potential viral activity, spam, phishing, etc.
Administer controls and review their application to ensure that system's controls, policies, and procedures are operating effectively relative to the predicted effectiveness of the controls.
Investigate events or incidents of apparent security breaches and report to appropriate authorities using corporate procedures.
Confer and collaborate with internal and external auditors to ensure that appropriate controls are installed, operating properly, and being monitored and reported.
May plan and/or conduct tests of the core infrastructure and the contingency environment for critical business applications to ensure business continuity in the event of a computer security incident.
Aggregate metrics of operation of security controls, as well as apparent attacks, breaches, and other pertinent data; track trends and prepare for periodic security reports.
Participate in projects designed to test defenses against hacking, denial of service, spam, break-ins, or similar attacks.
May provide guidance to infrastructure or application staff participating in exercise.
Examine and/or test new methodologies or tools that could be adopted to enhance security of platforms, infrastructure, or access to data.
Bachelor's Degree or equivalent required
4 years of related experience
SPECIALIZED KNOWLEDGE & SKILLS
Hands on experience with multifactor authentication protocols.
Experienced on SSO concepts SAML, Radius, AAA and TACACS authorization protocols.
Working knowledge of Active Directory/LDAP Management
Identify security threats, risks and vulnerabilities, and develop mitigation plans
Experience with Linux or other Embedded Systems is preferred
Experience in python, ruby, bash, and perl scripting
Maintain a thorough understanding of the basics behind the Internet and its workings (DNS, Security, IP Routing, HTTP, VPN, web proxy)
Used network tools like wireshark to debug issues
At least 3 years of enterprise or SaaS experience with administration, configuring and managing in Access management (identity management account management, LDAP and directory services, multifactor authentication, SSO and authentication)
Knowledgeable of privileged account management, data loss protection, identity management account management, LDAP and directory services, multifactor authentication, and/or password vaulting technologies preferred
Ability to explain vulnerabilities and weaknesses, and discuss effective defensive techniques to non-experts
As a condition of employment with Fannie Mae, any successful job applicant will be required to successfully complete a background investigation.
Fannie Mae is an Equal Opportunity Employer.
Fannie Mae Corp