Seller/Servicer Information Security Risk Oversight Senior

At Freddie Mac, our mission of Making Home Possible is what motivates us, and it’s at the core of everything we do. Since our charter in 1970, we have made home possible for more than 90 million families across the country. Join an organization where your work contributes to a greater purpose.

Position Overview:

We are seeking a highly skilled and motivated individual to join our Seller/Servicer Information Security Risk Oversight (Cyber) team. In this key role, you will be responsible for evaluating and monitoring the information security risk profiles of third-party sellers and servicers. You will ensure compliance with all relevant regulatory requirements and play an active part in developing and supporting risk mitigation strategies to safeguard our organization.

Our Impact:

We are a specialized unit within the enterprise governance team, dedicated to providing strategic oversight of seller/servicer information security risk across Freddie Mac. Our team proactively manages third-party information risk through robust capability development, comprehensive program management, sophisticated reporting, and integrated systems. We lead the development, maintenance, and execution monitoring of seller/servicer information security risk programs, ensuring alignment with enterprise objectives. We are seeking a highly motivated and accomplished professional with exceptional organizational and strategic risk management skills, and a proven ability to cultivate strong partnerships across technology, business, and enterprise functions.

Your Impact:

In this role, you will enhance the seller/servicer information security risk oversight team’s ability to effectively identify, assess, and mitigate risks that could impact Freddie Mac. Your involvement will strengthen the team’s capacity to develop and execute strategic risk management initiatives, advance reporting and analytics, and ensure alignment with enterprise objectives. By fostering collaboration across technology, business, and governance functions, you will reinforce a culture of accountability and security, ultimately supporting Freddie Mac’s commitment to the highest standards of information protection and trust with our partners and stakeholders.

• Conduct thorough risk assessments of seller/servicer information security practices, with a focus on data protection, cyber risk, and regulatory compliance.
• Develop and maintain robust frameworks and methodologies for overseeing and evaluating third-party information security risks.
• Collaborate with cross-functional teams—including IT, Legal, Compliance, and Enterprise Third Party Oversight (ETPO)—to identify, assess, and address risks associated with seller/servicer relationships.
• Monitor ongoing risk exposure and performance, delivering regular reports and actionable insights to senior management.
• Support the implementation of risk mitigation strategies and remediation plans for identified vulnerabilities.
• Stay abreast of industry trends, emerging threats, and regulatory changes affecting information security risk management.
• Lead or contribute to special projects aimed at enhancing the risk oversight program.

Qualifications:

• Bachelor’s degree in finance, Risk Management, Information Security, or a related field preferred.
• 5 - 7 years’ experience in credit risk, information security risk management, or third-party risk oversight within the financial services sector.
• Strong understanding of regulatory frameworks (such as FFIEC, GLBA, GDPR) and industry standards (such as NIST, ISO 27001).
• Demonstrated expertise in conducting risk assessments and developing risk oversight methodologies.
• Outstanding analytical, communication, and interpersonal skills.
• Professional certifications (e.g., CISSP, CISM, CRISC, CRCM) are highly desirable.

Keys to Success in this Role:

The seller/servicer information security risk oversight (cyber) senior position is essential to Freddie Mac’s commitment to protecting information and managing third-party risks. This role supports and empowers the cyber team to effectively identify, assess, and mitigate security risks associated with sellers and servicers, while maintaining the highest standards of information protection and trust with partners and stakeholders. Success in this role requires:

• Strategic vision to guide risk management initiatives and ensure alignment with enterprise objectives
• Strong organizational and time management skills to manage multiple priorities and meet critical deadlines
• Exceptional collaboration skills to build partnerships across technology, business, and governance functions
• Advanced analytical skills to evaluate risks and provide actionable insights
• Ability to drive program development and foster continuous improvement
• Flexibility and adaptability to thrive in a dynamic, evolving environment

Current Freddie Mac employees please apply through the internal career site.

We consider all applicants for all positions without regard to gender, race, color, religion, national origin, age, marital status, veteran status, sexual orientation, gender identity/expression, physical and mental disability, pregnancy, ethnicity, genetic information or any other protected categories under applicable federal, state or local laws. We will ensure that individuals are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

A safe and secure environment is critical to Freddie Mac’s business. This includes employee commitment to our acceptable use policy, applying a vigilance-first approach to work, supporting regulatory mandates, and using best practices to protect Freddie Mac from potential threats and risk. Employees exercise this responsibility by executing against policies and procedures and adhering to privacy & security obligations as required via training programs.

CA Applicants:  Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.

Time-type:Full time

FLSA Status:Exempt

Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.

This position has an annualized market-based salary range of $106,000 - $160,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.