Lead Information Security Architect

Fannie MaeReston, VA
$141,000 - $184,000Onsite

About The Position

Playing an essential role in the U.S. economy, Fannie Mae is foundational to housing finance. Here, your expertise can help fuel purpose-driven innovation that expands access to homeownership and affordable rental housing across the country. Join Fannie Mae to grow your career and help people find a place to call home. As a valued colleague on our team, you will provide expert advice and lead your team in implementing the design of components of technological structures. In this role, you will lead a team in implementing solutions with a process-driven view, as well as schedule maintenance and/or updates to existing structures.

Requirements

  • 4 years of experience designing and implementing AWS-based solution architectures.
  • Hands-on expertise with AWS services including network architecture, IAM, KMS, serverless computing (Lambda), Container Services (ECS, EKS), Amazon RDS, and messaging services (SNS/SQS/Event Bridge).
  • Strong knowledge of cloud security principles and controls, including Identity and Access Management (IAM), security auditing, data encryption, data loss prevention (DLP), and Zero Trust architecture.
  • Solid understanding of industry-standard cybersecurity frameworks and best practices, including NIST Cybersecurity Framework (CSF) and related standards.
  • Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
  • Active Directory (AD)
  • Amazon Web Services (AWS)
  • Artificial Intelligence (AI)
  • Atlassian JIRA
  • Authentication Management
  • Backup and Recovery (Software)
  • Business Insight Skills
  • Business Process Management Skills
  • Cleaning and Transforming Data
  • Cloud Technology
  • Collaborating Cross-Functionally
  • Communicating in Technical Writing
  • Communicating Technical Information
  • Communication
  • Configuration Management (CM)
  • Conflict Resolution
  • Coordination
  • Customer Relationship Management (CRM)
  • CyberArk
  • Cybersecurity Analysis
  • Data Analysis
  • Data Analysis Interpretation
  • Database Management
  • Data Mining

Nice To Haves

  • 12+ years of progressive experience in Information Security, including 6+ years specializing in cloud security, solution architecture, systems architecture, engineering, security analysis, and application security.
  • AWS certifications such as: AWS Certified Solutions Architect – Professional, AWS Certified Security – Specialty, or other relevant AWS Professional or Specialty certifications.
  • CISSP (Certified Information Systems Security Professional) or equivalent certification strongly preferred.
  • CCSP (Certified Cloud Security Professional)
  • SABSA, TOGAF, or equivalent enterprise architecture certification (preferred)

Responsibilities

  • Provide expert advice and lead your team in implementing the design of components of technological structures.
  • Lead a team in implementing solutions with a process-driven view.
  • Schedule maintenance and/or updates to existing structures.
  • Define and enforce enterprise security guardrails for complex cloud-native architectures, including APIs, microservices, event-driven and streaming platforms, serverless workloads, and containerized applications within large enterprise environments.
  • Analyze AWS IAM and network policies to ensure they align with Zero Trust security principles and enforce least-privilege access.
  • Integrate identity-centric security, least privilege, segmentation, continuous verification, and defense-in-depth into solution architectures.
  • Secure enterprise data platforms, including data analytics, relational databases, NoSQL databases, data lakes, and data migration services (DMS), with a focus on data classification, encryption, access governance, and regulatory compliance.
  • Apply industry security frameworks and regulatory standards, including NIST Cybersecurity Framework (CSF), NIST SP 800-53, NIST SP 800-207 (Zero Trust), FedRAMP, ISO 27001, OWASP ASVS/API Security Top 10 and SOX to enterprise solution architectures.
  • Design secure application architectures, including RESTful APIs, API security, OAuth 2.0/OIDC, JWT, mTLS, secure service-to-service communication, and API gateway security.
  • Define cloud adoption strategies, reference architectures, technology roadmaps, and proof-of-concept (PoC) initiatives for AWS-based enterprise platforms.
  • Secure container and orchestration environments, including Amazon ECS, Amazon EKS, AWS Fargate, Kubernetes security, workload identity, runtime protection, and container image security.
  • Secure AWS database services, including Amazon RDS (PostgreSQL, MySQL), Amazon Aurora, DynamoDB, and ElastiCache, with emphasis on encryption, network isolation, backup, and disaster recovery.
  • Design secure, highly available, and resilient architectures, including multi-region deployments, disaster recovery, failover strategies, business continuity, and cyber resiliency.
  • Implement DevSecOps practices and Infrastructure as Code (IaC) technologies such as Terraform, AWS CloudFormation, and automated security policy validation.
  • Establish enterprise logging, monitoring, and security observability standards using Amazon CloudWatch, CloudTrail, AWS Config, Security Hub, GuardDuty, centralized logging platforms, and SIEM integrations.
  • Define enterprise network segmentation, firewall policies, security groups, and access control strategies to support Zero Trust architecture.
  • Develop secure scalability and performance strategies while maintaining compliance with enterprise security, resiliency, and governance requirements.

Benefits

  • Health, Life, Voluntary Lifestyle, and other benefits and perks that enhance an employee's physical, mental, emotional, and financial well-being.
  • Eligible to participate in a Fannie Mae incentive program (subject to the terms of the program).
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service