Offensive Security Engineer, Technical Lead (In Office or Remote)
At Freddie Mac, our mission of Making Home Possible is what motivates us, and it's at the core of everything we do. Since our charter in 1970, we have made home possible for more than 90 million families across the country. Join an organization where your work contributes to a greater purpose. Position Overview: We're looking for an Offensive Security Engineer who excels at navigating ambiguity, uncovering weaknesses, and engineering solutions that elevate our security posture. You'll combine technical ingenuity with practical problem-solving, developing automation, tools, and methods that drive meaningful risk reduction. Our Impact: Freddie Mac's Information Security team is responsible for continuously testing the overall strength of our organization's defenses (across all people, process, & technology) by simulating the objectives and actions of an attacker. Your Impact: In this role, you will contribute to a collaborative team as a subject matter expert focusing on advanced offensive security. You will design and implement AI-powered security tools, proactively address vulnerabilities, and champion secure engineering practices across the organization. What to Expect (Job Responsibilities)
- Applications should bring expert level knowledge in one or more domains, including web applications, AI-powered business systems, cloud environments, etc.
- Execute sophisticated red team assessments across diverse attack surfaces.
- Partner with internal stakeholders to define engagement scope, success criteria, and translate complex technical findings into actionable business risk narratives
- Research, develop, and maintain cutting-edge offensive security tools and automation frameworks to enhance team capabilities and operational efficiency
Qualifications:
- 5+ years of relevant experience for senior level and 8+ years of relevant experience for technical lead level
- Proven ability to critically examine applications and identify, exploit, and remediate complex vulnerabilities
- Proven ability to create automation workflows that scale to enterprise environments.
- Demonstrated expertise in bypassing modern defensive controls and security measures to achieve assessment objectives
- Demonstrate proficiency in chosen domain using public research, personal blog, active projects, bug bounty, and public disclosures.
- Must be willing to work east coast hours
Current Freddie Mac employees please apply through the internal career site. We consider all applicants for all positions without regard to gender, race, color, religion, national origin, age, marital status, veteran status, sexual orientation, gender identity/expression, physical and mental disability, pregnancy, ethnicity, genetic information or any other protected categories under applicable federal, state or local laws. We will ensure that individuals are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. A safe and secure environment is critical to Freddie Mac's business. This includes employee commitment to our acceptable use policy, applying a vigilance-first approach to work, supporting regulatory mandates, and using best practices to protect Freddie Mac from potential threats and risk. Employees exercise this responsibility by executing against policies and procedures and adhering to privacy & security obligations as required via training programs. CA Applicants: Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC. Time-type:Full time FLSA Status:Exempt Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site. This position has an annualized market-based salary range of $150,000 - $224,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant. Apply tot his job Apply To this Job