Cyber Incident Response Analyst



Fannie Mae provides reliable, large-scale access to affordable mortgage credit in communities across our nation. We are the leading source of funding for housing in America, which means more people can buy or rent a home. We are focused on sustaining the housing recovery, improving our company, and leading change to make housing better.

Join our diverse, high-performing team and make a difference as we work together to enable access to a good home.

For more information about Fannie Mae, visit


Design and administer procedures in the organization that sustain the security of the organization?s data and access to its technology and communications systems. Assess risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organization?s systems and the data contained in them. Track security violations and identify trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security. May lead or execute simulated attacks or security violations to assess the organization?s data security measures.



  • Conduct platform or operating system vulnerability scans to assess exposure of system to attacks or hacking. Respond to questions regarding viral activity, concerns about spam/phishing etc. Produce reports.
  • Serve as organization’s POC for the third party certification of security procedures and use of cyber security protections. Ensure that system’s security controls, policies and procedures examined, measured and validated against third party standards.
  • Design, plan and implement test strategies to support the core infrastructure in the contingency environment for all critical business applications to ensure business continuity in the event of a major business interruption or disaster.
  • Lead projects as related to technology refresh/evaluation such as Load Balancing and SSL technology. Research corrective measures (long term solutions) needed for any chronic issues identified that compromise security of particular systems or platforms.
  • Participate in developing and testing of new methodologies and systems for recovery of the critical core business processes and the enterprise infrastructure.
  • Serve as technical lead or project lead in projects involving testing defenses against hacking, Denial of service, spam, break-ins, or related attacks. Provide technical guidance to less senior staff or applications developers/systems administrators.




  • Bachelor’s Degree or equivalent required


  • 6+ years of related experience


  • Familiarity with information security technology such as firewalls, IDS, IPS, HIPS, WAF, and proxies
  • Excellent verbal and written communication skills
  • Experience in troubleshooting in a technical environment
  • Excellent analytical and problem solving skills
  • Must have proficiency in hardware, software and networking
  • Needs to be proficient in one or more scripting languages such as perl, python, bash, go.
  • Must have experience with end point threat detection tools such as Tanium or Carbon Black.
  • Experience in one or more of the following disciplines: computer forensics, network forensics, malware analysis and memory analysis
  • Needs to have a keen understanding of threat vectors as well as exfiltration techniques.
  • Experience with large data analysis using  tools such as Splunk, ELK, or other similar tools.
  • Experience coordinating incident response involving several analysts
  • Experience hunting proactively for threats within an enterprise
  • Ability to assist SOC analysts with threat detection
  • Ability to write incident or forensic reports



As a condition of employment with Fannie Mae, any successful job applicant will be required to pass a pre-employment drug screen and to successfully complete a background investigation, which may also include a credit check for positions in some areas of our business.


Fannie Mae is an Equal Opportunity Employer.

Manager LevelAssociate


 Information Management

Primary Location



 RCS InfoSec



Job Type


Employee Status


Relocation Available No

Experience Level 3-Seasoned (over 7 years)


Leave a Reply