Contact Sales

Cloud Security & Compliance: Fannie Mae (Top Housing Finance & MBS Globally)

FalconRock-Fannie Mae

Fannie Mae is a US government-sponsored enterprise (GSE) that provides mortgage financing and housing information. Total assets under management in 2023 were $4.325 trillion. 

Challenges

  • Security Transformation: Large-scale security transformation initiatives across various lines of business (LOBs).
  • Data Security and Privacy: Ensuring data security and privacy for unstructured data across cloud storage locations.
  • Fraud Detection: Detecting suspicious activities in lending products and debit card transactions in real-time.
  • Identity and Data Orchestration: Building real-time identity and data orchestration platforms.
  • Unified Logging: Creating a unified logging platform to reduce costs associated with existing logging solutions.
  • Security Operations Improvement: Enhancing security center operations, vulnerability management, and developer auto-remediation automation.

Solution

  • Security/EA Advisor: Provided trusted advisory services for security transformation initiatives.
  • Data Organization and Quality: Implemented data capture/curation, on-premise data lake architecture, data profiling, quality rules, and automatic data quality remediation.
  • Hybrid MLOps Platform: Built a next-generation hybrid MLOps platform with on-cloud development and on-prem deployment using AWS Sagemaker.
  • Synthetic Fraud Data: Used synthetic fraud transaction data to avoid investing in additional security controls.
  • Domain-Centric Data Mesh: Employed a Cloudera Data Mesh approach for mortgage data organization.
  • Identity and Data Orchestration Platforms: Designed platforms using OPA, PlainID, Immuta, AKS, Omada, and Tetrate.io.
  • BigID Solution: Implemented BigID for data security and privacy in the cloud.
  • SecCM Solution: Architected a Security Configuration Management solution for real-time drift detection and SaaS posture management.
  • CyberDelta Lake Analytics: Developed a unified logging platform with AWS Security Lake to reduce costs.
  • BISO and Product Owner: Improved CRM infrastructure security operations, vulnerability management, and developer auto-remediation automation.

Tangible Results

  • Enhanced Security Posture: Significant improvement in security baselines and vulnerability management.
  • Cost Reduction: Reduced spend on logging platforms like Splunk and Syslog.
  • Real-Time Fraud Detection: Effective detection of suspicious activities in lending and debit card transactions.
  • Improved Data Quality: Enhanced data quality through profiling, quality rules, and remediation.
  • Efficient Identity Management: Streamlined identity and data orchestration with advanced platforms.
  • Data Security and Privacy: Improved data security and privacy for unstructured data in the cloud.
  • Operational Efficiency: Enhanced security center operations and developer auto-remediation processes.