Cybersecurity Analyst SOC (Security Operations Center) - Vilnius - 15471BR

Moody's is an essential component of the global capital markets, providing credit ratings, research, tools and analysis that contribute to transparent and integrated financial markets. Moody's Corporation (NYSE: MCO) is the parent company of Moody's Investors Service, which provides credit ratings and research covering debt instruments and securities, and Moody's Analytics, which offers leading-edge software, advisory services and research for credit and economic analysis and financial risk management. The Corporation, which reported revenue of $4.4 billion in 2018, employs approximately 13,100 people worldwide and maintains a presence in 42 countries. Further information is available at www.moodys.com.
Moody’s Shared Services are the front line professionals including Finance, Technology, Legal, Compliance and Human Resources, that operationally support our business units. Exceptional Shared Services teams are vital to the international success of our business.

Department

With 400 employees and 800 contractors worldwide, Moody's Shared Services provides technology solutions for Moody's Investors Service, Moody's Shared Services and Moody’s Analytics. The organization is going through an exciting period of growth and opportunity as we embark on a corporate-wide Transformation program and partner with the business to drive revenue growth, efficiency, risk management, and expansion of our client base via new solutions and application modernization. The development and ongoing support of key ratings and enterprise systems ensure the company's premier standing among credit rating agencies and enable its evolution alongside regulatory and business demands.


MIT continuously seeks talented individuals to drive the execution of its enterprise technology roadmap, which offers exciting career opportunities across the application delivery lifecycle, architecture, software and platform engineering, IT security and risk management, infrastructure and technology operations, vendor management, and service management.

#LI-DS1

Job Description

Job Description

Moody’s Information Risk & Security is looking for a Cybersecurity Analyst to join its growing organization and be part of its in-house Security Operations Centre (SOC). This is a position requiring a good technical background in Information Security practice, good knowledge of IT Security threats and solid communication and organizational skills. The successful candidate is very motivated and willing to take on challenges, able to multi-task to succeed and has the ability work with the team to tackle incoming alerts.

The Moody’s Information Risk & Security team is responsible for helping the organization balance risk by aligning policies and procedures with Moody’s business requirements. The team is responsible for the development, enforcement and monitoring of security controls, policies and procedures, and for the delivery of security services. The Information Risk & Security team sets strategic direction for security within the organization and aligns with stakeholders throughout the company.

The Cybersecurity Analyst will be responsible for the handling, and escalation of, alerts which require technical triage and analysis. This may include web attacks, malware infections, and phishing campaigns, which have been identified by the Information Risk & Security team’s technology stack.

Functional Responsibilities

  • Acknowledge and handle the incoming security alerts.
  • Use the internal ticketing system and dashboards to update the tickets/alerts accordingly and escalating them to the appropriate teams if necessary.
  • Assist the Incident Response team on alerts escalated to them by the SOC team.
  • Follow Standard Operating Procedures (SOPs) and Playbooks to handle standard and out-of-band alerts.
  • Write or update procedure documents and Playbooks to improve future response times and efficiency.
  • Report to the SOC Team Lead quickly and efficiently regarding urgent matters.
  • Ensure ticket queues are always within satisfactory limits and all tickets are updated for the next shift.
  • Provide On-Call Support for emergency or high severity issues.
  • Liaise with partner teams and end-users for ticket related activity.

Qualifications

Qualifications

Minimum education and work experience required for this position include:


  • Excellent verbal and written communication skills.
  • Excellent analytical and problem solving skills required.
  • Solid experience in Cyber Security.
  • Equivalent BSc in IT Security.
  • Equivalent Certifications (Network+, Security+, CySA+, GSEC, GMON, etc.)
  • Experience working with SIEMs and evaluating SIEM alerts.
  • Experience leveraging core security and infrastructure technologies during investigations (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS)

Key Competencies


  • Ability to think with a security mindset. The successful candidate has a good IT background with good level knowledge of multiple relevant security practice areas (anti-malware solutions, patch and vulnerability management, network security; monitoring; endpoint, etc.)
  • Knowledge of TCP/IP Protocols, network analysis, and network/security applications.
  • Good knowledge of various security tools and monitoring devices; e.g. able to read and understand IDS/IPS/Firewall/Proxy logs and determine the current state of play.
  • Experience in correlating malware infections with attack vectors to determine the extent of security and data compromise.
  • Ability to work in a time-sensitive environment; must be detail oriented and able to multitask to meet deadlines and company objectives.
  • Experience in large, geographically diverse enterprise networks.
  • Ability to build lasting relationships with partner teams and stakeholders.
  • Strong written and oral communication skills, including the ability to interact directly with customers that do not have an IT background.
  • Documentation; experience in writing reports and documenting tickets efficiently and accurately.
Moody’s is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender expression, gender identity or any other characteristic protected by law.
Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moody’s Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary.