Senior Security Engineer (Mail security)

At Moody's, we unite the brightest minds to turn today’s risks into tomorrow’s opportunities. We do this by striving to create an inclusive environment where everyone feels welcome to be who they are-with the freedom to exchange ideas, think innovatively, and listen to each other and customers in meaningful ways. 

If you are excited about this opportunity but do not meet every single requirement, please apply! You still may be a great fit for this role or other open roles. We are seeking candidates who model our values: invest in every relationship, lead with curiosity, champion diverse perspectives, turn inputs into actions, and uphold trust through integrity. 

Job Description

Moody’s IT Risk department is looking for a Senior Cybersecurity Engineer to join its growing organization. This is a challenging position requiring deep knowledge and experience with engineering, design, implementation, document writing, and improvement and support of mail security deployed in a large enterprise. The candidate should be motivated and willing to take on challenges, able to multi-task, collaborate, have strong communication and customer service skills.

The Cybersecurity team is globally responsible for helping the organization balance risk by aligning policies and procedures with Moody’s business and regulatory requirements. The team is responsible for the development, enforcement, and monitoring of security controls, standards and procedures, disaster recovery programs, GRC (Governance, Risk and Compliance), reporting and the delivery of security services including the company’s Cyber Security program.

Some sporadic scheduled weekend work and on-call rotation is expected.

Functional Responsibilities

• Assist and become subject matter expert on mail security and the related products
• Help research, testing and roll-out of improvements and new features for existing tools
• Execute daily tasks and project related work
• Enhance automation in areas such as repeated tasks, compliance, installation, and reporting
• Assist with creating and updating documentation including standards, operating procedures and guides for different audiences - internal team, the Cyber organization, other IT teams and users
• Develop, collect, and mature security metrics for IT Risk programs
• Deployment in cloud and on-premise environments
• Provide escalation support
• Work with IT teams to develop or enhance processes, provide cross-training, assistance and build relationships
• Plan and assist with migration and implementation of security tools for acquisitions
• Plan and rollout remediations for existing mail senders

Qualifications:

• Business English reading comprehension, written and oral communication skills
• Minimum 5-12 years of experience in IT industry, preferably in a financial service or consulting organization
• 3+ years with in-depth knowledge of several key security practice areas: network security; security architecture; security strategy; ideally 3+ years of experience with email security tools and technologies
• Strong analytical skills to troubleshoot effectively with minimal assistance
• BS or BA degree, preferably in engineering, science, or technology; or equivalent work experience
• Documentation writing of all sorts of documents and target audiences

Preferred skills:

• Email Protocols
• Mail Security tools
• Email Filtering and Anti-Spam Techniques
• A good understanding of NDRs and bounce management.
• Malware and Phishing Protection
• Encryption and Data Protection
• Threat Intelligence and Incident Response
• Security Assessments and Audits, best practices and standards and compliance
• Automation or scripting experience
• User knowledge and experience with SIEM tools
• Broad technical background including understanding of networking, firewalls, servers, workstations, and Active Directory
• Strong working knowledge of Windows Server and Workstation
• Understanding of Active Directory domains
• Knowledge of Regex

Moody’s is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender expression, gender identity or any other characteristic protected by law.

Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moody’s Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary.