Senior Security Engineer - Network Security Developer

Job Description

Moody’s is looking for a Senior Security Engineer to join its growing Cyber Security organization. This is a challenging position requiring deep knowledge of automation programs that can be used to bring strong security concepts. The candidate should be motivated and willing to take on challenges, able to multi-task to succeed and can work independently and with minimal oversight.

The Cybersecurity team is globally responsible for helping the organization balance risk by aligning policies and procedures with Moody’s business and regulatory requirements. The team is responsible for the development, enforcement and monitoring of security controls, policies and procedures, disaster recovery programs, GRC (Governance, Risk and Compliance) reporting and the delivery of security services including the company’s Cyber Security program.

Functional Responsibilities
* Support successful delivery of Information Security projects and services for our customers by working directly with key business stakeholders and technology SMEs.
* Develop and maintain secure infrastructure using Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, and Ansible.
* Evaluate, recommend, and implement security tools, policies, and measures to protect the infrastructure and applications from threats and vulnerabilities.
* Train and mentor team members on security best practices and procedures for deploying and managing secure infrastructure.
* Assess and optimize the performance of security tools and infrastructure to minimize the impact on system performance and maintain high availability
* Develop, collect, and mature security metrics for IT Risk programs.

Qualifications
* BS or BA degree or relevant certifications, preferably in Information Systems, Computer Science, Computer Engineering or equivalent
* 5 years of solid, diverse work experience using coding/automation languages, including experience in Security concepts, Coding technologies:
* Terraform (Terraform Cloud) Preferred
* Ansible (Nice to have)
* Python (Nice to have)
* PowerBI (Nice to have)
* 3 years of working with Cyber Security teams or being apart of a Cyber Champions program
* Advanced experience with cloud technology; AWS, Azure, GCP
* Working knowledge of Github
* Working knowledge of DAST/SAST concepts

Key Competencies
* Ability to think with a security mindset. The successful candidate has a strong automation coding background that can bring security concepts to this area.
* Adaptability and flexibility to work on a variety of assignments as defined by constantly evolving priorities.
* Knowledge of AWS, GCP, or Azure Cloud technologies.
* Technical expertise with Terraform
* Solid understanding of DAST/SAST concepts
* Solid understanding of automation concepts and the ability to store them in a centralized location
* Good understanding of Ansible, Python, or PowerBI
* Ability to quickly assimilate new technologies, tools, internal/external systems and design frameworks. Strong and broad technology background.
* Excellent written and oral communication skills including the ability to interact directly with customers that do not have an IT background.