Sr Site Reliability Engineer - Network & Perimeter Security

At Moody's, we unite the brightest minds to turn today’s risks into tomorrow’s opportunities. We do this by striving to create an inclusive environment where everyone feels welcome to be who they are—with the freedom to exchange ideas, think innovatively, and listen to each other and customers in meaningful ways. Moody’s is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment, we’re advancing AI to move from insight to action—enabling intelligence that not only understands complexity but responds to it. We decode risk to unlock opportunity, helping our clients navigate uncertainty with clarity, speed, and confidence.

If you are excited about this opportunity but do not meet every single requirement, please apply! You still may be a great fit for this role or other open roles. We are seeking candidates who model our values: invest in every relationship, lead with curiosity, champion diverse perspectives, turn inputs into actions, and uphold trust through integrity. 

Skills & Competencies

• 5+ years of experience in network, perimeter, and cloud security, automation, and SRE/DevOps, with a proven track record of leading technical initiatives in enterprise-scale, compliance-driven environments
• Expertise in designing and building reliable, repeatable automation for network and perimeter security operations, with a strong “no manual work at scale” mindset
• Advanced Python for automation, backend services, , REST APIs integrations; scripting in Bash/PowerShell; proficient with YAML/JSON along with experience building production-grade systems for monitoring, managing, and remediating network/security platforms
• Hands-on with Terraform (including Terraform Cloud) ) for firewall and cloud network provisioning and Ansible for configuration management and automation; deep understanding of IaC principles, Git-based workflows, GitOps, CI/CD-driven configuration pipelines
• Hands on experience in Palo Alto NGFWs (zones, NAT, routing, decryption), Panorama management, GlobalProtect VPN, Prisma Access (SASE), and Strata Cloud Manager along with troubleshooting across BGP, OSPF, packet flows and SSL/TLS issues
• Experience in hybrid/multi-cloud environments (Azure, AWS, GCP) and secure engineering practices (API security, secrets management a nd secure integrations)
• Ability to design and support secure cloud architectures (VNet/VPC, routing, segmentation, private connectivity, perimeter controls) with IaC-based security deployments across cloud platforms is good to have
• Skilled in SNMP, Syslog, and streaming telemetry for complex operational challenges; experienced with tools like NetBox, SolarWinds, or equivalents will be advantageous
• Strong knowledge of WAF, DNS, PKI, TLS/SSL, and app security fundamentals; hands-on with Cloudflare DNS/WAF, DNSSEC, DKIM/DMARC, OWASP rule sets, bot mitigation, and rate limiting; deep understanding of OWASP Top 10, API protection, and secure HTTP headers is good to have
• Experience with Forescout NAC, including device profiling, dynamic segmentation, and posture-based access control is good to have
• Exposure to AI/GenAI-driven automation, including LLM-based operational automation and SOAR integrations, with awareness of AI governance, guardrails, and safe enterprise adoption practices.

Qualification

• Bachelor’s in AI, Computer Science, IT, Engineering, or related field (or equivalent experience)
• Preferred certifications: PCNSE, CCIE (Security), CISSP, CCSP, or equivalent certifications are a plus.

Responsibilities

You will be part of exciting work in security automation, cloud security engineering, and network/perimeter defense, collaborating with global stakeholders to strengthen Moody’s cybersecurity posture

• Drive automation-first initiatives by designing & building Python-based tools, implementing IaC (Terraform, Ansible), and integrating automation into CI/CD pipelines with Git-based and GitOps workflows to improve security, scalability, and operational efficiency
• Own and operate and optimize enterprise network/perimeter security (Palo Alto NGFWs, Panorama, GlobalProtect VPN, Prisma Access(SASE)) and cloud-based perimeter security services; troubleshoot complex network and security issues involving routing, packet paths, NAT, decryption, and SSL/TLS
• Design secure hybrid/multi-cloud architectures across AWS, Azure & GCP; implement network segmentation, routing, private connectivity, and perimeter controls
• Monitor network performance, identify improvements, and implement proactive remediations; support incident response, RCA, and post-incident reviews; maintain runbooks and documentation; provide on-call and after-hours support as needed
• Collaborate with global teams to support enterprise security controls, policy enforcement, disaster recovery and GRC-aligned reporting; mentor engineers and and promote best practices in automation, SRE, and secure engineering; communicate effectively with technical and non-technical stakeholders in an ITIL-driven enterprise environment

About the Team

Our Cyber Security Group (CSG) is responsible for designing, implementing, and maintaining enterprise-wide security controls that protect Moody’s global infrastructure and data. The team plays a critical role in safeguarding cloud, network, and application environments through automation, secure architecture, and proactive risk management.
CSG contributes to Moody’s by:

• Building automation frameworks, Infrastructure-as-Code (IaC) solutions, and advanced tooling to reduce operational toil and enhance reliability
• Aligning security practices with regulatory standards and internal policies
• Delivering secure, scalable, and highly available solutions across multi-cloud environments and hybrid networks

Moody’s is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender expression, gender identity or any other characteristic protected by law.

Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moody’s Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary.