Let's begin! Assc Cybersecurity Engineer

At Moodys we unite the brightest minds to turn todays risks into tomorrows opportunities. We do this by striving to create an inclusive environment where everyone feels welcome to be who they arewith the freedom to exchange ideas think innovatively and listen to each other and customers in meaningful ways. Moodys is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment were advancing AI to move from insight to actionenabling intelligence that not only understands complexity but responds to it. We decode risk to unlock opportunity helping our clients navigate uncertainty with clarity speed and confidence.

If you are excited about this opportunity but do not meet every single requirement please apply! You still may be a great fit for this role or other open roles. We are seeking candidates who model our values: invest in every relationship lead with curiosity champion diverse perspectives turn inputs into actions and uphold trust through integrity.

Skills and Competencies

Strong Hands-On Expertise In:

• Palo Alto Networks NGFW platforms (including Panorama-managed firewalls: zones NAT routing decryption Security Profiles).
• Strata Cloud Manager Prisma Access SASE GlobalProtect VPN and multi-cloud NGFW deployments across AWS Azure and GCP for secure perimeter enforcement.
• Troubleshooting and optimization of DNS PKI WAF NAC VPN hybrid WAN BGP/OSPF IPsec/ExpressRoute and cloud networking components.
• Development and automation using Python scripting (Bash / PowerShell / YAML / JSON) REST APIs and Terraform (IaC); familiarity with JavaScript and ReactJS preferred.

Beginner-to-Intermediate Knowledge Of:

• Cloud networking concepts: VNet/VPC design subnets peering UDRs NSG/ASG load balancers endpoints Private Link; foundational Kubernetes networking; Azure Firewall/WAF CDN caching and reverse proxy architectures.
• Forescout NAC: device profiling posture assessment VLAN assignment dynamic segmentation and identity-based access enforcement.
• DNSSEC PKI & certificate lifecycle: CRL/OCSP flows chain validation TLS handshake fundamentals key storage/rotation Cloudflare WAF OWASP rulesets and bot mitigation techniques.

Fundamental Awareness Of:

• GenAI & Agentic AI: prompt engineering automation use cases and exposure to AI-driven triage/remediation workflows.

Qualifications

• 25 years of experience in Network Cloud & Perimeter Security operations and engineering.
• Hands-on experience with Panorama-managed Palo Alto NGFWs DNS PKI NAC WAF and cloud-native security controls across Azure AWS and GCP.
• Strong analytical troubleshooting and communication skills; ability to work effectively in a hybrid environment.
• Programming/scripting background with knowledge of Python REST APIs and infrastructure automation using Terraform.
• Understanding of secure networking architectures certificate validation cloud networking and foundational Kubernetes networking.

Responsibilities

• Support troubleshoot and manage Palo Alto NGFWs GlobalProtect VPN Prisma Access SASE and multi-cloud perimeter controls.
• Implement optimize and maintain network security policies across on-prem and cloud environments.
• Contribute to automation initiatives using Python REST APIs and IaC to streamline security operations.
• Perform DNS PKI WAF and NAC tasks including certificate validation OCSP/CRL flows DNS troubleshooting and NAC enforcement policies.
• Assist in the design deployment and troubleshooting of cloud networking components (VNet/VPC routing segmentation firewalls WAFs load balancers endpoints).
• Participate in security hardening incident triage posture assessment and support initiatives related to GenAI/Agentic AI for operational efficiency.

About the Team

The Cybersecurity team is globally responsible for helping the organization balance risk by aligning policies and procedures with Moodys business and regulatory requirements. The team oversees:

• Development enforcement and monitoring of security controls policies and procedures.
• Disaster recovery programs and GRC (Governance Risk and Compliance) reporting.
• Delivery of security services including the companys Cyber Security program.

Moodys is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race color religion sex national origin disability protected veteran status sexual orientation gender expression gender identity or any other characteristic protected by law.

Candidates for Moodys Corporation may be asked to disclose securities holdings pursuant to Moodys Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy including remediation of positions in those holdings as necessary.