At Moody's, we unite the brightest minds to turn today’s risks into tomorrow’s opportunities. We do this by striving to create an inclusive environment where everyone feels welcome to be who they are—with the freedom to exchange ideas, think innovatively, and listen to each other and customers in meaningful ways. Moody’s is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment, we’re advancing AI to move from insight to action—enabling intelligence that not only understands complexity but responds to it. We decode risk to unlock opportunity, helping our clients navigate uncertainty with clarity, speed, and confidence.

If you are excited about this opportunity but do not meet every single requirement, please apply! You still may be a great fit for this role or other open roles. We are seeking candidates who model our values: invest in every relationship, lead with curiosity, champion diverse perspectives, turn inputs into actions, and uphold trust through integrity.

Skills and Competencies

Strong Hands-On Expertise In:

• Palo Alto Networks NGFW platforms (including Panorama-managed firewalls: zones, NAT, routing, decryption, Security Profiles).
• Strata Cloud Manager, Prisma Access SASE, GlobalProtect VPN, and multi-cloud NGFW deployments across AWS, Azure, and GCP for secure perimeter enforcement.
• Troubleshooting and optimization of DNS, PKI, WAF, NAC, VPN, hybrid WAN, BGP/OSPF, IPsec/ExpressRoute, and cloud networking components.
• Development and automation using Python, scripting (Bash / PowerShell / YAML / JSON), REST APIs, and Terraform (IaC); familiarity with JavaScript and ReactJS preferred.

Beginner-to-Intermediate Knowledge Of:

• Cloud networking concepts: VNet/VPC design, subnets, peering, UDRs, NSG/ASG, load balancers, endpoints, Private Link; foundational Kubernetes networking; Azure Firewall/WAF, CDN, caching, and reverse proxy architectures.
• Forescout NAC: device profiling, posture assessment, VLAN assignment, dynamic segmentation, and identity-based access enforcement.
• DNSSEC, PKI & certificate lifecycle: CRL/OCSP flows, chain validation, TLS handshake fundamentals, key storage/rotation, Cloudflare WAF, OWASP rulesets, and bot mitigation techniques.

Fundamental Awareness Of:

• GenAI & Agentic AI: prompt engineering, automation use cases, and exposure to AI-driven triage/remediation workflows.

Qualifications

• 2–5 years of experience in Network, Cloud & Perimeter Security operations and engineering.
• Hands-on experience with Panorama-managed Palo Alto NGFWs, DNS, PKI, NAC, WAF, and cloud-native security controls across Azure, AWS, and GCP.
• Strong analytical, troubleshooting, and communication skills; ability to work effectively in a hybrid environment.
• Programming/scripting background with knowledge of Python, REST APIs, and infrastructure automation using Terraform.
• Understanding of secure networking architectures, certificate validation, cloud networking, and foundational Kubernetes networking.

Responsibilities

• Support, troubleshoot, and manage Palo Alto NGFWs, GlobalProtect VPN, Prisma Access SASE, and multi-cloud perimeter controls.
• Implement, optimize, and maintain network security policies across on-prem and cloud environments.
• Contribute to automation initiatives using Python, REST APIs, and IaC to streamline security operations.
• Perform DNS, PKI, WAF, and NAC tasks including certificate validation, OCSP/CRL flows, DNS troubleshooting, and NAC enforcement policies.
• Assist in the design, deployment, and troubleshooting of cloud networking components (VNet/VPC, routing, segmentation, firewalls, WAFs, load balancers, endpoints).
• Participate in security hardening, incident triage, posture assessment, and support initiatives related to GenAI/Agentic AI for operational efficiency.

About the Team

The Cybersecurity team is globally responsible for helping the organization balance risk by aligning policies and procedures with Moody's business and regulatory requirements. The team oversees:

• Development, enforcement, and monitoring of security controls, policies, and procedures.
• Disaster recovery programs and GRC (Governance, Risk and Compliance) reporting.
• Delivery of security services including the company's Cyber Security program.

Moody’s is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender expression, gender identity or any other characteristic protected by law.

Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moody’s Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary.