Sr Endpoint Cybersecurity Engineer

At Moody's, we unite the brightest minds to turn today’s risks into tomorrow’s opportunities. We do this by striving to create an inclusive environment where everyone feels welcome to be who they are-with the freedom to exchange ideas, think innovatively, and listen to each other and customers in meaningful ways. 

If you are excited about this opportunity but do not meet every single requirement, please apply! You still may be a great fit for this role or other open roles. We are seeking candidates who model our values: invest in every relationship, lead with curiosity, champion diverse perspectives, turn inputs into actions, and uphold trust through integrity. 

Skills and Competencies

• Strong background implementing and supporting endpoint security technologies such as EDR, AV, local firewalls, encryption, mobile device management, VPN and proxy
• Experience with Microsoft 365 offerings - Endpoint Manager, Intune, and Device Management
• Workstation and Server Security:

oProficiency in securing Windows operating systems, incl. Windows 10 & 11, MacOS and Windows Server.
oKnowledge of security features, such as BitLocker, Windows Defender, and Group Policy.
oUnderstanding of vulnerability management, patch management, and security hardening techniques for endpoints.
oExperience with log analysis, event monitoring, and incident response on workstations and servers.
oCloud Server Security: familiarity with cloud computing platforms (e.g., AWS, Azure, Google Cloud) and their security controls.

• Endpoint Security Solutions:

oExpertise in implementing and managing endpoint security solutions, such as antivirus/anti-malware software and endpoint detection and response (EDR) tools.
oUnderstanding of advanced threat protection techniques, including behavior-based analysis and sandboxing.
oKnowledge of endpoint security management platforms for centralized monitoring and policy enforcement.

• Security Standards and Compliance:

oUnderstanding of relevant security standards and frameworks, such as PCI DSS, HIPAA, NIST, and ISO 27001.
oKnowledge of endpoint security controls required for compliance and ability to implement and maintain them.

• Working experience with cloud technologies such as AWS, Azure, Google Cloud
• Automation or scripting experience
• Broad technical background including understanding of networking, firewalls, servers, workstations, and Active Directory
• Strong working knowledge of Windows Server and Workstation
• Linux, MacOS, AWS \ Azure experience is a big plus
• Experience with identity and access management (IAM) is a plus
• Ability to run projects at the technical and organizational level
• Accountable, responsible, collaborative and takes ownership for supported technologies
• Strong organizational skills, presentation skills

Education

• Minimum 5 years of experience in IT industry, preferably in a financial service or consulting organization
• IT engineering experience with endpoint security tools and technologies
• BS or BA degree, preferably in engineering, science, or technology; or equivalent work experience

Responsibilities

• Assist and become subject matter expert on endpoint security products - with a focus on centralized host-based firewall, EDR and privilege management
• Help research, testing and roll-out of new features for existing endpoint security tools
• Enhance automation in areas such as compliance, installation, and reporting
• Assist with creating and updating documentation including standard operating procedures and guides for different audiences - internal team, the Cyber organization, and other IT teams
• Develop, collect, and mature security metrics for IT Risk programs
• Security tool deployment in cloud and on-premise environments
• Provide escalation support for endpoint security tools
• Work with IT teams to develop or enhance processes, provide cross-training, assistance and build relationships
• Assist with compliance, ensuring endpoint tools are properly installed, reporting and fully functional across the organization
• Plan and assist with implementation of security tools for new acquisitions
• Plan and rollout upgrades, perform true-ups and remediation

About the team
The Cybersecurity team is globally responsible for helping the organization balance risk by
aligning policies and procedures with Moody’s business and regulatory requirements. The
team is responsible for the development, enforcement, and monitoring of security controls,
policies and procedures, disaster recovery programs, GRC (Governance, Risk and Compliance)
reporting and the delivery of security services including the company’s Cyber Security program.

Some scheduled weekend work and on-call rotation is expected.

#LI-Hybrid

Annual base salary gross: 49,600 EUR to 79,200 EUR. Applicable to Lithuania candidates: The base salary range represents the low and high end of the Moody’s salary range for this position. Actual salaries will vary and will be based on various factors, such as candidate’s qualifications, skills, and competencies. The salary is one component of Moody’s total compensation package for employees. Other rewards and benefits include the following: Medical, Personal Accident, Life Insurance and Time Off.

Moody’s is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender expression, gender identity or any other characteristic protected by law.

Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moody’s Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary.

For more information on the Securities Trading Program, please refer to the STP Quick Reference guide on ComplianceNet

Please note: STP categories are assigned by the hiring teams and are subject to change over the course of an employee’s tenure with Moody’s.