At Moody's, we unite the brightest minds to turn todays risks into tomorrows opportunities. We do this by striving to create an inclusive environment where everyone feels welcome to be who they arewith the freedom to exchange ideas, think innovatively, and listen to each other and customers in meaningful ways. Moodys is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment, were advancing AI to move from insight to actionenabling intelligence that not only understands complexity but responds to it. We decode risk to unlock opportunity, helping our clients navigate uncertainty with clarity, speed, and confidence.

If you are excited about this opportunity but do not meet every single requirement, please apply! You still may be a great fit for this role or other open roles. We are seeking candidates who model our values: invest in every relationship, lead with curiosity, champion diverse perspectives, turn inputs into actions, and uphold trust through integrity. 

Skills and Competencies

• Extensive experience designing and securing Microsoft Azure cloud environments to enterprise standards
• Strong expertise in Azure security architecture including identity and access management, network security, and platform security controls
• Handson experience implementing cloud security posture management solutions to identify and remediate risks
• Proficiency in scripting or programming languages such as Python to enable security automation and tooling
• Proven ability to define and document secure architectural patterns for productiongrade cloud environments
• Strong analytical, problemsolving, and criticalthinking skills with the ability to propose multiple mitigation strategies
• Ability to work independently while collaborating effectively with crossfunctional engineering and DevOps teams
• Demonstrated proficiency in artificial intelligence concepts, with handson experience using AI tools to streamline workflows and enhance operational efficiency, along with awareness of responsible and ethical AI use

Qualifications

• Extensive experience of Azure Cloud Security Architecture and IAM/Entra ID principles.
• Proficiency in scripting/programming (Python preferred) for security automation.
• Expertise in securing API security and Non-Human Identities (NHI)
• Minimum of 5+ years in cybersecurity, with 2+ years focused on Azure Security.
• Proven, hands-on experience implementing and managing an enterprise CSPM (specifically Wiz).
• Demonstrated experience in defining and documenting secure architectural patterns for production-grade environments.

 Responsibilities

• Security Architecture & Pattern Design: Evaluate, define, and document robust Azure security design patterns (e.g., Landing Zones, Private Link, Entra ID) and integrate them into the global security standards.
• DevOps Advisory & Support: Act as a strategic consultant to Cloud DevOps teams, providing the blueprints and automation scripts necessary for them to execute remediations effectively.
• Security Automation: Develop automation and security tooling to streamline auditing, policy enforcement, and "security as code" initiatives.
• AI Security Integration (Training Track): Collaborate with the AI & SSPM team to enforce security reviews of AI systems, recommending controls for RAG pipelines and Model Context Protocol (MCP) servers.
• Collaborate with cross-functional teams to embed security early in development (shift left).

Critical Thinking & Innovation

• Challenge existing processes and propose alternative solutions.
• Analyse, document, and share knowledge across teams.
• Provide multiple solutions or mitigation strategies when faced with problems.
• Own projects and contribute to secure business enablement.

Risk Management

• Prioritise security above all other tasks and ensure assigned work does not require follow-ups.

Collaboration & Communication

• Acknowledge requests promptly and follow up reliably.
• Communicate clearly with both technical and non-technical colleagues.
• Raise awareness of your work and its importance.

Professional Development

• Complete at least 50 hours of training annually.
• Maintain independent-level knowledge on at least two supported technologies
• Obtain at least one certification per year.

About the Team

The Cybersecurity Engineering team is dedicated to protecting Moodys AI and Cloud environments through the implementation of advanced security strategies and frameworks. As a member of this team, you will play an active role in ensuring the secure integration of Cloud and SSPM technologies across the organization, utilizing Microsoft Azures robust features while upholding standards of compliance and ethical governance. This position offers a valuable opportunity to contribute to the advancement of Cloud and SSPM security and to support the development of secure, AI-driven transformation initiatives.

Moodys is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender expression, gender identity or any other characteristic protected by law.

Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moodys Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary.