Moody's is a global integrated risk assessment firm that empowers organizations to make better decisions.
- Join the Workplace Services Desktop Engineering Team and you'll provide expert advice and counsel to users, management, and IT project teams for the most complex systems, spanning multiple functions and locations.
- Stay abreast of new technical developments impacting the noted platforms as well as related vulnerability and risk management trends.
- Create and maintain design documentation, procedures, and standards.
- Analyze, optimize and / or automate end-user related IT processes.
- Work closely with L3 and L2 support to develop, plan, and oversee implementation of system enhancements and upgrades in alignment with standards; be available for L3 escalation requests.
- Support new and existing deployments through analysis of metrics, logs, system alarms, etc., to troubleshoot problems and enable preventative maintenance on the noted platforms.
- Develop complex systems automation/scripting and related systems support activities, including system integration and monitoring.
- Follow standard ITIL processes and procedures to lead troubleshooting and documentation related to incident, change, and problem management upon incident identification.
- Lead vulnerability management by identifying, prioritizing, assessing and remediating vulnerabilities for the noted platforms.
- Collaborate with security to ensure system configuration, operating systems and Office 365 hardening are compliant with security standards.
- Design, build, and maintain vulnerability Power BI reports and dashboards through API connection with Qualys VDMR and Patch Management solution.
- Establish metrics and use them to produce analytical reporting and a roadmap for continuous improvement.
- Drive clarity and action despite ambiguity.
- Summarize and communicate complex technical and business issues for the audience both written and verbally using both technical and non-technical terms.
- Work cross-functionally to solve both business and technical issues.
- Qualifications:
- Mid to senior-level expertise (3 - 5 years of experience) in vulnerability management or a related field with proven experience in strategies, prioritization, standards, risk assessment, remediation, and scanning technologies for infrastructure
- Thorough understanding of Active Directory, Automated Application Development including replication, Group Policy Object and Domain Name System.
- Required automation skills; PowerShell, Python, and Bash are preferred.
- Required strong understanding of security concepts (SSL, PKI, IPsec, VPNs, Firewalls, DMZ, Proxy, and cyber-attacks).
- Required basic understanding of network concepts (VLANs, routing, TCP/IP, load balancing, traffic analysis, etc.)
- Required business fluency in English.
- Experience developing metrics, and reporting for continual program improvement.
- Experience working with automated and open-source vulnerability scanners such as Qualys, Nessus, WebInspect, or Nexpose.
- Ability to document, diagram, and flowchart complex design is a plus.
Education Qualification and Certification Requirements:
- Bachelor's Degree in computer science or equivalent area of study.
- Industry certifications in relevant areas is a plus.
- Minimum 5 years' experience in IT industry in relevant area.
Moody's is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender expression, gender identity or any other characteristic protected by law.
For more information on the Securities Trading Program, please refer to the STP Quick Reference guide on ComplianceNet