Avp, Cybersecurity

hace 3 semanas

San Francisco, Heredia, Costa Rica Moody's A tiempo completo

The Moody's Cybersecurity team is responsible for helping the organization balance risk by aligning policies and procedures with Moody's business requirements.

The team is responsible for the development, enforcement and monitoring of security controls, policies and procedures, and for the delivery of security services.

Cybersecurity team sets strategic direction for security within the organization and aligns with stakeholders throughout the company.


The AVP-Cybersecurity will be mainly responsible for building and leading a local team of 4 cybersecurity analysts and help with investigating and escalating of alerts which require technical analysis, such as network intrusions and malware infections which have been identified by the Cybersecurity team.

Functional Responsibilities

  • Build, lead and supervise a local team of cybersecurity analysts part of the Fusion Center (global cybersecurity monitoring).
  • Help investigate security alerts, using SIEM, SOAR and other technologies; collect evidence and work with teams to isolate and/or remediate as necessary.
  • Communicate and escalate potential incidents to Incident Response team.
  • Perform daily audit of closed investigations with guidance and mentorship to more junior colleagues.
  • Help developing standard operating procedures (SOP).
  • Keep abreast of current security threats, events, technologies, vendors and other aspects of the cyber threat landscape. Propose changes or enhancements to our security posture where appropriate.
Minimum education and work experience required for this position include:

  • At least 5 years of IT industry experience, preferably in a financial services organization.
  • At least 2 years of experience in a cybersecurity related role.
  • At least 1 year of management/leading role experience.
  • BS or BA degree, preferably in technology.
  • Experience in security alerts investigation and relevant technical certifications such as BTL1, GCIA, GCIH, or CISSP are considered a plus.
Key Competencies

  • Leadership and organizational skills.
  • Strong written and oral communication skills including the ability to interact directly with customers that do not have an IT background.
  • Ability to work in a timesensitive environment; must be detail oriented.
  • Experience in large, geographically diverse enterprise networks.
  • Ability to work in shifts.
Information Risk and Security - Threat and Vulnerability Mgmt

Moody's is an equal opportunity employer.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender expression, gender identity or any other characteristic protected by law.

Moody's is a global integrated risk assessment firm that empowers organizations to make better decisions.