This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
At Moody's, we unite the brightest minds to turn today’s risks into tomorrow’s opportunities. We do this by striving to create an inclusive environment where everyone feels welcome to be who they are—with the freedom to exchange ideas, think innovatively, and listen to each other and customers in meaningful ways. Moody’s is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment, we’re advancing AI to move from insight to action—enabling intelligence that not only understands complexity but responds to it. We decode risk to unlock opportunity, helping our clients navigate uncertainty with clarity, speed, and confidence.
Job Responsibility:
Manage end‑to‑end RCSA activities for technology and engineering processes, including risk identification, control mapping, control testing, issue management, and risk acceptance activities
Optimize the execution of the RCSA process, methodologies, workflows, and documentation standards by the development and engineering of technological solutions
Provide guidance and challenge to technology partners to ensure risks and controls are accurately assessed and clearly articulated
Implement AI and automation tools to enhance RCSA efficiency, improve risk identification, control documentation, workflow efficiency, issue tracking, and reporting accuracy
Identify and address emerging technology risks through innovative technical solutions and proactive mitigation strategies
Implement and maintain controls designed to mitigate a broad range of technology, operational, and cybersecurity risks
Exhibit high attention to detail in identifying, aggregating, and communicating issues and control gaps to appropriate stakeholders
Apply technical expertise to continuously improve control evaluation activities and ensure compliance with regulatory standards
Continuously develop domain subject matter expertise in control evaluation activities
Contribute to ad-hoc assignments/special projects to support the 1st line Risk Team
Requirements:
6+ years of experience in technology risk management, information security, or IT operations within a large, complex business environment
Strong knowledge of risk management frameworks (COBIT, ITIL, NIST), regulatory requirements, and operational risk methodologies
Experience designing and implementing controls, conducting risk assessments, and managing remediation activities
Understanding of modern software development practices such as Agile, DevOps, CI/CD, and sSDLC
Excellent analytical, problem-solving, and communication skills
Ability to deal effectively with conflict and work in a matrix environment and work independently and collaboratively in a fast-paced, dynamic environment
Demonstrated proficiency in artificial intelligence concepts, with hands-on experience using AI tools to streamline workflows and enhance operational efficiency. Proven ability to implement AI-powered solutions to solve business challenges. Demonstrates a growing awareness of AI risk management and a commitment to responsible and ethical AI use
Bachelor's degree in information technology, Computer Science, Risk Management, or related field