Vice President- Email Security

At Moody's, we unite the brightest minds to turn today’s risks into tomorrow’s opportunities. We do this by striving to create an inclusive environment where everyone feels welcome to be who they are—with the freedom to exchange ideas, think innovatively, and listen to each other and customers in meaningful ways. Moody’s is transforming how the world sees risk. As a global leader in ratings and integrated risk assessment, we’re advancing AI to move from insight to action—enabling intelligence that not only understands complexity but responds to it. We decode risk to unlock opportunity, helping our clients navigate uncertainty with clarity, speed, and confidence.

If you are excited about this opportunity but do not meet every single requirement, please apply! You still may be a great fit for this role or other open roles. We are seeking candidates who model our values: invest in every relationship, lead with curiosity, champion diverse perspectives, turn inputs into actions, and uphold trust through integrity.

Skills and Competencies

• 10+ years of progressive cybersecurity experience, including at least 5 years focused on enterprise email security architecture and operations in large-scale environments
• Hands-on expertise with Proofpoint (Enterprise Protection, TAP, TRAP, PSAT) at enterprise scale; or similar Email Security products
• Deep technical proficiency in email authentication and transport security, including SPF, DKIM, DMARC, BIMI, MTA-STS, TLS-RPT, SMTP, MIME, email header analysis, and mail flow routing
• Proven leadership of complex, multi-domain DMARC enforcement programs, preferably across 1,000+ domains or 10,000+ mailboxes, from monitoring through full enforcement
• Experience governing cloud-based email delivery services such as Amazon SES, SendGrid, Mailgun, Postmark, or SparkPost, including authentication, reputation monitoring, deliverability tooling, and security controls
• Strong background in email security operations, including phishing detection and response, DLP, encryption, compliance archiving, SIEM integration, and emerging threats such as AI-generated phishing and adversary-in-the-middle attacks
• Demonstrated ability to manage and develop global security teams of 5 or more direct or indirect reports and communicate complex technical risks to executive and non-technical stakeholders
• Demonstrated proficiency in artificial intelligence concepts, with hands-on experience using AI tools to streamline workflows and enhance operational efficiency. Proven ability to implement AI-powered solutions to solve business challenges. Demonstrates a growing awareness of AI risk management and a commitment to responsible and ethical AI use.

Education

• Bachelor’s degree in Information Security, Computer Science, Engineering, or a related field, or equivalent practical experience
• Advanced degree and/or relevant security certifications (e.g., CISSP, CISM) preferred

Responsibilities

This role defines, executes, and governs the enterprise-wide email security program to ensure secure, resilient, and compliant email services aligned with business and risk objectives.

• Define and own the enterprise email security strategy, roadmap, and governance framework aligned with organizational risk tolerance and compliance requirements
• Serve as executive sponsor and subject matter expert for all enterprise email security initiatives, providing clear leadership and accountability
• Drive cross-functional collaboration across Technology, Legal, Compliance, Risk, and Business teams to ensure cohesive security outcomes
• Manage vendor relationships, contracts, and SLAs with cloud-based email and security service providers
• Architect and oversee enterprise email authentication and encryption standards, including SPF, DKIM, DMARC, MTA-STS, and TLS-RPT
• Lead inbound phishing prevention, detection, and response programs, including metrics, reporting, and continuous improvement
• Oversee secure configuration and operations of cloud email platforms such as Microsoft Exchange and Google Workspace
• Establish executive-level reporting on email security posture, risk trends, and performance metrics

About the Team

The Email Security team sits within the broader Cybersecurity organization and is responsible for protecting enterprise communications at scale. The team partners closely with technology, risk, compliance, and business stakeholders to ensure secure, reliable, and trusted email services that support the organization’s global operations and strategic goals.

For US-based roles only: the anticipated hiring base salary range for this position is $168,700 - $277,600.00, depending on factors such as experience, education, level, skills, and location. This range is based on a full-time position. In addition to base salary, this role is eligible for incentive compensation. Moody’s also offers a competitive benefits package, including not but limited to medical, dental, vision, parental leave, paid time off, a 401(k) plan with employee and company contribution opportunities, life, disability, and accident insurance, a discounted employee stock purchase plan, and tuition reimbursement.

Moody’s is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, gender, age, religion or creed, national origin, ancestry, citizenship, marital or familial status, sexual orientation, gender identity, gender expression, genetic information, physical or mental disability, military or veteran status, or any other characteristic protected by law. Moody’s also provides reasonable accommodation to qualified individuals with disabilities or based on a sincerely held religious belief in accordance with applicable laws. If you need to inquire about a reasonable accommodation, or need assistance with completing the application process, please email [email protected]. This contact information is for accommodation requests only, and cannot be used to inquire about the status of applications

For San Francisco positions, qualified applicants with criminal histories will be considered for employment consistent with the requirements of the San Francisco Fair Chance Ordinance.

This position may be considered a promotional opportunity, pursuant to the Colorado Equal Pay for Equal Work Act.

Click here to view our full EEO policy statement. Click here for more information on your EEO rights under the law. Click here to view our Pay Transparency Nondiscrimination statement. Click here to view our Notice to New York City Applicants.
Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moody’s Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary.