Director- Information Security Risk

2 Hours ago • All levels

Job Summary

Job Description

The Director of Information Security Risk will lead an enterprise-wide security assessment program, collaborating with SRE and development teams to reduce vulnerabilities. They will manage a team of security professionals, launch security assessment campaigns, and identify security standards for emerging technologies. This role involves partnering with business collaborators to prioritize security initiatives, build evaluation methods, and operationalize security control testing. Additionally, the Director will work with internal and external audit teams to meet cybersecurity and audit requirements. This position requires strong leadership, technical skills, and the ability to communicate effectively with stakeholders.
Must have:
  • Experience in Secure Development Lifecycle and Shift Left.
  • 8+ years of security engineering experience in various domains.
  • Knowledge in threat modeling and risk management.
  • Ability to lead offensive security testing, including penetration testing.
  • Experience with managing security assessment and risk management programs.
  • Deep technical understanding of security assessments and risk management.
Good to have:
  • Bachelor's Degree in Computer Science or related field.
  • Master's degree or PhD in Computer Science or related field
  • Industry recognized security certifications (ISACA, ISC^2, SANS, Offensive Security, etc.)
Perks:
  • Paid time off
  • Retirement savings
  • Bonus/incentive eligibility
  • Equity grants
  • Employee stock purchase plan
  • Competitive health benefits
  • Parental leave
  • Employee Resource Groups

Job Details

Location Details: United States - Remote

At GoDaddy, the future of work looks different for each team. Some teams work in the office full-time; others have a hybrid arrangement (they work remotely some days and in the office some days), and some work entirely remotely.

This is a remote position, so you’ll be working remotely from your home. You may occasionally visit a GoDaddy office to meet with your team for events or meetings. 

This position is not eligible to be performed in Alaska, Mississippi, North Dakota, or the Virgin Islands. 

GoDaddy is not currently considering candidates for this role in California, Seattle, or NYC.

Join Our Team

GoDaddy’s Information Security Org is looking for a Director to join our organization. Do you want to be an Information Security Leader at GoDaddy? Can you solve large scale and cross-company issues, while ensuring that partnership with the development and operational communities remains front of mind? GoDaddy is looking for a Director to utilize their hands-on technical skills, strong leadership abilities, and an eagerness to build enterprise wide security risk assessment programs. You must be comfortable with communicating to stakeholders, performing security assessments and prioritizing security risks, creating/presenting high-quality deliverables.

What you'll get to do

  • Build and manage an enterprise-wide security assessment program that includes application, network, and infrastructure security assessments.
  • Join forces with SRE and development teams to find new and creative ways to reduce the occurrence of vulnerabilities at scale.
  • Manage a team of security professionals performing security assessments.
  • Launch campaigns to perform security assessments and help mitigate security risks across the company.
  • Identify security standards and requirements for embracing new and emerging technologies and platforms.
  • Partner with business collaborators to help define and prioritize security initiatives and investments.
  • Build evaluation methods and performance indicators to measure the efficiency of security functions and capabilities.
  • Operationalize continuous testing and validation of security controls.
  • Partner internally and externally with our audit teams to drive gap assessments, cybersecurity, and other audit requirements to support the organization.

Your experience should include…

  • Experience in Secure Development Lifecycle and Shift Left with a Security by Design methodology.
  • 8+ years of progressive security engineering experience with expertise in multiple security domains such as Security Architecture, Cryptography, Network Security, Cloud Security, Mobile Security, Compliance, and Web Security.
  • Knowledgeable in threat modeling and risk management.
  • Ability to lead offensive security testing, including penetration testing and red team exercises.
  • Experience with building and/or managing security assessment and risk management programs.
  • Deep technical understanding of security assessments and risk management.

You might also have…

  • Bachelor's Degree in Computer Science or related field.
  • Master's degree or PhD in Computer Science or related field
  • Industry recognized security certifications from organizations such as ISACA, ISC^2, SANS, Offensive Security, etc.

 

We've got your back...  We offer a range of total rewards that may include paid time off, retirement savings (e.g., 401k, pension schemes), bonus/incentive eligibility, equity grants, participation in our employee stock purchase plan, competitive health benefits, and other family-friendly benefits including parental leave. GoDaddy’s benefits vary based on individual role and location and can be reviewed in more detail during the interview process.

We also embrace our diverse culture and offer a range of Employee Resource Groups (Culture). Have a side hustle? No problem. We love entrepreneurs! Most importantly, come as you are and make your own way. 

About us...  GoDaddy is empowering everyday entrepreneurs around the world by providing the help and tools to succeed online, making opportunity more inclusive for all. GoDaddy is the place people come to name their idea, build a professional website, attract customers, sell their products and services, and manage their work. Our mission is to give our customers the tools, insights, and people to transform their ideas and personal initiative into success. To learn more about the company, visit About Us

At GoDaddy, we know diverse teams build better products—period. Our people and culture reflect and celebrate that sense of diversity and inclusion in ideas, experiences and perspectives. But we also know that’s not enough to build true equity and belonging in our communities. That’s why we prioritize integrating diversity, equity, inclusion and belonging principles into the core of how we work every day—focusing not only on our employee experience, but also our customer experience and operations. It’s the best way to serve our mission of empowering entrepreneurs everywhere, and making opportunity more inclusive for all. To read more about these commitments, as well as our representation and pay equity data, check out our Diversity and Pay Parity annual report which can be found on our Diversity Careers page.

GoDaddy is proud to be an equal opportunity employer. GoDaddy will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements.Refer to our full EEO policy.

Our recruiting team is available to assist you in completing your application. If they could be helpful, please reach out to myrecruiter@godaddy.com

Colorado Residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

GoDaddy doesn’t accept unsolicited resumes from recruiters or employment agencies.

Similar Jobs

Axinous - Senior Manager - Indirect Tax

Axinous

Hyderabad, Telangana, India (Remote)
2 Months ago
ByteDance - Security Engineer (Penetration Tester) - Security Assurance

ByteDance

Singapore (On-Site)
6 Months ago
Zscaler - Principal Network Engineer

Zscaler

(Remote)
2 Weeks ago
Zscaler - Account Executive, Commercial

Zscaler

Tokyo, Japan (Hybrid)
2 Weeks ago
Threat connect - Technical Product Manager, Risk Quantification

Threat connect

(Remote)
3 Weeks ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

ION - Senior Security Architect

ION

London, England, United Kingdom (On-Site)
7 Months ago
Crowd Strick - Principal Product Manager, Threat Detection Content

Crowd Strick

(Remote)
2 Weeks ago
Egnyte - Senior Cloud Security Engineer

Egnyte

(Remote)
2 Weeks ago
Zscaler - Staff Application Security Engineer

Zscaler

Bengaluru, Karnataka, India (Hybrid)
2 Weeks ago
Arkose Labs - Staff Product Manager

Arkose Labs

(Remote)
2 Weeks ago
PwC - Cloud Security Engineering - Senior Manager

PwC

Prague, Prague, Czechia (On-Site)
7 Months ago
GoDaddy - Senior Security Engineer - Product Security

GoDaddy

(Remote)
1 Week ago
Zscaler - Principal Site Reliability Engineer

Zscaler

San Jose, California, United States (Hybrid)
2 Weeks ago
Microsoft - Software Engineer 2 – Cloud Infrastructure Engineering

Microsoft

Hyderabad, Telangana, India (On-Site)
4 Weeks ago

Get notifed when new similar jobs are uploaded

Jobs in Worldwide

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!