Security Engineer

GoDaddy is seeking a skilled and motivated Senior Security Engineer to join their Incident Response team. The role involves supporting incident response activities across diverse environments like Windows, MacOS, Linux, and AWS. The engineer will work closely with senior engineers on investigations, analysis, containment, and recovery efforts, contributing to the continuous improvement of detection and response capabilities. This position offers growth opportunities in safeguarding the organization against emerging threats.

Must Have

• Serve as the escalation point for high-priority and complex security incidents, providing advanced troubleshooting, root cause analysis, and remediation guidance.
• Support incident response investigations across Windows, MacOS, and Linux environments, AWS cloud infrastructure and services, Endpoint protection platforms, SIEM and Identity management tools.
• Conduct advanced malware analysis and forensics to determine threat vectors, persistence mechanisms, and impact.
• Lead investigations, deliver actionable findings to leadership, and drive internal projects that enhance incident response processes, fostering continuous improvement and innovation.
• Develop and optimize security playbooks, detection rules, and tooling—including AWS-native, third-party, and AI-integrated solutions—to strengthen overall security posture.
• Collaborate with IT, DevOps, and cloud teams to assist in hardening and recovery efforts.
• Continue to develop technical expertise through mentorship and hands-on involvement in investigations.
• Work flexible hours as required to support incident response and business needs.
• 4+ years of hands-on experience in cybersecurity, with at least 2 years in Dedicated incident response role or with at least 3 years in L3 security operations role.
• Working knowledge of security investigations related to Windows, MacOS, Linux and AWS (CloudTrail, GuardDuty, etc.).
• Scripting and automation familiarity (Python, PowerShell, or Bash) to assist in investigations.
• Basic forensic investigation knowledge including image collection and chain of custody.

Good to Have

• Familiarity with cloud-native and hybrid architectures.
• Experience with security orchestration and automation platforms (SOAR) or automation workflows.
• Experience collaborating with cross-regional or distributed teams.
• Security certifications strongly preferred (e.g., GCIA, GCIH, GCFA, AWS Security Specialty, ECIH, OSCP, Security+).

Perks & Benefits

• Paid time off
• Retirement savings (e.g., 401k, pension schemes)
• Bonus/incentive eligibility
• Equity grants
• Participation in our employee stock purchase plan
• Competitive health benefits
• Parental leave
• Employee Resource Groups

Join our team...

We are seeking a skilled and motivated Senior Security Engineer to join our Incident Response team. The ideal candidate will play a critical role in supporting incident response activities across diverse environments, including Windows, MacOS, Linux and AWS. You will work closely with senior engineers during investigations, assist in analysis, containment and recovery efforts, and contribute to the continuous improvement of our detection and response capabilities. This role provides the opportunity to grow your expertise while helping safeguard our organization against emerging threats.

What you'll get to do...

• Serve as the escalation point for high-priority and complex security incidents, providing advanced troubleshooting, root cause analysis, and remediation guidance.
• Support incident response investigations across Windows, MacOS, and Linux environments, AWS cloud infrastructure and services, Endpoint protection platforms, SIEM and Identity management tools.
• Conduct advanced malware analysis and forensics to determine threat vectors, persistence mechanisms, and impact.
• Lead investigations, deliver actionable findings to leadership, and drive internal projects that enhance incident response processes, fostering continuous improvement and innovation.
• Develop and optimize security playbooks, detection rules, and tooling—including AWS-native, third-party, and AI-integrated solutions—to strengthen overall security posture.
• Collaborate with IT, DevOps, and cloud teams to assist in hardening and recovery efforts.
• Continue to develop technical expertise through mentorship and hands-on involvement in investigations.
• Work flexible hours as required to support incident response and business needs.

Your experience should include...

• 4+ years of hands-on experience in cybersecurity, with at least 2 years in Dedicated incident response role or with at least 3 years in L3 security operations role
• Working knowledge of security investigations related to Windows, MacOS, Linux and AWS (CloudTrail, GuardDuty, etc.)
• Scripting and automation familiarity (Python, PowerShell, or Bash) to assist in investigations
• Basic forensic investigation knowledge including image collection and chain of custody

You might also have...

• Familiarity with cloud-native and hybrid architectures
• Experience with security orchestration and automation platforms (SOAR) or automation workflows
• Experience collaborating with cross-regional or distributed teams
• Security certifications strongly preferred (e.g., GCIA, GCIH, GCFA, AWS Security Specialty, ECIH, OSCP, Security+)

We've got your back...

We offer a range of total rewards that may include paid time off, retirement savings (e.g., 401k, pension schemes), bonus/incentive eligibility, equity grants, participation in our employee stock purchase plan, competitive health benefits, and other family-friendly benefits including parental leave. GoDaddy’s benefits vary based on individual role and location and can be reviewed in more detail during the interview process.

We also embrace our diverse culture and offer a range of Employee Resource Groups (Culture). Have a side hustle? No problem. We love entrepreneurs! Most importantly, come as you are and make your own way.

About us...

GoDaddy is empowering everyday entrepreneurs around the world by providing the help and tools to succeed online, making opportunity more inclusive for all. GoDaddy is the place people come to name their idea, build a professional website, attract customers, sell their products and services, and manage their work. Our mission is to give our customers the tools, insights, and people to transform their ideas and personal initiative into success. To learn more about the company, visit About Us.

At GoDaddy, we know diverse teams build better products—period. Our people and culture reflect and celebrate that sense of diversity and inclusion in ideas, experiences and perspectives. But we also know that’s not enough to build true equity and belonging in our communities. That’s why we prioritize integrating diversity, equity, inclusion and belonging principles into the core of how we work every day—focusing not only on our employee experience, but also our customer experience and operations. It’s the best way to serve our mission of empowering entrepreneurs everywhere, and making opportunity more inclusive for all. To read more about these commitments, as well as our representation and pay equity data, check out our Diversity and Pay Parity annual report which can be found on our Diversity Careers page.

GoDaddy is proud to be an equal opportunity employer. GoDaddy will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements. Refer to our full EEO policy._

Our recruiting team is available to assist you in completing your application. If they could be helpful, please reach out to myrecruiter@godaddy.com.

GoDaddy doesn’t accept unsolicited resumes from recruiters or employment agencies.

##### Apply Now and Join the #GoDaddyLife today!

Please review these directions prior to submitting your application:

• To ensure we address you correctly throughout the process, please enter your Preferred Name if different than your Legal Name. We may ask you to confirm your Legal Name at a later stage when necessary.
• If you do not have a legal first name, please input FNU where you are asked to input your first name.
• If you do not have a legal last name/surname, please input LNU where you are asked to input your last name/surname.
• Submit your resume and/or cover letter in PDF or Docx format.
• For phone number, please enter your mobile number.

Colorado Residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

Massachusetts Residents: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.