Location Details:
At GoDaddy the future of work looks different for each team. Some teams work in the office full-time, others have a hybrid arrangement (they work remotely some days and in the office some days) and some work entirely remotely.
This is a remote position, so you’ll be working remotely from your home. You may occasionally visit a GoDaddy office to meet with your team for events or meetings.
This position is not eligible to be performed in Alaska, Mississippi, North Dakota, or the Virgin Islands.
GoDaddy is not currently considering candidates for this role in California, Seattle, or NYC.
Join Our Team
Do you want to be an Information Security Leader at GoDaddy? We help solve large scale and cross-company issues, while ensuring that partnership with the development and operational communities remains front of mind. GoDaddy’s Product Security Group is seeking a Senior Security Engineer to use their hands-on technical skills, strong leadership abilities, and eagerness to craft solutions to sophisticated problems. You must be comfortable with communicating with stakeholders, performing security assessments, prioritizing security risks, and creating/presenting high-quality results.
What you'll get to do...
- Identify security threats in application and infrastructure, conduct in depth security assessments of applications and systems to identify vulnerabilities and provide remediation mentorship to affected system/application owners
- Independently assess and improve security program, join forces with SRE and development teams to find new and creative ways to reduce the occurrence of vulnerabilities at scale
- Review quality issues and work towards detecting security flaws
- Build repeatable and reusable security processes and frameworks
- Assist with prioritizing prospective projects, participating in projects from kick off through “definition of done” via end-to-end ownership
- Use your validated experience to own and drive resolution and retesting of sophisticated security events, policy questions, and technical security risks
Your experience should include...
- 7+ years of progressive security engineering experience with expertise in multiple security domains including but not limited to Security Architecture, Cryptography, Network Security, Cloud Security, Mobile Security, and Web Security
- Experience in Secure Development Lifecycle and Shift Left with a Security by Design methodology
- Experience with SAST, DAST, SCA tools and penetration testing activities
- Experience with threat modeling, architecture reviews
- Secure code reviews
- Scripting/development skills (e.g., Python, C, C++, Java, Ruby, or PowerShell)
- Experience applying security engineering guidelines that align with security and privacy compliance requirements
- Problem-solver with excellent communication skills, ability to influence and collaborate with multi-functional teams, and a deep technical understanding of security engineering standard methodologies
You might also have...
- Security certifications from SANS or similar