Principal Security Engineer

At GoDaddy the future of work looks different for each team. Some teams work in the office full-time; others have a hybrid arrangement (they work remotely some days and in the office some days) and some work entirely remotely.​

Remote: This is a remote position, so you’ll be working remotely from your home. You may occasionally visit a GoDaddy office to meet with your team for events or meetings.

Join our team...

Join our team at GoDaddy, the largest services platform for entrepreneurs worldwide. We empower over 21 million customers globally by providing essential tools and assistance to help them thrive online.

GoDaddy’s Product Security is looking for a Senior Security Engineer to join our organization. Do you want to be an information security leader at GoDaddy? We work out large-scale and cross-company security challenges while ensuring that partnership with the development and operational communities remains front of mind.

At GoDaddy, Security Engineers apply their strong hands-on technical skills to craft scalable solutions for multiplex problems. You must be able to fluently communicate with GoDaddy Engineering teams, perform security assessments, prioritize security risks, and design. We as a team implement high-quality security engineering solutions. Expertise in application security, architecture reviews, threat modelling, code reviews and exposure to JS/python scripting is a must.

What you'll get to do...

• Identify security threats in applications and infrastructure and provide remediation mentorship to system owners by performing security certifications/review.

• Drive Security certification activities like architecture reviews, threat modeling, source code reviews, penetration testing, cloud security audit etc.

• Build tools to automate repeatable/reusable security processes and frameworks.

• Promote secure by design and secure by default development strategies.

• To own and drive the resolution of different security events, policy questions, and technical security risks. Support the security risk acceptance and exception processes, when required.

Your experience should include...

• 10+ years of security engineering experience with expertise in Secure Development Lifecycle.

• Problem-solver with excellent interpersonal skills, and a deep technical understanding of security engineering.

• Required scripting skills in JS/Python.

• Experience in manual code reviews to assess consistency to secure coding standards, and compliance with project security requirements.

• Applying tooling to perform static code analysis and identifying security vulnerabilities.

Industries:Consumer Services, Leisure, Travel & Tourism, Recreational Facilities & Services