Security Engineer

At GoDaddy the future of work looks different for each team. Some teams work in the office full-time; others have a hybrid arrangement (they work remotely some days and in the office some days) and some work entirely remotely.

This is a remote position, so you’ll be working remotely from your home. You may occasionally visit a GoDaddy office to meet with your team for events or meetings

GoDaddy’s Product Security group is looking for a Security Engineer to join our organization. Do you want to be an Information Security Leader at GoDaddy? Can you solve large-scale and cross-company security challenges while ensuring that partnership with the development and operational communities remains front of mind?

At GoDaddy, Security Engineers apply their strong hands-on technical and leadership skills to design scalable solutions to complex problems! You must be comfortable communicating with GoDaddy Engineering teams, performing security assessments, prioritizing security risks, and designing and implementing high-quality security engineering solutions

• →Identify security threats and vulnerabilities in applications and infrastructure and provide remediation mentorship to system owners
• →Collaborate with SRE and development teams to discover and implement creative ways to reduce the occurrence of vulnerabilities at scale
• →Develop repeatable and reusable security processes and frameworks
• →Advocate for secure by build and secure by default development strategies
• →Review quality issues and strive to detect both obvious and subtle security flaws
• →Assist with prioritising prospective projects and participate in projects from kickoff through “definition of done” via end-to-end ownership
• →Apply your industry experience to own and drive resolution and retesting of complex security events, policy questions, and technical security risks

• 1+ years of progressive security engineering experience with expertise in multiple security domains, including but not limited to Security Architecture, Cryptography, Network Security, Cloud Security, Mobile Security, and Web Security
• Demonstrated problem-solving abilities combined with a strong technical grasp of security engineering
• Experience in threat modelling complex software services, secure code review, and penetration testing
• Solid knowledge of security controls across all layers of the OSI model related to common technologies
• Experience applying security engineering guidelines that align with security and privacy compliance requirements

• Bachelor's degree 
• Experience in Secure Development Lifecycle and Shift Left with a Security by Build methodology
• Proficiency in system architecture and building, scripting/development skills (e.g., Python, C, C++, Java, Ruby, or PowerShell)
• Hosting Industry and/or Cloud Experience
• Hardware security experience