Director- Information Security Risk

Summary

Join GoDaddy's Information Security Org as a Director and lead the development and implementation of enterprise-wide security assessment programs. You will manage a team of security professionals, perform security assessments, and prioritize security risks. This role requires strong technical skills, leadership abilities, and excellent communication skills. You will work closely with development and operational teams to reduce vulnerabilities and ensure security standards are met. GoDaddy offers a competitive benefits package, including paid time off, retirement savings, bonus/incentive eligibility, equity grants, and health benefits.

Requirements

• Experience in Secure Development Lifecycle and Shift Left with a Security by Design methodology
• 8+ years of progressive security engineering experience with expertise in multiple security domains such as Security Architecture, Cryptography, Network Security, Cloud Security, Mobile Security, Compliance, and Web Security
• Knowledgeable in threat modeling and risk management
• Ability to lead offensive security testing, including penetration testing and red team exercises
• Experience with building and/or managing security assessment and risk management programs
• Deep technical understanding of security assessments and risk management

Responsibilities

• Build and manage an enterprise-wide security assessment program that includes application, network, and infrastructure security assessments
• Join forces with SRE and development teams to find new and creative ways to reduce the occurrence of vulnerabilities at scale
• Manage a team of security professionals performing security assessments
• Launch campaigns to perform security assessments and help mitigate security risks across the company
• Identify security standards and requirements for embracing new and emerging technologies and platforms
• Partner with business collaborators to help define and prioritize security initiatives and investments
• Build evaluation methods and performance indicators to measure the efficiency of security functions and capabilities
• Operationalize continuous testing and validation of security controls
• Partner internally and externally with our audit teams to drive gap assessments, cybersecurity, and other audit requirements to support the organization

Preferred Qualifications

• Bachelor's Degree in Computer Science or related field
• Master's degree or PhD in Computer Science or related field
• Industry recognized security certifications from organizations such as ISACA, ISC^2, SANS, Offensive Security, etc

Benefits

• Paid time off
• Retirement savings (e.g., 401k, pension schemes)
• Bonus/incentive eligibility
• Equity grants
• Participation in our employee stock purchase plan
• Competitive health benefits
• Parental leave