Principal Security Engineer

Summary

Join GoDaddy's Product Security Group as a Principal Security Engineer and become an Information Security Leader. This remote position requires identifying security threats, conducting assessments, and providing remediation mentorship. You will independently assess and improve security programs, implement automated testing tools, and prioritize projects. The role involves mentoring developers and enhancing security awareness. GoDaddy offers a competitive compensation and benefits package, including paid time off, retirement savings, bonuses, health benefits, and parental leave.

Requirements

• 10+ years of progressive security engineering experience with expertise in multiple security domains including but not limited to Security Architecture, Cryptography, Network Security, Cloud Security, Mobile Security, and Web Security
• Experience in Secure Development Lifecycle and Shift Left with a Security by Design methodology
• Experience with SAST, DAST, SCA tools and penetration testing activities
• Experience with threat modeling, architecture reviews and OWASP Top 10 guidelines
• Experience applying security engineering best practices that align with security and privacy compliance requirements
• Problem-solver with excellent communication skills, ability to influence and collaborate with cross functional teams, and a deep technical understanding of security engineering best practices

Responsibilities

• Identify security threats in application and infrastructure, conduct in depth security assessments of applications and systems to identify vulnerabilities and provide remediation mentorship to affected system/application owners
• Independently assess and improve security program, join forces with SRE and development teams to find new and creative ways to reduce the occurrence of vulnerabilities at scale
• Review quality issues and work towards detecting security flaws
• Implement automated security testing tools and work on continuous security improvements
• Assist with prioritizing prospective projects, participating in projects from kick off through “definition of done” via end-to-end ownership
• Use your validated experience to own and drive resolution and retesting of sophisticated security events, policy questions, and technical security risks
• Mentor and train developers and security champions across teams to enhance security awareness

Preferred Qualifications

• Bachelor's/Master's degree or Ph.D. in Computer Science or related field
• Security certifications from SANS or similar

Benefits

• Paid time off
• Retirement savings (e.g., 401k, pension schemes)
• Bonus/incentive eligibility
• Equity grants
• Participation in our employee stock purchase plan
• Competitive health benefits
• Parental leave