Remote Principal Red Team Operator

Summary

Join our Team at GoDaddy as a Principle Penetration Tester and use your hands-on technical skills, strong leadership abilities, and eagerness to craft solutions to complex problems. This is an excellent opportunity to grow your career and work within an industry-leading tech company!

Requirements

• 10+ years of progressive offensive engineering experience with expertise in multiple offensive security domains, including Penetration Testing, Reverse Engineering, Application Security, Secure SDLC, and social engineering
• Conducting offensive security testing against various infrastructure, applications, and full-stack engagements
• Experience with incorporating MITRE ATT&CK Framework into deliverables
• Experience in Red Team operations and campaigns that include stealth or anti-forensics
• Experience with various red team-oriented tools and tradecraft such as Cobalt Stike
• Scripting skills (e.g., Python, C, C++, Java, Ruby, or PowerShell)
• Experience with cloud technologies including AWS and Azure
• Experience with Burp Suite and manual application testing

Responsibilities

• Develop and implement the attack methodology for use in unannounced red team engagements
• Highlight and offer suggestions to the executive management on strategic strengths and weaknesses of the organization while guiding strategic remediations, mitigations, and kill chains
• Plan and complete unannounced operations that simulate real-world attacks or emulate threat actors
• Join forces with SRE and development teams to find new and creative ways to reduce the occurrence of vulnerabilities at scale
• Assist with prioritising prospective projects. Perform detection engineering by working alongside defensive teams to conduct live fire exercises in the production environment
• Use your detection engineering and validation experience to own and drive resolution and retesting of sophisticated security events, policy questions, and technical security risks
• Mentor the red team and partners on attack methodology, threat emulation, and red team tradecraft

Benefits

• Paid time off
• Retirement savings (e.g., 401k, pension schemes)
• Incentive eligibility
• Equity grants
• Participation in an employee stock purchase plan
• Parental leave