Senior Security Engineer

Summary

Join GoDaddy's Product Security team as a Senior Security Engineer and become an information security leader. You will tackle large-scale security challenges, collaborating with development and operations teams. As a Senior Security Engineer, you will leverage your technical skills to create scalable solutions for complex problems, communicate effectively with engineering teams, conduct security assessments, prioritize risks, and design and implement high-quality security engineering solutions. This is a remote position based in India, with occasional office visits. GoDaddy offers a comprehensive benefits package, including paid time off, retirement savings options, bonuses, equity grants, health benefits, and parental leave. The company embraces diversity and inclusion, and encourages employees to bring their whole selves to work.

Requirements

• 7+ years of security engineering experience with expertise in Secure Development Lifecycle
• Problem-solver with excellent interpersonal skills, and a deep technical understanding of security engineering
• Required scripting skills in JS/Python
• Experience in manual code reviews to assess consistency to secure coding standards, and compliance with project security requirements
• Applying tooling to perform static code analysis and identifying security vulnerabilities

Responsibilities

• Identify security threats in applications and infrastructure and provide remediation mentorship to system owners by performing security certifications/review
• Drive Security certification activities like architecture reviews, threat modeling, source code reviews, penetration testing, cloud security audit etc
• Build tools to automate repeatable/reusable security processes and frameworks
• Promote secure by design and secure by default development strategies
• To own and drive the resolution of different security events, policy questions, and technical security risks. Support the security risk acceptance and exception processes, when required

Preferred Qualifications

• Experience in developing software applications or security automation tools
• DevSecOps experience with a focus on integrating SAST tools with the CI/CD pipeline

Benefits

• Paid time off
• Retirement savings (e.g., 401k, pension schemes)
• Bonus/incentive eligibility
• Equity grants
• Participation in our employee stock purchase plan
• Competitive health benefits
• Parental leave