Senior Threat Hunting Engineer

Summary

Join GoDaddy as a Threat Hunter and contribute to the security of their web-based platforms. You will conduct in-depth investigations, write detection and remediation signatures, research malicious activities, and develop security tools and automation scripts. This remote position requires 8+ years of experience in threat hunting, malware analysis, and security research, along with expertise in web security principles, attack vectors, and mitigation techniques. Proficiency in PHP, Python, Go, JavaScript, and database management is essential, as is experience with Linux shell scripting and SIEM tools. GoDaddy offers a comprehensive benefits package including paid time off, retirement savings, bonus/incentive eligibility, equity grants, competitive health benefits, and family-friendly benefits.

Requirements

• 8+ years of experience in threat hunting, malware analysis, and security research, with expertise in web security principles, attack vectors, and mitigation techniques
• Skilled in writing and testing signatures using YARA, Regex, and other pattern matching techniques
• Familiar with DevOps methodologies, CI/CD pipeline security practices, and cloud environments, especially AWS
• Proficient in PHP, Python, and Go, with practical experience in JavaScript and strong database management skills, including MySQL and NoSQL
• Experienced in Linux shell scripting for automation and security operations, with hands-on experience in SIEM tools, log analysis, and anomaly detection

Responsibilities

• Conduct in-depth threat hunting investigations, focusing on web-based attacks targeting popular content management systems (eg WordPress, Joomla, Magento, etc)
• Write detection and remediation signatures for different types of malware (YARA, Regex and other text patterns)
• Research and analyse malicious activities, malware and vulnerabilities, developing effective detection mechanisms
• Develop and maintain security tools, automation scripts, and detection frameworks using PHP, Python, Go & Javascript
• Engineer scalable and resilient security solutions leveraging AWS and cloud services and develop Linus shell scripts to automate security tasks and streamline forensic investigations
• Design and implement API integrations to enhance security monitoring and response capabilities

Preferred Qualifications

• Certifications such as GCIH, GREM, CEH, OSCP, CTIA, CISSP, CompTIA SECURITY+, CySA+, PENTEST+ are highly desirable
• Prior experience publishing security research or contributing to security communities is a plus

Benefits

• Paid time off
• Retirement savings (e.g., 401k, pension schemes)
• Bonus/incentive eligibility
• Equity grants
• Participation in our employee stock purchase plan
• Competitive health benefits
• Parental leave