Principal Security Engineer

Job Description

Join Our Team Do you want to be an Information Security Leader at GoDaddy? We help solve large scale and cross-company issues, while ensuring that partnership with the development and operational communities remains front of mind. GoDaddy s Product Security Group is seeking a Principal Security Engineer to use their hands-on technical skills, strong leadership abilities, and eagerness to craft solutions to sophisticated problems. You must be comfortable with communicating with stakeholders, performing security assessments, prioritizing security risks, and creating/presenting high-quality deliverables. What youll get to do... Identify security threats in application and infrastructure, conduct in depth security assessments of applications and systems to identify vulnerabilities and provide remediation mentorship to affected system/application owners. Independently assess and improve security program, join forces with SRE and development teams to find new and creative ways to reduce the occurrence of vulnerabilities at scale. Review quality issues and work towards detecting security flaws. Implement automated security testing tools and work on continuous security improvements. Assist with prioritizing prospective projects, participating in projects from kick off through definition of done via end-to-end ownership. Use your validated experience to own and drive resolution and retesting of sophisticated security events, policy questions, and technical security risks. Mentor and train developers and security champions across teams to enhance security awareness. Your experience should include... 10+ years of progressive security engineering experience with expertise in multiple security domains including but not limited to Security Architecture, Cryptography, Network Security, Cloud Security, Mobile Security, and Web Security. Experience in Secure Development Lifecycle and Shift Left with a Security by Design methodology. Experience with SAST, DAST, SCA tools and penetration testing activities. Experience with threat modeling, architecture reviews and OWASP Top 10 guidelines. Experience applying security engineering best practices that align with security and privacy compliance requirements. Problem-solver with excellent communication skills, ability to influence and collaborate with cross functional teams, and a deep technical understanding of security engineering best practices. You might also have... Bachelors/Masters degree or Ph.D. in Computer Science or related field. Security certifications from SANS or similar.