Principal Security Engineer

📋 Description

• • As a Principal Security Engineer at GoDaddy Inc., you will be at the forefront of safeguarding our digital assets and empowering entrepreneurs worldwide. This pivotal role within our Product Security group demands a seasoned professional who can tackle large-scale, cross-company security challenges while fostering strong, collaborative partnerships with our development and operational communities. You will leverage your deep technical expertise, exceptional leadership capabilities, and a proactive approach to design and implement robust security solutions for complex problems.
• • Your primary responsibility will be to identify and mitigate security threats across applications and infrastructure. This involves not only detecting vulnerabilities but also providing expert mentorship and guidance to system owners on effective remediation strategies. You will be instrumental in reducing the occurrence of vulnerabilities at scale by working hand-in-hand with Site Reliability Engineering (SRE) and development teams, fostering a culture of security-first development.
• • A key aspect of this role is the creation and enhancement of repeatable and reusable security processes and frameworks. You will analyze quality issues with a keen eye for both obvious and discrete security flaws, contributing to the continuous improvement of our security posture. Your involvement will span the entire project lifecycle, from initial scoping and kickoff through to the final "definition of done," ensuring end-to-end ownership and accountability for security considerations.
• • You will be expected to utilize your extensive industry experience to own and drive the resolution of complex security events, policy-related inquiries, and technical security risks. This includes thorough retesting and validation to ensure that vulnerabilities are effectively addressed and that our systems remain resilient against evolving threats.
• • This position offers a unique opportunity to influence GoDaddy's security strategy and contribute to a culture where security is integrated into every stage of product development. You will be a trusted advisor, collaborating with various teams to embed security best practices and ensure compliance with industry standards and regulations.
• • You will play a crucial role in threat modeling exercises, architecture reviews, and penetration testing initiatives. Your proficiency in Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) will be vital in identifying and rectifying security weaknesses before they can be exploited.
• • The role requires a proactive mindset, anticipating potential security risks and developing strategies to proactively defend against them. You will be a champion for security best practices, educating and guiding development teams on secure coding principles and the importance of a security-by-design approach.
• • By joining GoDaddy, you are joining a company dedicated to empowering everyday entrepreneurs. Your work as a Principal Security Engineer will directly contribute to the trust and reliability of the platforms that millions of entrepreneurs depend on to build their businesses online. You will be part of a dynamic and inclusive environment that values innovation, collaboration, and continuous learning.
• • This is a remote position within the United States, offering flexibility while maintaining a strong connection to your team through occasional in-person events or offsites. You will have the opportunity to shape the future of product security at GoDaddy, making a tangible impact on the company's success and the success of its customers.