Senior Security Engineer

Location Details: Remote, India

At GoDaddy the future of work looks different for each team. Some teams work in the office full-time; others have a hybrid arrangement (they work remotely some days and in the office some days) and some work entirely remotely

This is a remote position, so you’ll be working remotely from your home. You may occasionally visit a GoDaddy office to meet with your team for events or meetings

Join Our Team...
GoDaddy’s Vulnerability Management team, part of the Information Security organization, is responsible for maintaining strong security hygiene and driving high-impact initiatives that improve transparency and strengthen our overall security posture
We are looking for a Vulnerability Management Engineer to develop the architecture and capability roadmap that supports the strategic goals of GoDaddy Global Security. In this role, you will work closely with cross-functional teams to identify vulnerabilities across our global infrastructure, assist in remediation efforts, support internal stakeholders, and help secure GoDaddy’s expanding attack surface as the company continues to grow

What you'll get to do...

• Perform vulnerability and impact assessments, perimeter scanning, and vulnerability scanning (using tools like Tenable, Qualys), validate results, prioritize risks, report findings with recommendations, and assist with remediation
• Research and interpret vulnerability disclosures and threat intelligence. Monitor sources for new vulnerabilities, identify impacted assets, classify, and score vulnerabilities
• Secure GoDaddy’s cloud and on-premise infrastructure through continuous scanning, reporting, and collaboration with compliance teams to ensure testing, reporting, and mitigation meet regulatory requirements
• Provide remediation support to users, handle false positive validation requests, and work cross-functionally to implement countermeasures and improve security posture
• Lead and mentor team members, help develop metrics for the Vulnerability Management Program, and contribute to crafting organizational capabilities

Your experience should include...

• Over 4 years of experience as a Security Engineer in medium to large IT organizations, with a focus on AWS Cloud security
• Hands-on experience with security tools (Tenable, Qualys, AppSpider) and efficiency tools (Microsoft Office Suite, Jira, ServiceNow); experience conducting large network and web application vulnerability scanning and reporting
• Skilled in identifying zero-day vulnerabilities across infrastructure and networks; experience in security risk assessments
• Strong understanding of desktop and server operating systems like RedHat/CentOS Linux and Windows Server, as well as infrastructure and application security concepts and tools
• Solid grasp of general information security concepts, techniques, methodologies, vulnerability classification, and scoring (CVSS, CWE), and solid understanding of risk management frameworks, security frameworks, and data protection regulations
• Strong leadership, interpersonal, and technical writing skills; self-motivated and adaptable standout colleague passionate about security and innovation, excels in cross-functional settings with sharp problem-solving skills

You might also have...

• Bachelor’s Degree in an appropriate field of study or equivalent work experience
• Strong understanding and hands-on ability to implement compliance controls aligned with CIS, PCI-DSS, NIST, and ISO 27001
• Scripting experience, particularly in Python
• Experience using tools like Tanium and BurpSuite
• Penetration testing experience

We've got your back...  We offer a range of total rewards that may include paid time off, retirement savings (e.g., 401k, pension schemes), bonus/incentive eligibility, equity grants, participation in our employee stock purchase plan, competitive health benefits, and other family-friendly benefits including parental leave. GoDaddy’s benefits vary based on individual role and location and can be reviewed in more detail during the interview process

We also embrace our diverse culture and offer a range of Employee Resource Groups (Culture). Have a side hustle? No problem. We love entrepreneurs! Most importantly, come as you are and make your own way

About us...  GoDaddy is empowering everyday entrepreneurs around the world by providing the help and tools to succeed online, making opportunity more inclusive for all. GoDaddy is the place people come to name their idea, build a professional website, attract customers, sell their products and services, and manage their work. Our mission is to give our customers the tools, insights, and people to transform their ideas and personal initiative into success. To learn more about the company, visit About Us

At GoDaddy, we know diverse teams build better products—period. Our people and culture reflect and celebrate that sense of diversity and inclusion in ideas, experiences and perspectives. But we also know that’s not enough to build true equity and belonging in our communities. That’s why we prioritize integrating diversity, equity, inclusion and belonging principles into the core of how we work every day—focusing not only on our employee experience, but also our customer experience and operations. It’s the best way to serve our mission of empowering entrepreneurs everywhere, and making opportunity more inclusive for all. To read more about these commitments, as well as our representation and pay equity data, check out our Diversity and Pay Parity annual report which can be found on our Diversity Careers page

GoDaddy is proud to be an equal opportunity employer. GoDaddy will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements. Refer to our full EEO policy

Our recruiting team is available to assist you in completing your application. If they could be helpful, please reach out to myrecruiter@godaddy.com

GoDaddy doesn’t accept unsolicited resumes from recruiters or employment agencies