Underpaidby HiringX
← All Jobs

Principal Risk Engineer

GoDaddy

United StatesRemoteIT Ops7+ yrs

About the role

Location Details: United States - Remote

At GoDaddy the future of work looks different for each team. Some teams work in the office full-time, others have a hybrid arrangement (they work remotely some days and in the office some days) and some work entirely remotely.

This is a remote position, so you’ll be working remotely from your home. You may occasionally visit a GoDaddy office to meet with your team for events or meetings.

This position is not eligible to be performed in Alaska, Mississippi, North Dakota, or the Virgin Islands.

GoDaddy is not currently considering candidates for this role in California, Seattle, or NYC.

Join Our Team

GoDaddy’s Information Security Org is looking for a Principal Security Engineer to join our organization. Do you want to be an Information Security Lead at GoDaddy? We work out large-scale and cross-company security challenges while ensuring that partnership with the development and operational communities remains front of mind. At GoDaddy, Security Engineers apply their strong hands-on technical to craft scalable solutions for multiplex problems. You must communicate with GoDaddy Engineering teams, be performing security assessments, prioritize security risks, and design. We as a team implement high-quality security engineering solutions.

Expertise in the secure design and verification of architecture for cloud-based web services is a must-have for this role.

What you'll get to do...

Lead cybersecurity risk assessments for applications, infrastructure, cloud services, and third-party solutions

Evaluate security exceptions, risk acceptances, and compensating controls using a risk-based approach

Partner with cross-functional teams to identify risks and define practical mitigations

Assess security implications of emerging technologies, including artificial intelligence and machine learning

Communicate technical risks and recommendations to technical and non-technical stakeholders

Strengthen standards, governance processes, and secure-by-design practices across the organization

Your experience should include...

7+ years of professional experience in security engineering, working across multiple domains such as security architecture, cryptography, network security, cloud security, mobile security, and web security

Experience leading or contributing to threat modeling activities

Experience partnering with product development teams throughout the software development lifecycle using secure-by-design principles

Experience reviewing and handling security exceptions, risk acceptances, and compensating controls

Knowledge of security risks introduced by artificial intelligence and machine learning systems, generative artificial intelligence tools, and automated decision-making platforms

Broad understanding of cybersecurity domains including network security, application security, cloud security, identity and access management, data protection, vulnerability management, security operations, and infras