Principal Red Team Operator
India
GoDaddy
Die Komplettlösung für das Wachstum im Internet. Wer jetzt den kostenlosen Testzeitraum beginnt, kann eine elegante Website gestalten, einen Domainnamen erwerben, schnelles Hosting erhalten, unser Online-Marketing ausprobieren und erhält...Location Details: India, Remote
At GoDaddy the future of work looks different for each team. Some teams work in the office full-time; others have a hybrid arrangement (they work remotely some days and in the office some days) and some work entirely remotely.
This is a remote position, so you’ll be working remotely from your home. You may occasionally visit a GoDaddy office to meet with your team for events or meetings.
Join our Team
Do you want to be an Information Security Leader at GoDaddy? Can you address large-scale and cross-company issues, while ensuring that partnership with the development and operational communities remains front of mind? GoDaddy’s Product Security Group is seeking a Principle Penetration Tester to use their hands-on technical skills, strong leadership abilities, and eagerness to craft solutions to complex problems. It would be best if you are comfortable with communicating with partners, performing security assessments prioritizing security risks, and crafting/presenting high-quality work.
This is an excellent opportunity to grow your career and work within an industry-leading tech company!
What you'll get to do...
- Develop and implement the attack methodology for use in unannounced red team engagements
- Highlight and offer suggestions to the executive management on strategic strengths and weaknesses of the organization while guiding strategic remediations, mitigations, and kill chains
- Plan and complete unannounced operations that simulate real-world attacks or emulate threat actors
- Join forces with SRE and development teams to find new and creative ways to reduce the occurrence of vulnerabilities at scale
- Assist with prioritising prospective projects. Perform detection engineering by working alongside defensive teams to conduct live fire exercises in the production environment
- Use your detection engineering and validation experience to own and drive resolution and retesting of sophisticated security events, policy questions, and technical security risks
- Mentor the red team and partners on attack methodology, threat emulation, and red team tradecraft
Your experience should include...
- 10+ years of progressive offensive engineering experience with expertise in multiple offensive security domains, including Penetration Testing, Reverse Engineering, Application Security, Secure SDLC, and social engineering
- Conducting offensive security testing against various infrastructure, applications, and full-stack engagements
- Experience with incorporating MITRE ATT&CK Framework into deliverables
- Experience in Red Team operations and campaigns that include stealth or anti-forensics
- Experience with various red team-oriented tools and tradecraft such as Cobalt Stike
- Scripting skills (e.g., Python, C, C++, Java, Ruby, or PowerShell)
- Experience with cloud technologies including AWS and Azure
- Experience with Burp Suite and manual application testing
You might also have...
- Bachelor's degree in Computer Science or related field
- Hosting Industry and/or Cloud Experience
- Infosec Community engagement including bug bounties, blogs, CVEs, or conference talks
- OSCP or cloud certifications
We've got your back... We offer a range of benefits that may include paid time off, retirement savings (e.g., 401k, pension schemes), incentive eligibility, equity grants, participation in an employee stock purchase plan, and other family-friendly benefits including parental leave. GoDaddy’s benefits vary based on individual role and location and can be reviewed in more detail during the interview process.
We also embrace our diverse culture and offer a range of Employee Resource Groups (Culture). Have a side hustle? No problem. We love entrepreneurs! Most importantly, come as you are and make your own way.
About us... GoDaddy is empowering everyday entrepreneurs around the world by providing the help and tools to succeed online, making opportunity more inclusive for all. GoDaddy is the place people come to name their idea, build a professional website, attract customers, sell their products and services, and manage their work. Our mission is to give our customers the tools, insights, and people to transform their ideas and personal initiative into success. To learn more about the company, visit About Us.
At GoDaddy, we know diverse teams build better products—period. Our people and culture reflect and celebrate that sense of diversity and inclusion in ideas, experiences and perspectives. But we also know that’s not enough to build true equity and belonging in our communities. That’s why we prioritize integrating diversity, equity, inclusion and belonging principles into the core of how we work every day—focusing not only on our employee experience, but also our customer experience and operations. It’s the best way to serve our mission of empowering entrepreneurs everywhere, and making opportunity more inclusive for all. To read more about these commitments, as well as our representation and pay equity data, check out our Diversity and Pay Parity annual report which can be found on our Diversity Careers page.
GoDaddy is proud to be an equal opportunity employer. GoDaddy will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements. Refer to our full EEO policy.
Our recruiting team is available to assist you in completing your application. If they could be helpful, please reach out to myrecruiter@godaddy.com.
GoDaddy doesn’t accept unsolicited resumes from recruiters or employment agencies.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS Azure Burp Suite C Cloud Computer Science Forensics Full stack Java MITRE ATT&CK Offensive security OSCP Pentesting PowerShell Product security Python Red team Reverse engineering Ruby Scripting SDLC Security assessment Vulnerabilities
Perks/benefits: 401(k) matching Career development Equity Parental leave Team events
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs