Principal Security Engineer - Hosting Security

Location Details:

At GoDaddy, the future of work looks different for each team. Some teams work in the office full-time; others have a hybrid arrangement (they work remotely some days and in the office some days), and some work entirely remotely.

This is a remote position, so you’ll be working remotely from your home. You may occasionally visit a GoDaddy office to meet with your team for events or offsites.

This position is not eligible to be performed in Alaska, Mississippi, North Dakota, or the Virgin Islands.

Join Our Team

We are seeking a Principal Security Engineer to lead our Hosting Threat Detection and Response function, protecting GoDaddy’s hosting environment that serves several million customers. This role will primarily involve developing advanced detection mechanisms and responding to security incidents swiftly to mitigate threats across our WordPress, Web Hosting, AWS, Linux, and Windows platforms.

In this position, you will engineer robust detection strategies using the latest in security analytics and incident response techniques. Your expertise will strengthen our defenses in Hosting environments and secure critical operating systems/services against evolving threats. You will use SOAR technologies to automate responses, reducing the time from detection to resolution.

Collaboration with a team of experienced security professionals dedicated to continual improvement through rigorous analysis and shared insights. Your technical skills will be pivotal in crafting tools and strategies that enhance our security posture, ensuring the reliability and integrity of our hosting services.

Join us to leverage your technical skills in a challenging environment that values innovation and effectiveness in cybersecurity practices!

What you'll get to do…

• Design, implement, and manage advanced threat detection systems to identify and respond to security incidents in real-time.
• Develop and refine detection methodologies to uncover emerging threats, leveraging machine learning and behavioral analysis techniques.
• Build and maintain custom detection rules and logic for various security platforms.
• Perform continuous tuning and optimization of detection mechanisms to minimize false positives and improve detection efficacy.
• Lead incident response activities, including investigation, containment, eradication, and recovery.
• Perform forensic analysis on compromised systems to resolve the root cause and extent of security incidents.
• Develop and maintain incident response playbooks and runbooks.
• Implement and manage security controls within AWS environments, ensuring compliance with industry standards and best practices.
• Conduct regular security assessments and audits of AWS infrastructure to identify and remediate vulnerabilities.
• Secure and harden Linux and Windows servers, ensuring robust configurations and patch management practices.
• Conduct regular security assessments and audits of server environments.
• Perform deep-dive analysis of endpoint security data to detect and respond to malicious activity.
• Implement and manage endpoint detection and response (EDR) solutions.
• Develop and maintain automated security workflows using SOAR platforms to streamline and enhance detection and response capabilities.
• Integrate various security tools and platforms to create cohesive and efficient security operations.

Your experience should include…

• 8+ years of experience in information security, with a focus on threat detection and response.
• Strong expertise in detection engineering, incident response, and memory forensic analysis.
• Proficiency in SIEM (Splunk, Athena etc), AWS Incident Response.
• Extensive experience with both Linux and Windows security.
• Hands-on experience with endpoint detection and response (EDR) solutions such as Crowdstrike, SentinelOne etc.
• Proficiency in automation and scripting languages (e.g., Python, PowerShell, Bash).
• Experience with SOAR platforms such as Phantom, AWS Lambda and developing automated workflows.
• Excellent problem-solving skills and the ability to work in a fast-paced environment.

You might also have…

• Bachelor’s or Master’s degree in computer science, Information Security, or a related field.
• Relevant certifications (e.g., GCIH, GCFA, GNFA, AWS Certified Security - Specialty).
• Experience with machine learning and behavioral analysis techniques for threat detection.
• Knowledge of network security and intrusion detection/prevention systems (IDS/IPS).
• Experience with DevSecOps practices and integrating security into CI/CD pipelines.
• Familiarity with Digital Forensics, Malware Analysis.
• Strong organizational and time-management skills.
• Ability to communicate complex technical concepts to both technical and non-technical partners.

We've got your back...  We offer a range of benefits that may include paid time off, retirement savings (e.g., 401k, pension schemes), incentive eligibility, equity grants, participation in an employee stock purchase plan, and other family-friendly benefits including parental leave. GoDaddy’s benefits vary based on individual role and location and can be reviewed in more detail during the interview process.  

We also embrace our diverse culture and offer a range of Employee Resource Groups (Culture). Have a side hustle? No problem. We love entrepreneurs! Most importantly, come as you are and make your own way. 

About us...  GoDaddy is empowering everyday entrepreneurs around the world by providing the help and tools to succeed online, making opportunity more inclusive for all. GoDaddy is the place people come to name their idea, build a professional website, attract customers, sell their products and services, and manage their work. Our mission is to give our customers the tools, insights, and people to transform their ideas and personal initiative into success. To learn more about the company, visit About Us. 

At GoDaddy, we know diverse teams build better products—period. Our people and culture reflect and celebrate that sense of diversity and inclusion in ideas, experiences and perspectives. But we also know that’s not enough to build true equity and belonging in our communities. That’s why we prioritize integrating diversity, equity, inclusion and belonging principles into the core of how we work every day—focusing not only on our employee experience, but also our customer experience and operations. It’s the best way to serve our mission of empowering entrepreneurs everywhere, and making opportunity more inclusive for all. To read more about these commitments, as well as our representation and pay equity data, check out our Diversity and Pay Parity annual report which can be found on our Diversity Careers page.

GoDaddy is proud to be an equal opportunity employer. GoDaddy will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements. Refer to our full EEO policy.

Our recruiting team is available to assist you in completing your application. If they could be helpful, please reach out to myrecruiter@godaddy.com. 

GoDaddy doesn’t accept unsolicited resumes from recruiters or employment agencies.