GoDaddy powers the world's largest cloud platform dedicated to small, independent ventures. Our mission is to empower entrepreneurs everywhere, making opportunity more inclusive for all. We're a trusted growth partner to over 19 million everyday entrepreneurs worldwide. We're empowering them to change the world if it doesn't quite fit them. To make their idea real. To grow it online. We help them do what they've been dreaming of and make the world they want. To learn more about us visit


Tempe, AZ or Scottsdale, AZ or Santa Clara, CA or Remote 

What you'll get to do..


Your experience should include...

  • Walk business processes and identify opportunities to strengthen security
  • Engage within vulnerability management to assess security effectiveness through business practices
  • Detailed understanding of networking and common TCP/IP protocols
  • Proven understanding of Payment Card Industry knowledge and pen testing requirements
  • 4 years of experience in vulnerability discovery / security engineering / application security
  • Demonstrated history of penetration testing across network services, web applications & API’s, wireless, Cloud and segmentation for on-prem and Cloud
  • Experience working in a large cloud or Internet software company preferred
  • Knowledge of web application design & implementation concepts to include supporting systems
  • Ability to effectively assess and communicate risks and appropriate levels of urgency to management and engineering staff

You might also have...

  • Ability to scope and perform segmentation testing, as defined in the PCI-DSS, in order to validate our scope reduction
  • Ability to succeed through collaboration and working through internal and external organizations and individuals
  • Ability to test API and AWS based products.
  • Detailed knowledge of common vulnerabilities, exploits, and attacks used during a penetration test
  • Ability to lead and run penetration testing engagement on your own
  • Expert knowledge, skills, and abilities in the use of common vulnerability assessment and penetration testing tools such as Metasploit, Nessus, Nmap, Burp Suite, PowerSploit, Empire, Qualys and Impacket. These are examples and are not a requirements list.
  • Basic familiarity with Incident response framework, EDRs, SIEM and Security devices
  • Prior DevOps or continuous delivery and deployment experience preferred
  • OSCP, OSCE, CREST, GPEN, GWAPT, GXPN, CEH and other industry certifications are a plus
  • Strong application/product/software security background
  • Threat modeling, adversary emulation, or long duration Red Team exercises

 Experience in the following: 

Metasploit, Kali Linux, Burp suite, ZAP, Tanium, AppSpider, Open VAS, Nessus, Qualys, NMAP, Jira, AWS or equivalent

We've got your back...

 Enjoy our many benefits (My Wallet), including paid time off, 401k, equity grants and parental leave. Join one of our employee resource groups (Culture). Continue to have a side hustle, if you have one (we love entrepreneurs, remember?). Most importantly, come as you are and make your own way.


GoDaddy is proud to be an equal opportunity employer. We will not discriminate against any applicant or employee on the basis of age, race, color, ethnicity, national origin, citizenship, religion, creed, sex, sexual orientation, gender, gender identity or expression (including against any individual that is transitioning, has transitioned, or is perceived to be transitioning), marital status or civil partnership/union status, physical or mental disability, medical condition, pregnancy, childbirth, genetic information, military and veteran status, or any other basis prohibited by applicable federal, state or local law. GoDaddy will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements.


If you need help completing an application for a position with GoDaddy, please reach out to our Recruiting Team at


GoDaddy doesn’t accept unsolicited resumes from recruiters or employment agencies.

Apply for this Job

* Required
When autocomplete results are available use up and down arrows to review
+ Add Another Education

US GoDaddy Diversity & Inclusion

At GoDaddy, we want our company to be as diverse as our customers, because we believe diverse teams build better products and make for a better place for all of us to work. We’re proud of our culture, and we’re committed to fostering inclusion and belonging for all our employees. Our philosophy is, come as you are and do great work. You belong here!

To make sure we walk the talk when it comes to inclusion, we would like information from you to help guide us. 

We want you to know, GoDaddy does not discriminate on the basis of race/ethnicity, age, sexual orientation, gender, gender identity or expression or any other basis protected by federal, state or local law. Responses are anonymous. Your responses, or your choice not to respond, will not be associated with your specific application and will not in any way be used in the hiring decision.

Below are some voluntary demographic questions. If you choose to answer them, your responses will be used to help us identify areas for improvement as we seek to identify and reduce unconscious bias in our hiring process. 

Which categories describe you?

I identify my gender as:

Do you consider yourself a member of the Lesbian, Gay, or Bisexual (LGBTQ) community?

In 2016, as part of the White House’s Joining Forces Campaign, GoDaddy pledged to hire 500 veterans and/or veterans’ spouses over the next 5 years. Do you and/or your spouse/domestic partner identify as a (current or former) military service member?