The Senior Cloud Security Engineer at GoDaddy is responsible for designing, building, and securing large-scale, distributed cloud environments that support GoDaddy services. This role operates at the intersection of cloud infrastructure, security architecture, and engineering execution, requiring advanced technical expertise in cloud-native security controls and threat modeling in hyperscale environments. The candidate will collaborate with service teams, security leaders, and compliance partners to embed security-by-design principles into cloud services and internal platforms. Key responsibilities include building and maintaining secure, scalable cloud architectures aligned with AWS security standards, defining guardrails for multi-account and multi-region setups, establishing and managing security controls across compute, storage, networking, and identity layers leveraging infrastructure-as-code, policy-as-code, and continuous compliance automation. The engineer will perform threat modeling, architecture reviews, and risk assessments for new and existing cloud services to proactively identify and mitigate vulnerabilities, collaborate with platform teams to integrate security into CI/CD pipelines and deployment workflows, lead incident response and post-incident reviews to drive root cause analysis and long-term remediation, and contribute to security strategy, standards, and reference architectures. The role also involves mentoring junior engineers and engaging with audit, compliance, and risk teams to meet regulatory requirements and foster a strong security culture. Experience required includes 8+ years in security, cloud, or infrastructure engineering roles, with hands-on experience securing AWS environments using services like IAM, VPC, EC2, EKS, S3, Lambda, and CloudTrail. Strong knowledge of cloud security domains such as identity and access management, network security, encryption, logging, and secrets management is essential. Proficiency in threat modeling (e.g., STRIDE), security architecture design, risk-based decision making, infrastructure-as-code tools (AWS CDK, CloudFormation, Terraform), scripting or programming languages (Python, Go, Java), and integrating security into CI/CD pipelines is required. Familiarity with security standards and compliance frameworks (ISO 27001, SOC 2, NIST, PCI DSS) and a bachelor’s degree or equivalent experience is preferred. The role requires working during standard US business hours and offers a remote work arrangement with occasional visits to GoDaddy offices. GoDaddy values diversity, equity, inclusion, and belonging, offering a supportive and inclusive work culture. Benefits vary by location and include paid time off, retirement savings, bonus/incentives, equity grants, employee stock purchase plan participation, competitive health benefits, and family-friendly policies like parental leave. GoDaddy is an equal opportunity employer.