Security Engineer, Proactive Security

October 30

Apply Now

Receive Emails with Similar Jobs

DoorDash

WebsiteLinkedInAll Job Openings

eCommerce • Marketing • Transport

DoorDash is a leading food delivery service that connects customers with local businesses and restaurants. By empowering local economies, DoorDash facilitates the growth and success of restaurants and retailers, offering a flexible work environment for its employees. The company emphasizes innovation and aims to redefine the local commerce experience while providing extensive benefits and opportunities for team members across various career areas.

10,000+ employees

🛍️ eCommerce

🚗 Transport

📋 Description

• Lead threat modeling, hardening and operation of security services within DoorDash’s Product and Cloud Security domains. • Define, document and implement security standards, guidelines and procedures to design and implement automated security controls and remediation tools. • Partner cross-functionally with Core Infrastructure, Product Engineering, Legal, Security teams and Vendor Partners to build “paved paths” that embed secure design practices. • Lead the technical direction and roadmap for your assigned area of ownership. • Build and maintain high Operational Excellence (OE) to ensure minimal downtime. • Participate in on-call rotation and respond to on-call events with urgency. • Manage the lifecycle of product and cloud security vulnerabilities, from identification to remediation. • Influence and enable the secure and responsible adoption of LLMs and AI tools. • Mentor and coach earlier career engineers, setting high standards for Operational Excellence and Security Engineering.

🎯 Requirements

• 6+ years of experience as a security engineer in a product security or infrastructure security discipline. • Able to demonstrate a track record of driving foundational improvements to a company’s infrastructure security posture. • Breadth of technical experience across various infrastructure and security areas running in large production environments. • Deep understanding of each OWASP top 10 vulnerability, distributed systems security and design. • Experience in CI/CD pipelines to automate security control enforcement and testing. • Proficiency in analyzing code, architecture and designs from a security perspective. • Well versed with scripting languages (e.g. Python) and other programming languages (e.g. Java). Golang experience is a plus. • Strong experience with infrastructure as a code tooling like Terraform. • Expertise with cloud infrastructure and management in AWS. • Experience solving complex, systemic issues that require creative thinking and solutions. • Exceptional analytical and investigative abilities with hands-on experience leading root cause analysis. • Excellent verbal and written communication skills - you can understand and review design documents with respect to cloud infrastructure with engineering personnel.

🏖️ Benefits

• 401(k) plan with employer matching • 16 weeks of paid parental leave • Wellness benefits • Commuter benefits match • Paid time off • Paid sick leave • Medical benefits • Dental benefits • Vision benefits • 11 paid holidays • Disability insurance • Basic life insurance • Family-forming assistance • Mental health program