Staff Security Engineer, Proactive Security

About the Role

The security engineering team is responsible for designing, implementing, and maintaining the security infrastructure that powers DoorDash's multi-sided marketplace of consumers, merchants, and drivers. The team's mission is to build the world's most trusted on-demand logistics engine for delivery, and the Staff Security Engineer will be instrumental in achieving this goal.

What You Will Do

• Threat model, design, harden, and operationalize Product and Cloud Security services and controls at DoorDash scale
• Define, document, and implement security standards, guidelines, and procedures to design and implement automated security controls and remediation tools
• Partner cross-functionally with Core Infrastructure, Product Engineering, Legal, Security teams, and Vendor Partners to build 'paved paths' that provide actionable feedback to embed secure design practices into the product and infrastructure development process
• Lead the technical direction and roadmap execution for assigned areas of ownership
• Build and maintain high Operational Excellence to ensure services operate with excellence, rigor, and durable standards to minimize downtime
• Participate in on-call rotation and promptly respond to on-call events with urgency and rigor
• Manage the lifecycle of product and cloud security vulnerabilities, from identification, triage, and drive remediation, reporting, and metrics
• Influence and enable the secure and responsible adoption of LLMs and AI tools
• Mentor and coach earlier career engineers, setting high standards for Operational Excellence and Security Engineering

What We Are Looking For

• 8+ years of experience as a security engineer in product or infrastructure security, with deep hands-on AWS expertise across identity, IAM, SSO, and infrastructure hardening
• Experience with GCP is a plus
• Production-quality automation and tooling skills, with hands-on AI experimentation applied to cloud security problems
• Proficiency in Python or other languages like Golang, and strong experience with IaC tooling like Terraform
• Experience driving foundational improvements to a company's infrastructure security posture and breadth across security and infrastructure in large production environments
• Deep understanding of OWASP Top 10, distributed systems security, and design, with the ability to analyze code, architecture, and designs from a security perspective

Nice to Have

• Experience with CI/CD pipelines for automated control enforcement
• Knowledge of security and compliance frameworks, such as NIST or SOC 2
• Experience with security orchestration, automation, and response tools

Benefits and Perks

• Competitive salary and benefits package
• Opportunity to work with a talented team of security professionals
• Flexible and remote work arrangements
• Professional development and growth opportunities
• Access to the latest security tools and technologies
• Recognition and rewards for outstanding performance

• When applying, be sure to highlight your hands-on experience with AWS, Python, and security engineering, and provide specific examples of your accomplishments in these areas.
• Use your resume and cover letter to demonstrate your understanding of security concepts, such as OWASP Top 10 and distributed systems security.
• Prepare to discuss your experience with threat modeling, security services, and operational excellence during the interview process.
• Be ready to provide examples of how you've driven foundational improvements to a company's infrastructure security posture and breadth across security and infrastructure.
• Research DoorDash's company culture and values, and be prepared to discuss how your skills and experience align with the company's mission and goals.