Staff Security Engineer, Proactive Security

About the Role

DoorDash is seeking a Staff Security Engineer to join our Proactive Security team. This is a remote position within the US or Canada, reporting to the Manager of Security Engineering. You will play a key role in leading threat modeling, hardening, and the operation of security services within DoorDash’s Product and Cloud Security domains. You'll be part of a collaborative global team focused on building a secure, reliable, and resilient delivery network.

Key Responsibilities

• Threat model, design, harden, and operationalize Product and Cloud Security services and controls at scale.
• Define, document, and implement security standards, guidelines, and procedures.
• Design and implement automated security controls and remediation tools with a focus on developer ergonomics.
• Collaborate cross-functionally with Core Infrastructure, Product Engineering, Legal, Security teams, and Vendor Partners to embed secure design practices into development processes.
• Lead the technical direction and roadmap execution for your area of ownership.
• Maintain high Operational Excellence to ensure services operate with rigor and minimal downtime.
• Participate in on-call rotations and respond to security events.
• Manage the lifecycle of product and cloud security vulnerabilities, including identification, triage, remediation, reporting, and metrics.
• Influence and enable the secure and responsible adoption of LLMs and AI tools.
• Mentor and coach early-career engineers, setting high standards for Operational Excellence and Security Engineering.

Requirements

• 8+ years of experience as a security engineer in product or infrastructure security.
• Deep hands-on expertise in AWS, including identity, IAM, SSO, and infrastructure hardening.
• Proven experience writing production-quality automation and tooling.
• Hands-on experience with AI experimentation applied to cloud security problems.
• Proficiency in Python or other languages like Golang.
• Experience with Infrastructure as Code (IaC) tooling such as Terraform.
• Demonstrated success in driving foundational improvements to infrastructure security posture in large production environments.
• Experience with CI/CD pipelines for automated control enforcement.
• Deep understanding of OWASP Top 10, distributed systems security, and design.
• Ability to analyze code, architecture, and designs from a security perspective.
• Exceptional analytical and investigative abilities with hands-on root cause analysis experience.
• Clear written and verbal communication skills for collaborating with engineering partners on design documents and architecture reviews.
• Experience with GCP is a plus.

What We Offer

• A permanent, full-time remote position.
• The opportunity to work on a large-scale, impactful platform.
• A comprehensive benefits package including:
  • 401(k) plan with employer matching.
  • 16 weeks of paid parental leave.
  • Wellness benefits and commuter benefits match.
  • Flexible paid time off and paid sick leave.
  • Medical, dental, and vision benefits.
  • 11 paid holidays.
  • Disability and basic life insurance.
  • Family-forming assistance and a mental health program.
• Competitive salary range: $193,800—$285,000 USD (national base pay range in the US).
• Opportunity for equity grants.