About the Team

Come help us build the world's most trusted on-demand logistics engine for delivery! We're growing our team of security engineers to protect and scale a 24x7 global infrastructure that powers DoorDash’s marketplace of consumers, merchants, and dashers. Our work directly impacts the security, usability, and resilience of the tools that enable our employees to move fast while staying secure.

About the Role

The Corporate Security Engineering team builds and scales defenses that protect DoorDash’s corporate environment, enabling employees to work securely from anywhere in the world. From endpoint security to zero-trust architectures, from collaboration systems to identity and access management, we design and implement controls that not only protect customer and company data but also empower the business to move faster, securely.

Your north star is making security usable and scalable—eliminating bad habits and reducing click fatigue in favor of solutions that seamlessly integrate security while enabling employees to work efficiently. Occasional travel is required for major planning meetings and to maintain strong relationships with partners across Security and IT.

You’re excited about this opportunity because you will…

• Design and implement security measures that protect company data from unauthorized access, disclosure, and misuse.
• Build secure, scalable environments using modern principles like "secure by design" and zero-trust network architecture, without relying on traditional VPN setups.
• Secure the endpoint-to-endpoint model—ensuring users are who they say they are and accessing only what they should.
• Partner with Security Operations teams—Threat Response, Detection Engineering, and Security Platform Engineering—to execute cross-functional projects that raise DoorDash’s security bar.
• Architect, implement, and operationalize security solutions that interact with all classifications of corporate data across a global workforce.
• Evaluate, implement, and optimize security tools and vendor solutions to ensure we maximize value while maintaining security effectiveness.
• Engage with employees, vendors, and business partners to identify security challenges and design solutions that balance protection with usability.
• Collaborate with IT to improve and scale device and identity security solutions.
• Translate security policies and procedures into workflows and capabilities that employees can seamlessly adopt.

We’re excited about you because…

• You have 3 years of security engineering experience focused on corporate security, or equivalent industry experience.
• You have a successful track record of implementing scalable security controls that protect data in services like Google, Okta, and Slack.
• You’re passionate about taking security controls from “exists” to “optimized”, identifying best-in-class solutions that balance security and business needs.
• You’re an effective threat modeler who understands the “why” behind security decisions and asks the right questions to evaluate risks and solutions.
• You prioritize progress over perfection, recognizing that iterative improvements often outperform waiting for an ideal solution.
• You thrive in a fast-paced, diverse environment and are comfortable wearing multiple hats to drive strong security outcomes across multiple organizations.
• You have experience with Git, Terraform, and cloud environments such as AWS or GCP.

Nice to Have

• Experience building or refining Data Loss Prevention (DLP) and Data Security solutions, with a focus on reducing false positives.
• Hands-on experience working in a BeyondCorp or similar zero-trust environment.
• A development background, with experience in Golang, Python, or TypeScript.
• Experience working with modern Identity Governance and Administration (IGA) solutions.
• Familiarity with logging, SIEMs, and networking tools (e.g., Tailscale, Chronicle, Snowflake).
• Hands-on experience securing macOS and ChromeOS environments, with a smaller Windows footprint.

Notice to Applicants for Jobs Located in NYC or Remote Jobs Associated With Office in NYC Only

We use Covey as part of our hiring and/or promotional process for jobs in NYC and certain features may qualify it as an AEDT in NYC. As part of the hiring and/or promotion process, we provide Covey with job requirements and candidate submitted applications. We began using Covey Scout for Inbound from August 21, 2023, through December 21, 2023, and resumed using Covey Scout for Inbound again on June 29, 2024.

The Covey tool has been reviewed by an independent auditor. Results of the audit may be viewed here: Covey