Threat model, design, harden, and operationalize Product and Cloud Security services and controls at DoorDash scale
Define, document and implement security standards, guidelines and procedures to design and implement automated security controls and remediation tools with rigor and developer ergonomics
Partner cross-functionally with Core Infrastructure, Product Engineering, Legal, Security teams and Vendor Partners to build “paved paths” that provide actionable feedback to embed secure design practices into the product and infrastructure development process
Lead the technical direction and roadmap execution for your assigned area of ownership
Build and maintain high Operational Excellence (OE) to ensure we operate services with excellence, rigor and durable standards to ensure minimal downtime
Participate in on-call rotation and promptly respond to on-call events with urgency and rigor
Manage the lifecycle of product and cloud security vulnerabilities, from identification, triage, and drive remediation, reporting and metrics
Influence and enable the secure and responsible adoption of LLMs and AI tools
Mentor and coach earlier career engineers, setting high standards for Operational Excellence and Security Engineering

Requirements

8+ years of experience as a security engineer in a product security or infrastructure security discipline
Able to demonstrate a track record of driving foundational improvements to a company’s infrastructure security posture
Breadth of technical experience across various infrastructure and security areas running in large production environments
Deep understanding of each OWASP top 10 vulnerability, distributed systems security and design
Experience in CI/CD pipelines to automate security control enforcement and testing
Proficiency in analyzing code, architecture and designs from a security perspective
Well versed with scripting languages (e.g. Python) and other programming languages (e.g. Java). Golang experience is a plus
Strong experience with infrastructure as a code tooling like Terraform
Expertise with cloud infrastructure and management in GCP and AWS
Experience solving complex, systemic issues that require creative thinking and solutions
Exceptional analytical and investigative abilities with hands-on experience leading root cause analysis
Excellent verbal and written communication skills - you can understand and review design documents with respect to cloud infrastructure with engineering personnel.

Benefits

401(k) plan with employer matching
16 weeks of paid parental leave
Wellness benefits
Commuter benefits match
Paid time off and paid sick leave
Medical, dental, and vision benefits
11 paid holidays
Disability and basic life insurance
Family-forming assistance
Mental health program

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

security engineeringinfrastructure securityOWASP top 10 vulnerabilitiesdistributed systems securityCI/CD pipelinescode analysisscripting languagesPythonJavaTerraform

Soft Skills

analytical abilitiesinvestigative abilitiescreative thinkingmentoringcoachingcommunication skillscollaborationleadershipoperational excellenceproblem-solving