DoorDash
Corporate Security Engineer
Job Summary
This role involves designing and implementing security measures to protect company data and systems, with a focus on scalable, modern security architectures such as zero-trust models. Candidates will collaborate across teams to develop secure environments and optimize security tools and policies, ensuring usability and security effectiveness. The position requires at least 3 years of security engineering experience, familiarity with cloud environments like AWS or GCP, and a passion for enhancing security controls. The role supports a global workforce and emphasizes integrating security seamlessly into employee workflows while balancing usability and protection.
Required Skills
Benefits
Job Description
Come help us build the world's most trusted on-demand logistics engine for delivery! We're growing our team of security engineers to protect and scale a 24x7 global infrastructure that powers DoorDash’s marketplace of consumers, merchants, and dashers. Our work directly impacts the security, usability, and resilience of the tools that enable our employees to move fast while staying secure.
The Corporate Security Engineering team builds and scales defenses that protect DoorDash’s corporate environment, enabling employees to work securely from anywhere in the world. From endpoint security to zero-trust architectures, from collaboration systems to identity and access management, we design and implement controls that not only protect customer and company data but also empower the business to move faster, securely.
Your north star is making security usable and scalable—eliminating bad habits and reducing click fatigue in favor of solutions that seamlessly integrate security while enabling employees to work efficiently. Occasional travel is required for major planning meetings and to maintain strong relationships with partners across Security and IT.
- Design and implement security measures that protect company data from unauthorized access, disclosure, and misuse.
- Build secure, scalable environments using modern principles like "secure by design" and zero-trust network architecture, without relying on traditional VPN setups.
- Secure the endpoint-to-endpoint model—ensuring users are who they say they are and accessing only what they should.
- Partner with Security Operations teams—Threat Response, Detection Engineering, and Security Platform Engineering—to execute cross-functional projects that raise DoorDash’s security bar.
- Architect, implement, and operationalize security solutions that interact with all classifications of corporate data across a global workforce.
- Evaluate, implement, and optimize security tools and vendor solutions to ensure we maximize value while maintaining security effectiveness.
- Engage with employees, vendors, and business partners to identify security challenges and design solutions that balance protection with usability.
- Collaborate with IT to improve and scale device and identity security solutions.
- Translate security policies and procedures into workflows and capabilities that employees can seamlessly adopt.
- You have 3+ years of security engineering experience focused on corporate security, or equivalent industry experience.
- You have a successful track record of implementing scalable security controls that protect data in services like Google, Okta, and Slack.
- You’re passionate about taking security controls from “exists” to “optimized”, identifying best-in-class solutions that balance security and business needs.
- You’re an effective threat modeler who understands the “why” behind security decisions and asks the right questions to evaluate risks and solutions.
- You prioritize progress over perfection, recognizing that iterative improvements often outperform waiting for an ideal solution.
- You thrive in a fast-paced, diverse environment and are comfortable wearing multiple hats to drive strong security outcomes across multiple organizations.
- You have experience with Git, Terraform, and cloud environments such as AWS or GCP.
- Experience building or refining Data Loss Prevention (DLP) and Data Security solutions, with a focus on reducing false positives.
- Hands-on experience working in a BeyondCorp or similar zero-trust environment.
- A development background, with experience in Golang, Python, or TypeScript.
- Experience working with modern Identity Governance and Administration (IGA) solutions.
- Familiarity with logging, SIEMs, and networking tools (e.g., Tailscale, Chronicle, Snowflake).
- Hands-on experience securing macOS and ChromeOS environments, with a smaller Windows footprint.
Notice to Applicants for Jobs Located in NYC or Remote Jobs Associated With Office in NYC Only
We use Covey as part of our hiring and/or promotional process for jobs in NYC and certain features may qualify it as an AEDT in NYC. As part of the hiring and/or promotion process, we provide Covey with job requirements and candidate submitted applications. We began using Covey Scout for Inbound from August 21, 2023, through December 21, 2023, and resumed using Covey Scout for Inbound again on June 29, 2024.
The Covey tool has been reviewed by an independent auditor. Results of the audit may be viewed here: Covey
Compensation
The successful candidate’s starting pay will fall within the pay range listed below and is determined based on job-related factors including, but not limited to, skills, experience, qualifications, work location, and market conditions. Base salary is localized according to an employee’s work location. Ranges are market-dependent and may be modified in the future.
In addition to base salary, the compensation for this role includes opportunities for equity grants. Talk to your recruiter for more information.
DoorDash cares about you and your overall well-being. That’s why we offer a comprehensive benefits package to all regular employees, which includes a 401(k) plan with employer matching, 16 weeks of paid parental leave, wellness benefits, commuter benefits match, paid time off and paid sick leave in compliance with applicable laws (e.g. Colorado Healthy Families and Workplaces Act). DoorDash also offers medical, dental, and vision benefits, 11 paid holidays, disability and basic life insurance, family-forming assistance, and a mental health program, among others.
To learn more about our benefits, visit our careers page here.
See below for paid time off details:
- For salaried roles: flexible paid time off/vacation, plus 80 hours of paid sick time per year.
- For hourly roles: vacation accrued at about 1 hour for every 25.97 hours worked (e.g. about 6.7 hours/month if working 40 hours/week; about 3.4 hours/month if working 20 hours/week), and paid sick time accrued at 1 hour for every 30 hours worked (e.g. about 5.8 hours/month if working 40 hours/week; about 2.9 hours/month if working 20 hours/week).
At DoorDash, our mission to empower local economies shapes how our team members move quickly, learn, and reiterate in order to make impactful decisions that display empathy for our range of users—from Dashers to merchant partners to consumers. We are a technology and logistics company that started with door-to-door delivery, and we are looking for team members who can help us go from a company that is known for delivering food to a company that people turn to for any and all goods.
DoorDash is growing rapidly and changing constantly, which gives our team members the opportunity to share their unique perspectives, solve new challenges, and own their careers. We're committed to supporting employees’ happiness, healthiness, and overall well-being by providing comprehensive benefits and perks including premium healthcare, wellness expense reimbursement, paid parental leave and more.
We’re committed to growing and empowering a more inclusive community within our company, industry, and cities. That’s why we hire and cultivate diverse teams of people from all backgrounds, experiences, and perspectives. We believe that true innovation happens when everyone has room at the table and the tools, resources, and opportunity to excel.
Statement of Non-Discrimination: In keeping with our beliefs and goals, no employee or applicant will face discrimination or harassment based on: race, color, ancestry, national origin, religion, age, gender, marital/domestic partner status, sexual orientation, gender identity or expression, disability status, or veteran status. Above and beyond discrimination and harassment based on “protected categories,” we also strive to prevent other subtler forms of inappropriate behavior (i.e., stereotyping) from ever gaining a foothold in our office. Whether blatant or hidden, barriers to success have no place at DoorDash. We value a diverse workforce – people who identify as women, non-binary or gender non-conforming, LGBTQIA+, American Indian or Native Alaskan, Black or African American, Hispanic or Latinx, Native Hawaiian or Other Pacific Islander, differently-abled, caretakers and parents, and veterans are strongly encouraged to apply. Thank you to the Level Playing Field Institute for this statement of non-discrimination.
Pursuant to the San Francisco Fair Chance Ordinance, Los Angeles Fair Chance Initiative for Hiring Ordinance, and any other state or local hiring regulations, we will consider for employment any qualified applicant, including those with arrest and conviction records, in a manner consistent with the applicable regulation.
If you need any accommodations, please inform your recruiting contact upon initial connection.
DoorDash
A food delivery service connecting customers with local restaurants and providing on-demand delivery through a network of drivers.
See more jobsSafe Remote Job Search Tips
Verify Employer Thoroughly
Research the company's identity thoroughly before applying. Check for a professional website with contacts, active social media, and LinkedIn profiles. Verify details across platforms and look for reviews on Glassdoor or Trustpilot to confirm legitimacy.
Never Pay to Get a Job
Legitimate employers never require payment for applications, training, background checks, or equipment. Always reject upfront payment requests or demands for bank details, even if they claim it's for purchasing necessary work gear on your behalf.
Safeguard Your Personal Information
Protect sensitive data like SSN, bank details, or ID copies. Share this only after accepting a formal, written job offer. Ensure it's submitted via a secure company system or portal, never through insecure channels like standard email attachments.
Scrutinize Communication & Interviews
Watch for communication red flags: poor grammar, generic emails (@gmail), vague details, or undue pressure. Be highly suspicious of interviews held only via text or chat apps; legitimate companies typically use video or phone calls.
Beware of Unrealistic Offers
If an offer's salary or benefits seem unrealistically high for the work involved, be cautious. Research standard pay for similar roles. Offers that appear 'too good to be true' are often scams designed to lure you into providing information or payment.
Insist on a Formal Contract
Always secure and review a formal, written job offer or employment contract before starting work or sharing final personal details. Ensure it clearly defines your role, compensation, key terms, and conditions to avoid misunderstandings or scams.