Come help us build the world's most trusted on-demand, logistics engine for delivery! We're building a team of great minds to help us secure and maintain a 24x7, no downtime, global infrastructure system that powers DoorDash's multi-sided marketplace of consumers, merchants, and drivers.
The Security Engineering team is looking for a seasoned application security leader to work on platform security. You will be a part of our inclusive, collaborative team responsible for building a safe and reliable delivery network. On the Security team we need to protect all of our customers, as well as the logistics engine itself. It's no simple task, but it wouldn't be interesting if it was!
What You'll Do
Work directly with the Head of Security Engineering and other senior leaders across the business to set strategy for secure development, security assessments, and security involvement throughout the software development process
Leads efforts to improve security posture and increase security engagement
Enhance our coding standards and industry best practices and measure progress towards success
Build and implement core application security capabilities including static analysis and security frameworks
Grow the foundational team and shape the application security program at DoorDash for years to come - along with building tools and processes from the ground up, you'll be recruiting new team members to make us 1% better every day
What We're Looking For
5+ years of security engineering experience and 3+ years of experience in both management and a cloud-production environment
Deep experience with at least one of the following languages and interest to dive into the remaining languages: Kotlin, Node and Python
Hands on experience with application security assessment tools (e.g. Burp Suite), automation systems (e.g. bandit, brakeman, Checkmarx), and standards (e.g. OAuth 2)
Familiar with GDPR, CCPA, PCI, and SOX compliance
Interested in securing platform technologies in payments, identity and other similar domains
Willingness to dive in to problems and document, drive alignment, drive plans and assist with execution
Deep understanding of application security threats, attack techniques, and mitigation
Demonstrated track record of driving improvements to a company's security posture
Ability to triage, reproduce, recommend remediations and implement fixes for vulnerabilities
Why You'll Love Working at DoorDash
DoorDash is a technology company that connects customers with their favorite local and national businesses in over 4,000 cities and all 50 states across the United States and Canada. Founded in 2013, DoorDash empowers merchants to grow their businesses by offering on-demand delivery, data-driven insights, and better in-store efficiency, providing delightful experiences from door to door. By building the last-mile delivery infrastructure for local cities, DoorDash is bringing communities closer, one doorstep at a time. Read more on the DoorDash blog or at www.doordash.com.
Our Commitment to Diversity and Inclusion
We're committed to growing and empowering a more inclusive community within our company, industry, and cities. That's why we hire and cultivate diverse teams of the best and brightest from all backgrounds, experiences, and perspectives. We believe that true innovation happens when everyone has room at the table and the tools, resources, and opportunity to excel.