Staff Security Engineer, Customer Support and Integrity

At DoorDash we’re building the industry’s most scalable and reliable delivery network to support our three-sided marketplace of consumers, merchants, and Dashers. Security is paramount to the success of our business, and DoorDash Security aspires to be the world’s best security team. We are committed to protecting our people, partners, customers, and technologies with robust safeguards and unwavering vigilance. 

Our team is looking for a Lead Security Engineer who will act as the main cybersecurity partner to the Customer Support and Integrity teams and related business areas. This role will establish the dedicated security team for the Customer Support and Integrity business at DoorDash. We are looking for a highly technical, hands-on security engineer who will build the vision, strategy, and drive the execution to secure DoorDash’s global support workforce, solutions, technologies and workflows. This is a US remote position reporting directly to the Chief of Staff, Global Security. 

• Establish the vision, strategy and success metrics for the Customer Support and Integrity Security function with inputs from partner teams like Customer Experience, Merchant Experience, Sales Operations, Enterprise Security and GRC.
• Lead the technical direction and roadmap execution for Customer Support and Integrity Security to reduce security risk associated with support agents and tooling.
• Work directly with Customer Support and Integrity, Merchant Experience, Enterprise Security, Engineering, Product, GRC and related teams to enact security strategies for DoorDash’s support tooling and support agents.
• Design and Operationalize security controls, to reduce risk and promote widespread adoption of secure solutions and best practices across internal and third party support populations
• Establish clear, measurable metrics to demonstrate and track the performance and impact of the Customer Support and Integrity security programs and initiatives
• Perform security testing and validation of support teams, processes and systems to identify security gaps and remediation plans
• Drive alignment across multiple organizations, build durable operating mechanisms, and improve how the company proactively manages security risks at scale.
• Be the trusted primary partner for the Customer Support and Integrity organization on all things security and connector between the two teams.

• 8+ years of experience as a security engineer in an enterprise security, corporate security or infrastructure security discipline.
• Proven track record designing and implementing security solutions at scale for support and sales populations including internal and third party users (Call centers, Business Process Outsourcers, etc.)
• Experience working directly with third party support organizations (call centers, Business Process Outsourcers)
• Can deeply and confidently speak to security engineering, system architecture, scalability and reliability decisions, and design trade offs.
• A customer first and owner mindset
• Possess a breadth of technical experience across various infrastructure and security areas running in large production environments
• Proficient in analyzing code, architecture and designs from a security perspective
• Well versed with scripting languages (e.g. Python) and other programming languages (e.g. Java). Golang experience is a plus.
• Strong experience with infrastructure as a code tooling like Terraform.
• Experience with IAM platforms (e.g. Okta, GoogleWorkspace).
• Hands-on experience with GoogleWorkspace products, especially Google Chrome Enterprise Premium
• Expertise with cloud infrastructure and management in GCP and AWS
• Experience solving complex, systemic issues at scale that require creative thinking and solutions.
• Exceptional analytical and investigative abilities with hands-on experience leading root cause analysis.
• Excellent verbal and written communication skills - you can understand and review design documents with respect to cloud infrastructure with engineering personnel. 
• Experience with access management, abuse prevention, operational controls, incident management, or platform risk programs
• Experience building scalable governance frameworks, escalation models, or operational control mechanisms
• Experience leveraging AI, automation, or workflow tooling to improve operational scale and resilience
• Experience operating across global teams and time zones

Notice to Applicants for Jobs Located in NYC or Remote Jobs Associated With Office in NYC Only

We used Covey as part of our hiring and/or promotional process for jobs in NYC and certain features may qualify it as an AEDT in NYC. As part of the hiring and/or promotion process, we provided Covey with job requirements and candidate submitted applications. We began using Covey Scout for Inbound from August 21, 2023, through December 21, 2023.  We resumed using Covey Scout for Inbound again on June 29, 2024, and ceased using Covey Scout for Inbound on April 30, 2026.

The Covey tool has been reviewed by an independent auditor. Results of the audit may be viewed here: https://getcovey.com/nyc-local-law-144.