Remote Product Security Engineer

Posted 2 days ago 1 applied

Description:

The Information Security team is seeking a Product Security Engineer to secure DoorDash’s products within its cloud computing environment.
This role involves working with engineering and security leaders to implement security strategies for applications supporting DoorDash’s verticals.
Responsibilities include performing manual and automated code reviews to identify vulnerabilities in APIs, microservices, and mobile apps (Android and iOS).
The engineer will conduct regular application security assessments and define, document, and implement security standards and procedures.
Participation in architectural and design review committees to provide actionable feedback is required.
The role includes proactively identifying emerging security challenges and building solutions to integrate into the product.
Collaboration with product and engineering teams is essential to ensure security is integrated from the start.
The engineer will manage the lifecycle of application vulnerabilities, from identification to remediation and reporting.
Development of tools and automated tests to improve security posture and process efficiency is also part of the job.
This is a remote position reporting directly to the Head of the Product Security team.

Candidates should have 2-5 years of experience as a security engineer or in an information security discipline.
A deep understanding of the OWASP Top 10 vulnerabilities and API, microservice, and mobile app security is required.
Interest in analyzing code, architecture, and design from a security perspective is essential.
Proficiency in scripting languages (e.g., Python) and other programming languages (e.g., Java) is necessary; experience with Kotlin and Go is a plus.
Experience in developing security automation and tooling, as well as shipping product-facing security improvements, is preferred.
A breadth of technical experience across various application security areas in large production environments is expected.
Exceptional analytical and investigative abilities with hands-on experience in root cause and variant analysis are required.
Candidates should have experience solving complex systemic issues with creative thinking and solutions.
A demonstrated track record of improving a company’s security posture is essential.
Excellent verbal and written communication skills are necessary to explain risk and security concepts to product and engineering personnel.

DoorDash offers a comprehensive benefits package, including a 401(k) plan with employer matching.
Employees receive 16 weeks of paid parental leave and wellness benefits.
Commuter benefits match, paid time off, and paid sick leave are provided in compliance with applicable laws.
Medical, dental, and vision benefits are included, along with 11 paid holidays.
Disability and basic life insurance, family-forming assistance, and a mental health program are also part of the benefits.
For salaried roles, flexible paid time off/vacation is offered, plus 80 hours of paid sick time per year.
For hourly roles, vacation and paid sick time are accrued based on hours worked.
The national base pay range for this position is $130,600 - $192,000 USD, with opportunities for equity grants.

Apply now

Please let DoorDash USA know you found this job on RemoteYeah. This helps us get more companies to post jobs here for you.

Hiring company

DoorDash USA

About the job

Posted on

August 9, 2025

Job type

Full-time

Salary

$130,600—$192,000 / year

Location requirements

Job title

Other

Experience level

Mid-level

Degree requirement

Skills

Web security Python Java Go Kotlin

Benefits

Family leave 401(k) Paid parental leave

Job expired or something else is wrong with this job?

Report job