[Remote] Senior Security Engineer, Red Team
Note: The job is a remote job and is open to candidates in USA. DoorDash is a technology and logistics company committed to building the most scalable and reliable delivery network. The Senior Security Engineer, Red Team will conduct threat intelligence-informed adversary emulations to identify security improvement opportunities and assess the security posture of critical assets and products.ResponsibilitiesPlan and execute realistic adversary simulations using curated threat intelligence to assess security opportunities, and detection and response capabilitiesHunt for vulnerabilities across AI systems, payment infrastructure, autonomous delivery hardware, and emerging technologies before adversaries doExercise range of expertise to include cyber, insider, and fraud Red Team testing scenariosBuild custom tools, exploits, and payloads tailored to DoorDash's unique and evolving tech stackPartner with Blue Teams to escalate emerging threats and develop proactive detection or defensive strategiesAdvise leadership on emerging threats and shape the security strategy for one of the world's most complex logistics platformsSkills5+ years of experience in Red Teaming and Purple TeamingYou are passionate about offensive security and care about improving your craft every dayYou think like an adversary. You have deep, experiential knowledge of APT and insider threat TTPs, not just theoretical familiarityExperience partnering with cross-functional teams to secure diverse environments, providing feedback loops that articulate business risks and generate actionable intelligenceYou've run full-scope operations across multi-platform and cloud environments, and you know how to build the malware and tooling to support themStrong knowledge of one of Python, Golang, Rust, Kotlin, Java, or PowershellExperience using and developing tooling, methodologies and scalable infrastructure to support red team engagements capabilities (e.g. command and control frameworks, phishing environment, exploits)Experience with Command and Control (C2) frameworksExperience with Defense Evasion to bypass security tooling (e.g. Endpoint Detection and Response)Excellent understanding of information security operations related frameworks and standards (e.g., MITRE Att&ck)Experience providing technical leadership and guidance, and thinking strategically and analytically to solve problemsExcellent communication, presentation, and stakeholder management skillsEngages with a people-first approach, is able to facilitate a conversation rather than dictate it, and is empathetic to divergent viewpointsBenefitsOpportunities for equity grants401(k) plan with employer matching16 weeks of paid parental leaveWellness benefitsCommuter benefits matchPaid time off and paid sick leave in compliance with applicable laws (e.g. Colorado Healthy Families and Workplaces Act)Medical, dental, and vision benefits11 paid holidaysDisability and basic life insuranceFamily-forming assistanceMental health programFlexible paid time off/vacation, plus 80 hours of paid sick time per year for salaried rolesVacation accrued at about 1 hour for every 25.97 hours worked (e.g. about 6.7 hours/month if working 40 hours/week; about 3.4 hours/month if working 20 hours/week) for hourly rolesPaid sick time accrued at 1 hour for every 30 hours worked (e.g. about 5.8 hours/month if working 40 hours/week; about 2.9 hours/month if working 20 hours/week) for hourly rolesPremium healthcareWellness expense reimbursementPaid parental leaveCompany OverviewDoorDash is a food delivery platform that connects customers with local and national businesses. It is a sub-organization of DoorDash. It was founded in 2013, and is headquartered in San Francisco, California, USA, with a workforce of 10001+ employees. Its website is http://www.doordash.com.Company H1B SponsorshipDoorDash has a track record of offering H1B sponsorships, with 70 in 2026, 530 in 2025, 510 in 2024, 413 in 2023, 612 in 2022, 439 in 2021, 126 in 2020. Please note that this does not guarantee sponsorship for this specific role.