Security Engineer, Insider Threat

About the Team At DoorDash we’re building the industry’s most scalable and reliable delivery network to support our three-sided marketplace of consumers, merchants, and Dashers. Security is integral to the success of the business, as we secure the data and protect the privacy of our business and various stakeholders. The Security Operations team spans several capabilities, to include Threat Response, Threat Hunt, Threat Intelligence, Detection Engineering, Corporate Security, and Security Platform Engineering. Our Mission is to create a secure DoorDash environment through proactive threat preparation and rapid response. We are committed to protecting our people, partners, customers, and technologies with robust safeguards and unwavering vigilance. About the Role This role will be responsible for conducting investigations into anomalous events and behaviors that may pose risk to the company, while contributing to the design and development of detection and investigation capabilities to scale those efforts.. This is a critical role that will analyze threat intelligence, develop use cases, conduct data analysis, execute complex investigations, drive detection engineering, write reports, advise on preventative controls, and collaborate with multiple internal teams to ensure coordinated investigation and response efforts. You will report into the Director, Security Operations under the Chief Information Security Officer. You’re excited about this opportunity because you will… Use monitoring and detection platforms to investigate anomalous activity for potential insider risk, and develop detections to proactively identify similar behaviors at scale Support the onboarding, implementation, and improvement of custom tooling designed to alert on anomalous behaviors Create and maintain a use case library to inform detections, and develop corresponding playbooks, leveraging version-controlled workflows (e.g., Git) to ensure consistency and scalability Create standard operating procedures and cross-functional processes to govern investigation and response collaboration between teams Leverage and help develop agentic and AII-assisted workflows to automate and scale insider threat investigations and detection capabilities Prepare investigative reports and briefings for leadership Maintain chain-of-evidence and engage with External Law Enforcement, when required Lead training or other education and awareness opportunities for the enterprise as required We’re excited about you because… 2-5+ years of experience in insider threat investigations, incident response, or federal law enforcement Strong verbal and written communication skills with experience presenting findings to stakeholders Experience conducting ethical, complex investigations in partnership with Legal, HR, and cross-functional stakeholders Hands-on experience with insider risk and security tooling including SIEM/SOAR platforms, UEBA, UAM, and DLP tools Proficiency querying large-scale datasets to support investigations (e.g. SQL) and familiarity with log sources, data pipelines, and parsing Familiarity with scripting and automation, and experience working in cloud and distributed environments using version control We expect this position to be filled by 7/7/26. Compensation The successful candidate’s starting pay will fall within the pay range listed below and is determined based on job-related factors including, but not limited to, skills, experience, qualifications, work location, and market conditions. Base salary is localized according to an employee’s work location. Ranges are market-dependent and may be modified in the future. In addition to base salary, the compensation for this role includes opportunities for equity grants. Talk to your recruiter for more information. DoorDash cares about you and your overall well-being. That’s why we offer a comprehensive benefits package to all regular employees, which includes a 401(k) plan with employer matching, 16 weeks of paid parental leave, wellness benefits, commuter benefits match, paid time off and paid sick leave in compliance with applicable laws (e.g. Colorado Healthy Families and Workplaces Act). DoorDash also offers medical, dental, and vision benefits, 11 paid holidays, disability and basic life insurance, family-forming assistance, and a mental health program, among others. To learn more about our benefits, visit our careers page here . See below for paid time off details: For salaried roles: flexible paid time off/vacation, plus 80 hours of paid sick time per year. For hourly roles: vacation accrued at about 1 hour for every 25.97 hours worked (e.g. about 6.7 hours/month if working 40 hours/week; about 3.4 hours/month if working 20 hours/week), and paid sick time accrued at 1 hour for every 30 hours worked (e.g. about 5.8 hours/month if working 40 hours/week; about 2.9 hours/month if working 20 hours/week). The national base pay range for this position within the United States, including Illinois and Colorado. $130,600 — $192,000 USD About DoorDash At DoorDash, our mission to empower local economies shapes how our team members move quickly, learn, and reiterate in order to make impactful decisions that display empathy for our range of users—from Dashers to merchant partners to consumers. We are a technology and logistics company that started by enabling door-to-door delivery, and we are looking for team members who can help us go from a company that is known as the place you order food to a company that people turn to for any and all goods. DoorDash is growing rapidly and changing constantly, which gives our team members the opportunity to share their unique perspectives, solve new challenges, and own their careers. We're committed to supporting employees’ happiness, healthiness, and overall well-being by providing comprehensive benefits and perks including premium healthcare, wellness expense reimbursement, paid parental leave and more. Our Commitment to Diversity and Inclusion We’re committed to growing and empowering a more inclusive community within our company, industry, and cities. That’s why we hire and cultivate diverse teams of people from all backgrounds, experiences, and perspectives. We believe that true innovation happens when everyone has room at the table and the tools, resources, and opportunity to excel. Statement of Non-Discrimination: In keeping with our beliefs and goals, no employee or applicant will face discrimination or harassment based on: race, color, ancestry, national origin, religion, age, gender, marital/domestic partner status, sexual orientation, gender identity or expression, disability status, or veteran status. Above and beyond discrimination and harassment based on “protected categories,” we also strive to prevent other subtler forms of inappropriate behavior (i.e., stereotyping) from ever gaining a foothold in our office. Whether blatant or hidden, barriers to success have no place at DoorDash. We value a diverse workforce – people who identify as women, non-binary or gender non-conforming, LGBTQIA+, American Indian or Native Alaskan, Black or African American, Hispanic or Latinx, Native Hawaiian or Other Pacific Islander, differently-abled, caretakers and parents, and veterans are strongly encouraged to apply. Thank you to the Level Playing Field Institute for this statement of non-discrimination. Pursuant to the San Francisco Fair Chance Ordinance, Los Angeles Fair Chance Initiative for Hiring Ordinance, and any other state or local hiring regulations, we will consider for employment any qualified applicant, including those with arrest and conviction records, in a manner consistent with the applicable regulation. If you need any accommodations, please inform your recruiting contact upon initial connection. Notice to Applicants for Jobs Located in NYC or Remote Jobs Associated With Office in NYC Only We used Covey as part of our hiring and/or promotional process for jobs in NYC and certain features may qualify it as an AEDT in NYC. As part of the hiring and/or promotion process, we provided Covey with job requirements and candidate submitted applications. We began using Covey Scout for Inbound from August 21, 2023, through December 21, 2023. We resumed using Covey Scout for Inbound again on June 29, 2024, and ceased using Covey Scout for Inbound on April 30, 2026. The Covey tool has been reviewed by an independent auditor. Results of the audit may be viewed here: https://getcovey.com/nyc-local-law-144 .

{
  "content_hash": "214b6a4049572c239b70700ce08fa040a0f6d226ec5b509ca45836d94ba94e72",
  "source_hash": "a288805659e58b311fc5f06aa4e8b0cfda0993249169867cc5fada893766ccbf",
  "last_changed_at": "2026-06-06T07:34:56.436Z",
  "active_status": "active"
}

{
  "language": "en",
  "location": {
    "raw": "United States - Remote",
    "city": null,
    "region": null,
    "country": "United States",
    "is_remote": true,
    "confidence": 0.95
  },
  "salary_max": null,
  "salary_min": null,
  "inferred_at": "2026-06-06T07:34:56.192Z",
  "launch_scope": {
    "reason": "english_us_canada",
    "included": true,
    "language": "en",
    "location": {
      "raw": "United States - Remote",
      "city": null,
      "region": null,
      "country": "United States",
      "is_remote": true,
      "confidence": 0.95
    },
    "countries": [
      "United States"
    ]
  },
  "remote_policy": "remote",
  "salary_period": null,
  "workplace_type": "remote",
  "salary_currency": null
}

{}

{
  "title": "Security Engineer, Insider Threat",
  "offices": [
    {
      "id": 79486,
      "name": "San Francisco",
      "location": null,
      "child_ids": [],
      "parent_id": 79324
    }
  ],
  "language": "en",
  "location": {
    "name": "United States - Remote"
  },
  "metadata": [
    {
      "id": 875125,
      "name": "Availability Date",
      "value": "2026-05-06",
      "value_type": "date"
    },
    {
      "id": 875200,
      "name": "Earliest Hire Date",
      "value": "2026-05-06",
      "value_type": "date"
    },
    {
      "id": 170345,
      "name": "Business Line",
      "value": "Marketplace",
      "value_type": "single_select"
    },
    {
      "id": 170346,
      "name": "Market",
      "value": "Corporate",
      "value_type": "single_select"
    },
    {
      "id": 172948,
      "name": "Entity",
      "value": "DoorDash, Inc.",
      "value_type": "single_select"
    },
    {
      "id": 174556,
      "name": "Job Family",
      "value": "Security Engineering",
      "value_type": "single_select"
    },
    {
      "id": 1495483,
      "name": "Engineering Discipline",
      "value": [],
      "value_type": "multi_select"
    },
    {
      "id": 172717,
      "name": "Job Location",
      "value": "HQ, USA, CA, San Francisco, 2nd St",
      "value_type": "single_select"
    },
    {
      "id": 875215,
      "name": "Time Type",
      "value": "Full time",
      "value_type": "single_select"
    },
    {
      "id": 923113,
      "name": "Hiring Manager with Job Title",
      "value": "Suha Can - VP, Chief Security Officer",
      "value_type": "single_select"
    },
    {
      "id": 172248,
      "name": "Careers Page Sorting: Department",
      "value": "Engineering",
      "value_type": "single_select"
    },
    {
      "id": 32781020,
      "name": "US1 - Base Salary Band Midpoint",
      "value": {
        "unit": "USD",
        "amount": "192000.0"
      },
      "value_type": "currency"
    },
    {
      "id": 32794284,
      "name": "US4 - Base Salary Band Minimum",
      "value": {
        "unit": "USD",
        "amount": "130600.0"
      },
      "value_type": "currency"
    },
    {
      "id": 32794304,
      "name": "US1 - Equity Band Midpoint",
      "value": {
        "unit": "USD",
        "amount": "237500.0"
      },
      "value_type": "currency"
    },
    {
      "id": 32796921,
      "name": "USA: Pay Transparency Range",
      "value": {
        "unit": "USD",
        "max_value": "192000.0",
        "min_value": "130600.0"
      },
      "value_type": "currency_range"
    },
    {
      "id": 33181307,
      "name": "Canada: Pay Transparency Range",
      "value": {
        "unit": "CAD",
        "max_value": "150000.0",
        "min_value": "120000.0"
      },
      "value_type": "currency_range"
    },
    {
      "id": 40636812,
      "name": "Umbrella Corp:",
      "value": "DoorDash",
      "value_type": "single_select"
    },
    {
      "id": 40689956,
      "name": "Wolt: Careers Site Department",
      "value": null,
      "value_type": "single_select"
    },
    {
      "id": 50331873,
      "name": "Business Title",
      "value": null,
      "value_type": "short_text"
    },
    {
      "id": 54550527,
      "name": "Fountain HVH",
      "value": null,
      "value_type": "yes_no"
    },
    {
      "id": 54550663,
      "name": "Fountain Opening ID",
      "value": null,
      "value_type": "short_text"
    }
  ],
  "updated_at": "2026-06-04T17:01:08-04:00",
  "departments": [
    {
      "id": 63857,
      "name": "315 Security Engineering",
      "child_ids": [],
      "parent_id": 2438
    }
  ],
  "company_name": "DoorDash USA",
  "requisition_id": 3434039,
  "first_published": "2026-05-07T08:15:07-04:00",
  "application_deadline": null
}