[Remote] Senior Threat Response Engineer, Security Operations
Note: The job is a remote job and is open to candidates in USA. DoorDash is a technology and logistics company focused on empowering local economies. The Senior Threat Response Engineer will conduct investigations and response operations across the incident response life-cycle to mitigate threats, collaborating with cross-functional teams to enhance DoorDash's security posture.
Responsibilities
- Monitor, analyze, and correlate security alerts, logs, and events from various sources
- Lead investigation and containment of security incidents, as incident handler
- Prepare post-mortem reports and conduct lessons learned
- Develop and maintain incident response playbooks and processes
- Coordinate with cross-functional teams, internally and externally, on threats targeting DoorDash
- Lead or participate in security tool proof-of-concepts and documentation
- Identify opportunities for alert development based on threats to DoorDash
- Conduct threat hunting
- Lead training or other education and awareness opportunities for the enterprise as required
- Use monitoring and detection platforms to investigate anomalous activity for potential insider risk
- Advise and assist in the onboarding and implementation of custom tooling designed to alert on anomalous behaviors
- Create and maintain a use case library to inform detections, and develop corresponding playbooks and escalation procedures
- Participate in and support on-call rotation
Skills
- 5+ years of experience in Incident Response, Threat Hunt, and/or Security Operations
- Experience working with Global partners in a follow-the-sun model
- Experience with a broad range of technologies including endpoint detection and network technologies, and SOAR/SIEM platforms
- Experience with AI / LLM technologies to help enrich and automate security operational processes
- Computer forensics, including analyzing Linux and MacOS systems
- Working knowledge of a scripting language
- Exceptional analytical and investigative abilities
- Experience partnering with cross functional teams to support an investigation
- Excellent understanding of information security operations related frameworks and standards (e.g., MITRE Att&ck and NIST)
- Excellent verbal and written communication, presentation, and stakeholder management skills
Benefits
- 401(k) plan with employer matching
- 16 weeks of paid parental leave
- Wellness benefits
- Commuter benefits match
- Paid time off and paid sick leave in compliance with applicable laws (e.g. Colorado Healthy Families and Workplaces Act)
- Medical, dental, and vision benefits
- 11 paid holidays
- Disability and basic life insurance
- Family-forming assistance
- Mental health program
- Flexible paid time off/vacation, plus 80 hours of paid sick time per year (for salaried roles)
- Vacation accrued at about 1 hour for every 25.97 hours worked (for hourly roles)
- Paid sick time accrued at 1 hour for every 30 hours worked (for hourly roles)
- Premium healthcare
- Wellness expense reimbursement
- Paid parental leave
Company Overview
Company H1B Sponsorship