Senior Manager, Enterprise Security Engineering

About The Role

We are hiring a hands-on Senior Manager (L7) to lead our Enterprise Security Engineering function. This team builds the security guardrails—baselines, controls, and automated assurance—that make our enterprise secure by design. You will set vision and roadmaps, scale and mentor security engineering teams, and deliver security that is built-in, not bolted on. The work blends strategy and execution: design the playbook, coach leaders and senior engineers, and lean in directly when the stakes are high. Success in this role stems from a deep technical engineering understanding of the enterprise domain and effective cross-functional partnership and collaboration. You will work closely with IT service owners to embed guardrails into enterprise platforms and services, ensuring controls scale with reliability and business enablement. We prioritize crown-jewel systems and data through explicit risk tiering, focusing engineering efforts where they matter most.

You Are Excited About This Opportunity Because You Will…

• Define and deliver enterprise guardrails. Ship and drive adoption of hardened baselines across identity, endpoints, SaaS, networks, and data; hold SLAs/SLOs and automated attestation for control health and adoption of Zero Trust primitives.
• Advance Zero Trust. Enforce identity-aware access with continuous attestation for device/user signals, micro-segmentation, to adopt user- and machine-bound identities, and enable a hardened VPN-free environment. 
• Protect data in motion and at rest. Define and scale data classification and context-aware DLP with least-privilege; enforce managed browsers for session isolation and data egress control; provide safe-by-default paths for AI and collaboration tools.
• Lead SaaS hardening, discovery, and control (with IT). Establish a hardening baseline for sanctioned SaaS applications, continuously monitor for and identify shadow SaaS, and enforce a data-egress policy across the SaaS portfolio using modern, forward-thinking primitives.
• Scale architecture reviews. Drive threat models, trust boundaries, and data-flow/abuse-case reviews; requiring assurance in code (e.g., tests, policy, mTLS/service identity, per-request authorization) for secure-by-default enterprise services.
• Engineer assurance-as-code. Build policy engines and change gates for identity, device, SaaS, and network control planes; enforce posture and identity claims, detect drift, require signed configuration, and fail-safe on non-compliance.
• Oversee secrets hygiene. Detect plaintext secrets in SaaS and on endpoints, block egress with managed browsers, route to approved vaulting, and verify KMS rotation and attestation signals.
• Review third-party and AI integrations. Set pre-production minimums and clearly define exceptions that protect access boundaries and crown-jewel data.
• Strengthen the human edge. Support phishing resilience, managed browsers adoption, and user-centric security controls that reduce risk without friction.
• Harden control gaps. In partnership with Detection and Response, the Red Team, and Leadership, to implement corrective controls, close root causes, and prevent regressions through enforced tests and policy-as-code.
• Deliver measurable impact. Define key control metrics and enterprise control health indicators, publish results, and drive improvements with accountable owners.

We Are Excited About You Because You Bring…

• Leadership experience. 10+ years in security or infrastructure; 5+ years managing. Player-coach who sets technical direction, mentors managers and senior engineers, and dives in on the hardest problems.
• Technical depth. Foundation-first security—secure-by-default baselines, least privilege, segmentation, device and identity attestation, and telemetry-backed control health—applied with crown-jewel prioritization and pragmatic managed browsers use to reduce unsanctioned data egress without friction.
• Customer orientation. Make the secure path the easy path by instrumenting adoption and time-to-task, reducing support tickets, and iterating guardrails for clarity and speed.
• Automation-first mindset. Strong orientation toward policy-as-code, infrastructure-as-code, and automated assurance pipelines.
• Execution under pressure. Demonstrated ability to make high-stakes calls with incomplete information and to sequence priorities against risk and business needs.
• Collaboration at scale. History of building durable partnerships with IT, embedding controls into services without slowing delivery.
• Agile workflows. Ability to hold, organize, and transparently manage multiple dynamic priorities to improve customer experience and velocity at scale.
• Influence and communication. Able to align executives and engineers alike; trusted voice with cross-functional partners.
• Evidence of impact. Record of defining metrics, publishing results, and driving measurable reductions in risk exposure.
• Credentials. Bachelor’s degree or equivalent experience required; advanced degree preferred.
• Reliability and flexibility. Ability to support critical escalations outside standard hours; occasional travel, including international.

We expect this position to be filled by 12/16/25.

Compensation

The successful candidate’s starting pay will fall within the pay range listed below and is determined based on job-related factors including, but not limited to, skills, experience, qualifications, work location, and market conditions. Base salary is localized according to an employee’s work location. Ranges are market-dependent and may be modified in the future.

In addition to base salary, the compensation for this role includes opportunities for equity grants. Talk to your recruiter for more information.

DoorDash cares about you and your overall well-being. That’s why we offer a comprehensive benefits package to all regular employees, which includes a 401(k) plan with employer matching, 16 weeks of paid parental leave, wellness benefits, commuter benefits match, paid time off and paid sick leave in compliance with applicable laws (e.g. Colorado Healthy Families and Workplaces Act). DoorDash also offers medical, dental, and vision benefits, 11 paid holidays, disability and basic life insurance, family-forming assistance, and a mental health program, among others.

To learn more about our benefits, visit our careers page here.

See below for paid time off details:

• For salaried roles: flexible paid time off/vacation, plus 80 hours of paid sick time per year.
• For hourly roles: vacation accrued at about 1 hour for every 25.97 hours worked (e.g. about 6.7 hours/month if working 40 hours/week; about 3.4 hours/month if working 20 hours/week), and paid sick time accrued at 1 hour for every 30 hours worked (e.g. about 5.8 hours/month if working 40 hours/week; about 2.9 hours/month if working 20 hours/week).

The national base pay range for this position within the United States, including Illinois and Colorado.$231,200—$340,000 USD

About Doordash

At DoorDash, our mission to empower local economies shapes how our team members move quickly, learn, and reiterate in order to make impactful decisions that display empathy for our range of users—from Dashers to merchant partners to consumers. We are a technology and logistics company that started with door-to-door delivery, and we are looking for team members who can help us go from a company that is known for delivering food to a company that people turn to for any and all goods.

DoorDash is growing rapidly and changing constantly, which gives our team members the opportunity to share their unique perspectives, solve new challenges, and own their careers. We're committed to supporting employees’ happiness, healthiness, and overall well-being by providing comprehensive benefits and perks including premium healthcare, wellness expense reimbursement, paid parental leave and more.

Our Commitment To Diversity And Inclusion

We’re committed to growing and empowering a more inclusive community within our company, industry, and cities. That’s why we hire and cultivate diverse teams of people from all backgrounds, experiences, and perspectives. We believe that true innovation happens when everyone has room at the table and the tools, resources, and opportunity to excel.

Statement of Non-Discrimination: In keeping with our beliefs and goals, no employee or applicant will face discrimination or harassment based on: race, color, ancestry, national origin, religion, age, gender, marital/domestic partner status, sexual orientation, gender identity or expression, disability status, or veteran status. Above and beyond discrimination and harassment based on “protected categories,” we also strive to prevent other subtler forms of inappropriate behavior (i.e., stereotyping) from ever gaining a foothold in our office. Whether blatant or hidden, barriers to success have no place at DoorDash. We value a diverse workforce – people who identify as women, non-binary or gender non-conforming, LGBTQIA+, American Indian or Native Alaskan, Black or African American, Hispanic or Latinx, Native Hawaiian or Other Pacific Islander, differently-abled, caretakers and parents, and veterans are strongly encouraged to apply. Thank you to the Level Playing Field Institute for this statement of non-discrimination.

Pursuant to the San Francisco Fair Chance Ordinance, Los Angeles Fair Chance Initiative for Hiring Ordinance, and any other state or local hiring regulations, we will consider for employment any qualified applicant, including those with arrest and conviction records, in a manner consistent with the applicable regulation.

If you need any accommodations, please inform your recruiting contact upon initial connection.