← Return to Job Board

Lead DevOps Security Engineer

Dexcom – SAN DIEGO, CA, United States - Published On 2/25/19


Help Dexcom Save Lives!

Dexcom is a high-growth, fast-paced medical device where you will be challenged with leading-edge, cloud-native technologies, supporting containerized, microservices applications and big data platforms in a DevOps CI/CD environment. You will have opportunities to expand your skills and work alongside highly-skilled and passionate innovators who know how to deliver exceptional results while also having some fun along the way.

Founded in 1999, Dexcom, Inc. provides continuous glucose monitoring (CGM) technology to help patients and their clinicians better manage diabetes. Since our inception, we have focused on better outcomes for patients, caregivers, and clinicians by delivering solutions for people with diabetes - while empowering our community to take control of diabetes.

Our values:
Listen- We comprehend the needs of people affected by diabetes.
Serve with integrity- Act in the best interest of our community.
Think big- Use technology to revolutionize diabetes care.
Be dependable- Inspire confidence within our community and in one another.

Learn more about our culture here from our employees: and find out why we’re the most gratifying place one can work:

What we need in our team:
We’re seeking a Staff Security Engineer (which is one level above Senior Engineer) to design and implement an application security program and champion application security initiatives across our team. The Dexcom R&D Data team is establishing an information security program to protect our product environment spanning multiple web applications, APIs, Data Platform and Data Science environments hosted in a public cloud.

This is a greenfield opportunity for someone who is looking to truly make an impact by shaping our Security Roadmap and Architecture.

What you will get to do:
• Design, implement and manage security controls and automation in a DevOps environment within public clouds (such as AWS, GCP, etc.) across IaaS, SaaS and container platforms.
• Perform security assessments and provide recommendations/consulting on securing cloud infrastructure and in selecting/implementing cloud-native security tools.
• Design and manage security monitoring and threat detection systems for cloud environments.
• Develop incident response tools and capabilities and lead forensics investigations.
• Conduct vulnerability scanning and penetration testing activities and drive remediation of findings.
• Serve as a security expert and provide guidance and technical leadership to other staff members.
• Keep abreast of and provide recommendations on emerging security technologies/tools.
• Support compliance/certification activities and participate in security audits/reviews.

Must haves:
• 6+ years’ experience in the cybersecurity, IT, or engineering fields; with at least 2 years in a DevOps security role.
• Strong understanding of security controls/services in public cloud environments (AWS or GCP).
• Experience in threat detection, monitoring, log management, incident response, and forensics.
• Experience in IAM, secrets management, encryption technologies, OS security hardening, SaaS services hardening, and container security.
• Experience with Linux administration, shell scripting, and open source security tools.
• Proficient with a modern programming/scripting language such as Python, Go, or Ruby
• Ability to work effectively in a cross-functional setting through influence, persuasion, and collaboration; strong communication skills

Nice to haves:
• BS/MS in computer science/engineering or equivalent work experience.
• Understanding of TCP/IP networking, firewalls, WAF and DNS.
• Familiarity with regulatory security/privacy standards such as HIPAA, GPDR, NIST or ISO.
• CISSP, GIAC or CCSP certification preferred.

How to Apply


This document was retrieved from on Wed, 24 Apr 2019 20:30:49 -0400.