Sr. Staff Cybersecurity Engineer

Dexcom•San Diego, CA

2d•Remote

About The Position

The Company Dexcom Corporation (NASDAQ DXCM) is a pioneer and global leader in continuous glucose monitoring (CGM). Dexcom began as a small company with a big dream: To forever change how diabetes is managed. To unlock information and insights that drive better health outcomes. Here we are 25 years later, having pioneered an industry. And we're just getting started. We are broadening our vision beyond diabetes to empower people to take control of health. That means personalized, actionable insights aimed at solving important health challenges. To continue what we've started: Improving human health. We are driven by thousands of ambitious, passionate people worldwide who are willing to fight like warriors to earn the trust of our customers by listening, serving with integrity, thinking big, and being dependable. We've already changed millions of lives and we're ready to change millions more. Our future ambition is to become a leading consumer health technology company while continuing to develop solutions for serious health conditions. We'll get there by constantly reinventing unique biosensing-technology experiences. Though we've come a long way from our small company days, our dreams are bigger than ever. The opportunity to improve health on a global scale stands before us. Meet the team: Dexcom is a high-growth, fast-paced environment where you work with leading-edge, software teams to ensure the security of modern diabetes medical device systems. You will work alongside highly skilled and passionate innovators who know how to deliver exceptional results while also having some fun. Where you come in: For this Staff Cybersecurity Architect role, you will be joining our Research and Development team to design and review security features for new Dexcom applications. As a member of the R&D Cybersecurity team, you will be responsible for reviewing new mobile applications, identifying, and ranking potential risks, as well as documenting your findings for review. Additionally, you will be responsible for working with the various development teams and product managers to ensure that new projects are implemented correctly and on time. The ideal candidate is one who has previous experience with security-based threat models.

Requirements

5+ years' experience creating security-based threat models for software applications
Experience with a Threat Modeling tool such as Irius Risk and STRIDE Threat Modeling methodology
Proven experience working in a mobile APP environment (iOS and/or Android)
Experience with using a security-based risk scoring system (CVSS)
Knowledge of OWASP top ten vulnerabilities for mobile applications and APIs
A solid understanding of symmetric key and public key cryptography and standard security protocols such as TLS and IPsec.
Development experience with a common scripting language (e.g., Python, Bash) or programming language (e.g., Swift, Objective C or Kotlin).
Typically requires a Bachelor's degree in a technical discipline, and a minimum of 13+ years related experience or a Master's degree and 8+ years equivalent industry experience of a PhD and 5+ years of experience

Nice To Haves

Previous Mobile Application development and RASP technologies experience
Knowledge of industry standards as they relate to mobile APP security management such as OWASP
Exposure to agile development, DevOps, SecOps and scrum teams
Experience in Medical device industry and HIPAA regulations

Responsibilities

Attend design review meetings to identify and document any potential security risks in a new implementation.
Document any findings and recommendations for formal review.
Oversee implementation of security-based controls to mitigate any potential risks identified during a security review.
Advise development team members on security best-practices

Benefits

A front row seat to life changing CGM technology.
Learn about our brave #dexcomwarriors community.
A full and comprehensive benefits program.
Growth opportunities on a global scale.
Access to career development through in-house learning programs and/or qualified tuition reimbursement.
An exciting and innovative, industry-leading organization committed to our employees, customers, and the communities we serve.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume