Sr DevOps Engineer - Security Engineering
Dexcom, Inc

About Dexcom

Founded in 1999, Dexcom, Inc. (NASDAQ: DXCM), develops and markets Continuous Glucose Monitoring (CGM) systems for ambulatory use by people with diabetes and by healthcare providers for the treatment of people with diabetes. The company is the leader in transforming diabetes care and management by providing CGM technology to help patients and healthcare professionals better manage diabetes. Since the company's inception, Dexcom has focused on better outcomes for patients, caregivers, and clinicians by delivering solutions that are best in class - while empowering the community to take control of diabetes. Dexcom reported full-year 2022 revenues of $2.9B, a growth of 18% over 2021. Headquartered in San Diego, California, with additional offices in the Americas, Europe, and Asia Pacific, the company employs over 8,000 people worldwide.

Meet The Team

Dexcom R&D is a high-growth, fast-paced environment where you work with leading-edge, high-motivated software teams to develop the modern diabetes medical device systems. We are seeking a highly skilled and motivated Software Engineer to join our Security Engineering team.

In this role, you will be responsible for designing, implementing, and maintaining automation solutions for identity and security practices with a specific focus on vulnerability management and orchestration. Our ideal candidate should have a strong background in software development, a deep understanding of security operations and engineering, experience with managing Cloud Identity, and a passion for streamlining and enhancing operational processes, particularly in the context of security and vulnerability management.

Where you come in:

• You design and implement code-based solutions to solve common infrastructure security challenges
  
• You modernize security services with a focus on self-service and automation via Infrastructure as Code and other Engineering techniques and practices; focusing on operating system frameworks
  
• You work with Software Engineering teams to review deployed applications and the supporting infrastructure for potential security risks.
  
• You gather requirements from multiple engineering teams for building and maintaining a Golden Image pipeline for both VMs and Containers.
  
• You diagnose and fix complex technical and issues independently and with a team of motivated engineers
  

What makes you successful:

• 4 years' Experience working in a Cloud Environment (GCP, Azure, AWS)
  
• Experience with using a security-based risk scoring system (CVSS, KEV, EPSS)
  
• Experience operating or designing a Vulnerability Management Program
  
• Proficiency in object-oriented languages (e.g., Java, Python, and so on) or languages such as Typescript and GoLang.
  
• Experience with Trunk Based development practices
  
• Proficiency in understanding of IaC principals
  
• Strong experience with CI/CD pipeline technologies like Jenkins, Github Actions, ArgoCD, and Artifactory
  
• Passion and ability to automate most if not all manual operations
  
• Strong self-starter with a passion to learn modern technologies
  
• Use latest industry standard build and test automation tooling to develop and validate deployment integrity and operational reliability of both cloud infrastructure and applications
  

Ideal if you also have:

• Comfortable working with cloud environments like Google Cloud and AWS (Amazon Web Services)
  
• Strong experience building and managing VM and Container Base Images
  
• Strong experience working with container base images such as Wolfi, Alpine, or Distroless
  
• Strong experience with Observability tools such as DataDog or New Relic
  
• Ability to think of infrastructure as code and the ability to create and maintain the infrastructure using Terraform and Pulumi
  
• Experience working with common network appliances such as a Web Application Firewall (WAF), traditional Firewall, API Gateways, or Load Balancers.
  
• Experience with security scanning tool such as Wiz and Qualys
  
• Familiarity with CVEs (Common Vulnerability and Exposure)
  
• Experience interacting with Security Information and Event Monitoring (SIEM) tooling such as Splunk, Google Chronicle, AlienVault,QRadar, etc
  
• Understanding of security frameworks such as NIST (National Institute of Standards and Technology) and OWASP
  
• Ability to think out of the box to complex and unique internal and customer facing issues
  
• Ability to approach problems in a flexible and creative manner
  

Functional/Business Knowledge Description

• Work closely with our Cybersecurity Operation teams to design, implement and operate Security and Cloud Policy within GCP (Google Cloud Platform), DNS, Vulnerability Management, Secure coding standards, and VM/Container Image pipeline/lifecycle.
  
• Build IaaS (Infrastructure as a Service) capability through customized code automating all aspects of build and integration with custom, in-house developed CGM (Continuous Glucose Monitor) platform components. Research, design and integrate cloud infrastructure in conjunction with application build/deploy pipelines.
  
• Use latest industry standard build and test automation tooling to develop and validate deployment integrity and operational reliability of both cloud infrastructure and applications.
  
• Support teams to define and document SLA's and KPI's for accurate and timely alerting of CGM Platform availability issues.
  
• Collaborate across technical teams to create RCA (Root Cause Analysis) reports and implement changes to improve the CGM platform's availability, maintainability, performance, and security.
  
• Work with application architects to propose, develop, and implement systemic improvements as applicable.
  
• Ability to deliver technical ideas that have an impact on the objectives.
  
• Understands organizational and functional processes and policies aligned to the technical and business goals.
  

What you'll get:

• A front row seat to life changing CGM technology. Learn about our brave #dexcomwarriors community.
  
• A full and comprehensive benefits program.
  
• Growth opportunities on a global scale.
  
• Access to career development through in-house learning programs and/or qualified tuition reimbursement.
  
• An exciting and innovative, industry-leading organization committed to our employees, customers, and the communities we serve.
  

Travel Required:

• 5-15%
  

Remote Workplace:

• Your location will be a home office; you are not required to live within commuting distance of your assigned Dexcom site (typically 75 miles/120km). If you reside within commuting distance of a Dexcom site (typically 75 miles/120km) a hybrid working environment may be available. Ask about our Flex workplace option.
  

Please note: The information contained herein is not intended to be an all-inclusive list of the duties and responsibilities of the job, nor are they intended to be an all-inclusive list of the skills and abilities required to do the job. Management may, at its discretion, assign or reassign duties and responsibilities to this job at any time. The duties and responsibilities in this job description may be subject to change at any time due to reasonable accommodation or other reasons. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability. Dexcom's AAP may be viewed upon request by contacting Talent Acquisition at talentacquisition@dexcom.com.

If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact Dexcom Talent Acquisition at talentacquisition@dexcom.com.

View the OFCCP's Pay Transparency Non Discrimination Provision at this link.

Meritain, an Aetna Company, creates and publishes the Machine-Readable Files on behalf of Dexcom. To link to the Machine-Readable Files, please click on the URL provided: https://health1.meritain.com/app/public/#/one/insurerCode=MERITAIN_I&brandCode=MERITAINOVER/machine-readable-transparency-in-coverage?reportingEntityType=TPA_19874&lock=true

To all Staffing and Recruiting Agencies: Our Careers Site is only for individuals seeking a job at Dexcom. Only authorized staffing and recruiting agencies may use this site or to submit profiles, applications or resumes on specific requisitions. Dexcom does not accept unsolicited resumes or applications from agencies. Please do not forward resumes to the Talent Acquisition team, Dexcom employees or any other company location. Dexcom is not responsible for any fees related to unsolicited resumes/applications.

Salary:
$100,700.00 - $167,900.00

---