Dexcom
Staff Cybersecurity Engineer – Cloud & AI Security
Job Description
The Company Dexcom Corporation (NASDAQ DXCM) is a pioneer and global leader in continuous glucose monitoring (CGM). Dexcom began as a small company with a big dream: To forever change how diabetes is managed. To unlock information and insights that drive better health outcomes.
Here we are 25 years later, having pioneered an industry. And we’re just getting started. We are broadening our vision beyond diabetes to empower people to take control of health. That means personalized, actionable insights aimed at solving important health challenges.
To continue what we’ve started: Improving human health. We are driven by thousands of ambitious, passionate people worldwide who are willing to fight like warriors to earn the trust of our customers by listening, serving with integrity, thinking big, and being dependable.
We’ve already changed millions of lives and we’re ready to change millions more. Our future ambition is to become a leading consumer health technology company while continuing to develop solutions for serious health conditions. We’ll get there by constantly reinventing unique biosensing-technology experiences.
Though we’ve come a long way from our small company days, our dreams are bigger than ever. The opportunity to improve health on a global scale stands before us. Meet the Team: As a Staff Cybersecurity Engineer on the Enterprise Product Security team, you will implement and operationalize security controls across cloud platforms and the software delivery lifecycle.
You will partner closely with DevOps, Software Engineering, Infrastructure, Enterprise Architecture, and InfoSec to secure cloud environments, AI services, and applications, and you will contribute as a subject-matter expert in internal technical reviews as needed. The role emphasizes hands‑on engineering, automation, and measurable risk reduction.
Where You Come In Implement security architecture patterns and security improvements for GCP, AWS, and Azure. Integrate security checks in CI/CD (e. g.
, IaC scanning, secrets detection, SAST, SCA, etc. ), and configure cloud security guardrails (HashiCorp Sentinel, GCP Org Policies, etc. ) to block non‑compliant changes.
Conduct security assessments on cloud workloads, applications, and DevOps stacks; document findings and drive remediation in collaboration with service owners. Build scalable processes using ASPM/CSPM/SCA/SAST/DAST/IAST; correlate findings from Wiz, Apiiro, Snyk, Qualys; establish alerting, risk‑based prioritization, and remediation workflows. Deploy and tune posture and threat monitoring for cloud infrastructure and applications; ensure logs, metrics, and traces support rapid investigation.
Implement defenses against prompt injection, data poisoning, model exfiltration, jailbreaks, sensitive information disclosure, etc. Guide teams on safe GenAI adoption, aligning with InfoSec policies, compliance requirements, and industry best practices. Support compliance and certification activities by providing evidence during audits and internal reviews.
EWJD3
