Sr Staff OT Security Engineer

Meet the team:

The Dexcom IT Department is expanding its OT cybersecurity program by adding a Sr. Staff Cybersecurity Engineer (Architect) to guide technical teams and collaborators in establishing and implementing an OT security program to secure Dexcoms operational technology (OT) environment. The position will work closely with the OT Security team Manufacturing (Ops) IT and InfoSec to establish and mature the OT security control framework and supporting processes services and technology stack. This role will also serve as the cybersecurity architect on a multi-functional IT/OT team (MASCOT) which will provide IT/OT systems to support the rapid scaling of Dexcoms manufacturing and automation capabilities over the next three years.

The OT security team will be responsible for securing a hybrid IT/OT computing environment that directly supports Dexcoms manufacturing and operations functions across multiple manufacturing plants and facilities. The OT security function will design implement and manage OT security technology such as network/endpoint security asset management vulnerability scanning and intrusion detection systems. The team will conduct security assessments implement security controls develop threat detection and response capabilities conduct incident response and forensics activities establish security policies and standards and support audit/compliance/certification activities.

Where you come in:

Support the Security Program

• Help the Sr. Manager of OT Security set up and run a security program for our OT systems. This program follows key standards like:

• NIST CSF (a framework for improving cybersecurity)

• IEC 62443 (security guidelines for industrial systems)

• Zero Trust principles (a security approach that verifies every access request).

• Be a champion for security initiatives. Youll explain why security matters listen to feedback and build support for projects.

Lead Technical Security Efforts

• Guide the team in spotting risks and designing solutions. For example you might set up a system to limit who can access our control networks.

• Mentor others on implementing security tools and processes balancing tech and communication skills.

• Design and implement Zero Trust controls like continuous access checks and real-time monitoring.

Improve Security Practices

• Review our security methods and suggest upgrades. This includes using Zero Trust strategies like giving users only the access they need.

• Manage small projects to enhance our security tools and processes.

Handle Security Tools and Systems

• Take charge of our security tech keeping it running smoothly and fixing issues fast.

• Lead the team through service disruptions figure out what went wrong and put fixes in place.

Document and Train

• Create clear guideslike how-to manuals and system diagramsso everyone understands our security setup.

• Ensure your teammates know how to use these guides and feel confident with them.

Stay Compliant and Prepared

• Help us follow security rules and get ready for audits. We use standards like ISO 27001

• Build plans to keep our systems running during emergencies.

Keep Learning

• Know the latest on OT security trends and threats. Youll help us stay ahead of risks.

What makes you successful:

• 7 years of experience in a security engineering role.

• Experience in security operations forensics and incident response.

• Security certification such as CISSP CISM SANS/GIAC GCIP GICSP GRID etc.

• Ability to develop basic scripts in languages such as PowerShell Python Java etc.

• You have expert-level knowledge of OT security frameworks including NIST CSF ISA-95 IEC 62443 and the Purdue model.

• You possess deep expertise in OT security technologies including network security and segmentation firewalls DMZs network access control (NAC) endpoint security and hardening passive asset discovery and monitoring vulnerability management SIEM and threat detection and response systems.

• You understand manufacturing environments and OT ecosystems including IoT ICS SCADA DCS and PLC technologies.

• You handle multi-functional projects effectively getting results through structured planning and execution.

• You excel at influencing collaborators without direct authority building consensus to achieve security objectives.

• You communicate technical concepts clearly and effectively both verbally and through written documentation.

• You have experience leading and developing cybersecurity engineers and analysts fostering skill growth and career progression.

What youll get:

• A front row seat to life changing CGM technology. Learn about our brave #dexcomwarriors community.

• A full and comprehensive benefits program.

• Growth opportunities on a global scale.

• Access to career development through in-house learning programs and/or qualified tuition reimbursement.

• An exciting and innovative industry-leading organization committed to our employees customers and the communities we serve.

Travel Required:

• 5%-15%

Experience and Education Requirements:

• Typically requires a Bachelors degree in a technical discipline and a minimum of 13 years related experience or a Masters degree and 8 years equivalent industry experience of a PhD and 5 years of experience.

Remote Workplace: Your location will be a home office; you are not required to live within commuting distance of your assigned Dexcom site (typically 75 miles/120km). If you reside within commuting distance of a Dexcom site (typically 75 miles/120km) a hybrid working environment may be available. Ask about our Flex workplace option.