Senior Lead, Privacy and Data Security Counsel

The Company

Dexcom Corporation (NASDAQ DXCM) is a pioneer and global leader in continuous glucose monitoring (CGM). Dexcom began as a small company with a big dream: To forever change how diabetes is managed. To unlock information and insights that drive better health outcomes. Here we are 25 years later having pioneered an industry. And were just getting started. We are broadening our vision beyond diabetes to empower people to take control of health. That means personalized actionable insights aimed at solving important health challenges. To continue what weve started: Improving human health.

We are driven by thousands of ambitious passionate people worldwide who are willing to fight like warriors to earn the trust of our customers by listening serving with integrity thinking big and being dependable. Weve already changed millions of lives and were ready to change millions more. Our future ambition is to become a leading consumer health technology company while continuing to develop solutions for serious health conditions. Well get there by constantly reinventing unique biosensing-technology experiences. Though weve come a long way from our small company days our dreams are bigger than ever. The opportunity to improve health on a global scale stands before us.

Meet the team:

To foster growth and innovation at Dexcom this individual will support a broad range of privacy and data security activities within Dexcoms Global Privacy team sitting within its Legal Department. Reporting directly to Dexcoms Chief Privacy Officer this role will particularly focus on response and management of privacy and security incidents and will act as a liaison and support Dexcoms IT and R&D teams responsible for cybersecurity.

This role will also support other activities of the Global Privacy team which include negotiating data protection terms fulfilling data subject rights requests and conducting privacy impact assessments.

As a key team member this individual must be a highly motivated self-starter who is comfortable collaborating as part of a team communicating directly with senior leaders and working independently.

Where you come in:

• You will collaborate with in-country business and function Legal teams to drive high quality consistent compliant and efficient incident response globally.
• You will work with members of Dexcoms Legal IT and R&D teams to support internal stakeholders on all aspects of incident prevention and response in data privacy events including investigations customer and regulatory notifications contractual obligations and legal risk mitigation.
• You will develop implement and engage in ongoing enhancements of playbooks checklists decision trees process flows toolkits template documentation (including notification letters) and training for members of the teams engaged on privacy incidents to help drive high quality accurate efficient well documented consistent and actionable legal analysis and advice around privacy incidents globally.
• You will review facts relevant laws rules and regulations and applicable legal analysis to ensure that consideration has been given to all appropriate factors in identifying and assessing the need to make and the manner of making individual regulatory and/or contractual notifications concerning data privacy and/or security incidents and supporting stakeholders implementation of Legals recommendations.
• You will support and use technologies and software to assist in the handling analysis documentation and resolution of incidents.
• You will engage with the IT and R&D cybersecurity teams at Dexcom on legal compliance matters including providing legal support to reviews of cybersecurity laws and regulations like the EU NIS-2 Directive and HIPAA Security Rule
• Assisting with other projects within the Global Privacy team as requested and when time permits.

What makes you successful:

• 8 years privacy and data protection experience at a law firm or in-house preferably in regulated industries (life sciences healthcare or technology).
• Must have a proven background in privacy incident response including investigations notification determinations compliance assessments deploying industry-leading technologies and software solutions and assisting with remediation and communication matters.
• Experience managing cybersecurity compliance issues is strongly preferred.
• CIPP and/or other data privacy certifications is preferred.
• Ability to work independently with minimal supervision in a fast-paced and high-volume practice prioritize competing demands and problem solve creatively.
• JD admitted to a US state bar in good standing.

What youll get:

• A front row seat to life changing CGM technology. Learn about our brave #dexcomwarriors community.
• A full and comprehensive benefits program.
• Growth opportunities on a global scale.
• Access to career development through in-house learning programs and/or qualified tuition reimbursement.
• An exciting and innovative industry-leading organization committed to our employees customers and the communities we serve.

Travel Required:

• 0-5%

Experience and Education Requirements:

• Typically requires a Bachelors degree and a minimum of 13 years of related experience.
• At this level a graduate degree may be expected with 6 years of related experience.

Remote Workplace: Your location will be a home office; you are not required to live within commuting distance of your assigned Dexcom site (typically 75 miles/120km). If you reside within commuting distance of a Dexcom site (typically 75 miles/120km) a hybrid working environment may be available. Ask about our Flex workplace option.

Please note: The information contained herein is not intended to be an all-inclusive list of the duties and responsibilities of the job nor are they intended to be an all-inclusive list of the skills and abilities required to do the job. Management may at its discretion assign or reassign duties and responsibilities to this job at any time. The duties and responsibilities in this job description may be subject to change at any time due to reasonable accommodation or other reasons. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity age national origin or protected veteran status and will not be discriminated against on the basis of disability. Dexcoms AAP may be viewed upon request by contacting Talent Acquisition at

If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process please contact Dexcom Talent Acquisition at

Meritain an Aetna Company creates and publishes the Machine-Readable Files on behalf of Dexcom. To link to the Machine-Readable Files please click on the URL provided: all Staffing and Recruiting Agencies: Our Careers Site is only for individuals seeking a job at Dexcom. Only authorized staffing and recruiting agencies may use this site or to submit profiles applications or resumes on specific requisitions. Dexcom does not accept unsolicited resumes or applications from agencies. Please do not forward resumes to the Talent Acquisition team Dexcom employees or any other company location. Dexcom is not responsible for any fees related to unsolicited resumes/applications.

Salary: