Sr. Cybersecurity Engineer

The Company

Dexcom Corporation (NASDAQ DXCM) is a pioneer and global leader in continuous glucose monitoring (CGM). Dexcom began as a small company with a big dream:
To forever change how diabetes is managed and to unlock information and insights that drive better health outcomes. Twenty‑five years later, we have pioneered an industry and are broadening our vision beyond diabetes to empower people to take control of health with personalized, actionable insights aimed at solving important health challenges. We are committed to improving human health.

Dexcom is a high‑growth, fast‑paced environment where you work with leading‑edge software teams to ensure the security of modern diabetes medical device systems. You will collaborate with highly skilled and passionate innovators who deliver exceptional results while having fun.

As a Staff Cybersecurity Architect, you will join our Research and Development (R&D) Cybersecurity team to design and review security features for new Dexcom applications.

• Attend design review meetings to identify and document any potential security risks in a new implementation.
• Document any findings and recommendations for formal review.
• Oversee implementation of security‑based controls to mitigate any potential risks identified during a security review.
• Advise development team members on security best‑practices.

• 5+ years’ experience creating security‑based threat models for software applications.
• Experience with a threat‑modeling tool such as Irius Risk and the STRIDE methodology.
• Proven experience working in a mobile app environment (iOS and/or Android).
• Experience with a security‑based risk scoring system (CVSS).
• Knowledge of OWASP top ten vulnerabilities for mobile applications and APIs.
• A solid understanding of symmetric key and public key cryptography and standard security protocols such as TLS and IPsec.
• Development experience with a common scripting or programming language (e.g., Python, Bash, Swift, Objective‑C, or Kotlin).

• Previous mobile application development and RASP technologies experience.
• Knowledge of industry standards as they relate to mobile app security management such as OWASP.
• Exposure to agile development, Dev Ops, Sec Ops, and scrum teams.
• Experience in the medical device industry and HIPAA regulations.

• A front‑row seat to life‑changing CGM technology and our brave #dexcomwarriors community.
• A full and comprehensive benefits program.
• Growth opportunities on a global scale.
• Access to career development through in‑house learning programs and qualified tuition reimbursement.
• An exciting and innovative, industry‑leading organization committed to our employees, customers, and the communities we serve.

• 0‑5%

• Typically requires a Bachelor’s degree in a technical discipline, and a minimum of 13+ years related experience, or a Master’s degree and 8+ years equivalent industry experience, or a PhD and 5+ years of experience.

• Your location will be a home office; you are not required to live within commuting distance of your assigned Dexcom site (typically 75 miles/120 km). If you reside within commuting distance of a Dexcom site, a hybrid working environment may be available. Ask about our Flex workplace option.

$ - $

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status, and will not be discriminated against on the basis of disability. Dexcom’s AAP may be viewed upon request by contacting Talent Acquisition at

If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact Dexcom Talent Acquisition at