Sr. Cybersecurity Engineer (Application and AI Security)

Manila City, Metro Manila
Permanent
Full-time

2 months ago

Meet the team:The Dexcom Enterprise Information Security team is hiring a Sr. Cybersecurity Engineer – Application and AI Security to act as the technical expert in both Application and AI security. This role includes leading initiatives, working closely with other teams to protect IT applications, and helping automate and implement security measures throughout the software development lifecycle (SDLC). The engineer will also deploy tools and controls to strengthen application security.Reporting to the APAC IT team, with a dotted line of oversight from the Enterprise Product Security team, this position serves as a strategic representative for InfoSec among global application, infrastructure, and compliance teams. As Dexcom's Information Security program expands, this job offers excellent opportunities for professional growth.Where you come in:

You will perform security reviews on cloud workloads and applications; document findings and collaborate with service owners for remediation.
You will use tools like CSPM, AISPM, SCA, SAST, and DAST to identify and prioritize risks; assist in correlating findings from platforms such as Wiz, Apiiro, Snyk, and Qualys.
You are to represent InfoSec in application/system design reviews and code reviews.
You will manage AppSec technology and integrate and automate security testing tools into the SDLC.
Integrate and automate SAST, SCA, and DAST technology into the SDLC.
You will assist in implementing defenses for AI-related risks such as prompt injection, data poisoning, and sensitive information leakage in AI-driven applications.
You will support safe adoption of GenAI services by following InfoSec guidelines and industry best practices; contribute to developing guardrails for AI model usage.
You will participate in evaluating new security technologies and assist in proof-of-concept implementations.
You must collaborate in technical discussions, providing input to ensure designs meet baseline security controls.
You will provide consulting and influence other teams to mature application security.

What makes you successful:

You possess a BS in Cybersecurity, Computer Science/Engineering, Information Technology, or equivalent experience.
Your 3+ years of experience in cybersecurity, DevOps, or IT; 2+ years hands-on securing public cloud environments.
Your Strong understanding of AppSec technology such as OWASP, IAM, OAuth, API Gateways, secrets management, WAF, SAST, DAST, open-source security tools, code reviews, etc.
Your strong understanding of security controls and compliance of SaaS platforms.
Your proficiency in development technology such as CI/CD, GitHub, microservices, APIs, REST, etc.
You understand web app technologies such as HTML, PHP, Java, and/or Drupal.
Your ability to work within an Agile/Scrum framework and to manage work in Jira.
Your Proficiency in communicating technical concepts both verbally and in written documentation.
You Demonstrate success influencing peers/partners without direct authority.
Your scripting/automation experience (Python or Go) and understanding of Windows, Linux, containers/Kubernetes.
Your Interest or exposure to AI security concepts (e.g., prompt hardening, model/data protection, secure API.

What you’ll get:

A front row seat to life changing CGM technology. Learn about our brave #dexcomwarriors community.
A full and comprehensive benefits program.
Growth opportunities on a global scale.
Access to career development through in-house learning programs and/or qualified tuition reimbursement.
An exciting and innovative, industry-leading organization committed to our employees, customers, and the communities we serve.

Travel Required:

0-5%

Experience and Education Requirements:

Typically requires a Bachelor’s degree in a technical discipline, and a minimum of 5-8 years related experience or Master’s degree and 2-5 years equivalent industry experience or a PhD and 0-2 years experience.

#LI-Hybrid

Dexcom

Apply Now