Job Description
Dexcom, a global leader in continuous glucose monitoring (CGM) systems, is seeking a talented Senior Cybersecurity Engineer to join our dynamic IT Information Security team in Batu Kawan, Penang. In this critical role, you will partner with teams across Malaysia, the United States, and Ireland to assess, improve, and strengthen our existing Operational Technology (OT) security posture. You will help safeguard Dexcom's manufacturing, supply chain, and industrial control environments from evolving cyber threats, ensuring the reliability and integrity of life-saving medical devices.
As a Senior Cybersecurity Engineer, you will drive security initiatives, conduct risk assessments, design secure architectures, and implement robust controls for OT systems. You will collaborate cross-functionally with engineering, operations, and compliance teams to embed security into every layer of our OT infrastructure. This is a unique opportunity to make a tangible impact on global healthcare by protecting the technology that powers Dexcom’s innovation.
We are looking for a proactive leader with deep expertise in OT/ICS security, a passion for continuous learning, and the ability to communicate complex security concepts to diverse stakeholders. If you are ready to take on challenging projects in a fast-paced, mission-driven environment, we encourage you to apply.
Responsibilities
- Assess and enhance the security posture of Dexcom's Operational Technology (OT) and Industrial Control Systems (ICS) environments across multiple global sites.
- Partner with IT, engineering, and manufacturing teams in Malaysia, the US, and Ireland to identify, prioritize, and remediate OT security gaps.
- Develop and implement OT security policies, standards, and procedures aligned with industry frameworks (NIST CSF, ISA/IEC 62443).
- Conduct regular vulnerability assessments, penetration testing, and risk analyses on OT networks and devices.
- Design and deploy security controls such as network segmentation, endpoint protection, firewalls, and intrusion detection/prevention systems for OT environments.
- Lead incident response activities for OT security events, including forensic analysis and root cause investigation.
- Provide security guidance and training to operational teams to promote a culture of security awareness.
- Stay current with emerging OT threats, vulnerabilities, and mitigation techniques, and recommend proactive improvements.
Qualifications
- Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field. Master’s degree preferred.
- Minimum 5 years of experience in cybersecurity, with at least 3 years focused on OT/ICS security in a manufacturing or industrial environment.
- Professional certifications such as CISSP, CISM, GICSP, or ISA/IEC 62443 Cybersecurity Expert are highly desirable.
- Deep understanding of OT protocols (Modbus, Profibus, DNP3, OPC, etc.) and industrial network architectures.
- Proven experience with risk assessment methodologies, security frameworks (NIST, ISO 27001, ISA 99), and regulatory compliance (e.g., FDA, GDPR).
- Strong analytical and problem-solving skills with the ability to troubleshoot complex security issues in real-time production environments.
- Excellent verbal and written communication skills in English; ability to collaborate effectively across global, multicultural teams.
- Demonstrated ability to manage multiple projects, prioritize tasks, and deliver results under tight deadlines.