Security Engineering Manager

Company Description

DNAnexus is a leading provider of secure, scalable, and intuitive biomedical data analysis software and bioinformatics applications for the life sciences and healthcare communities. The company actively manages and supports more than 80 petabytes of complex genomic, multi-omic, and clinical datasets on behalf of a growing network of collaborations with large-scale biobanks, as well as leading pharmaceutical, clinical diagnostic, academic research, and government organizations. Over 40,000 scientists across 48 countries are now using the highly collaborative, cloud-based, end-to-end platform to gain data-driven insights that can advance scientific discovery, accelerate precision medicine, and improve patient care.

The Security Mission

Our customers depend on the secure and reliable operation of the DNAnexus platform to run their business.  From clinical research to large-scale multi-omics computation, our platform is essential to tackle some of the most exciting opportunities in human health.  With DNAnexus, organizations can stay a step ahead in leveraging genomics to achieve their goals.  DNAnexus brings it all together on a single secure, resilient, and  scalable platform.

Job Description

As the leader of our Security Engineering function, you will be the champion, driver, and advocate for the inclusion of technical security controls in the platform, systems, and infrastructure that supports the DNAnexus Platform.  By leveraging both open source and cloud-provider managed services, your team will mature our existing control set in a FedRAMP Moderate and GxP compliant environment.

Through close collaboration with colleagues in our engineering and product management functions, you’ll  design, recommend, and implement security controls that operate at the edge, cloud fabric, and workload container level.  Through close relationships, you’ll see first hand how our product managers and engineers solve challenges of scale and usability to help our clients deliver life-changing health solutions.

Using a risk-based approach, you will maintain the inventory of technology risks potentially impacting the DNAnexus Platform.  Through collaborative and transparent reporting, you’ll drive accountability for risk-reduction actions in alignment with our product roadmap.

The problems you will solve:

• You’ll be an integral part of launching secure and resilient products by merging security into product design and operations.
• By leading security architecture & strategy, you will influence prioritization decisions on the types and maturity of security capabilities to best scale security controls to satisfy current and future threats our platform and customers will face.
• Your team members and colleagues will rely on your guidance, experience, and leadership to develop their own talents; your team will also be active in the Cyber & Information Security professional community.
• By working closely with Product Management and Business Stakeholders, you’ll provide guidance and transparent reporting on the state of platform risk and risk-reduction targets agreed by company leadership
• You’ll lead the team of security trusted advisors - a critical group that keeps our business moving quickly in the face of security challenges large and small.

Qualifications

The experience you will bring:

• You’ve worked with cloud-native infrastructure & security contexts in the past.  At a minimum, this includes experience with AWS.  We’re also interested in your Azure and Oracle Cloud experience;  you’ll have opportunities to continue developing those skills with us.
• You understand and can navigate the nuances of engaging both technical (engineering) and non-technical (product management) stakeholder groups on the impact and benefit of security controls.
• A firm understanding of software development (SDLC) & continuous integration/continuous deployment approaches - you understand how code becomes a product offering.
• You’ve conducted risk-based threat assessment, risk-prioritization of an engineering backlog, and can help stakeholders understand the key security concerns in their systems.
• You enjoy fostering the success of other security professionals through challenging their curiosity and balancing their paranoia.

Personal Attributes and Values:

• You’re able to work through challenges and setbacks, particularly as you encounter unexpected complexity in your team’s work.
• Complex problems intrigue you and you leverage creative problem solving skills as well as the ability to ignite the creativity of others to solve these problems.
• A highly collaborative, team player with a company-first mentality; ability to influence, prioritize, and get alignment cross-functionally.
• Entrepreneurial DNA; not afraid to take calculated risks, brings a mentality of rapid innovation and the desire to attain big goals.
• Takes a data centric, objective approach to decision making and has the ability to put aside personal preferences, historical bias, peer pressure and political influences to arrive at decisions on a reasoned, objectively-defensible basis.

Additional Information

Headquartered in Mountain View, California, with over 220 team members across the United States and Europe, DNAnexus is experiencing rapid growth and market adoption. With the support of leading investors including Google Ventures and Blackstone, and trusted by hundreds of the world's biomedical leaders,  the company is at the innovative forefront with our precision health data cloud to drive scientific breakthroughs.   If you are interested in joining our team, please apply today!

DNAnexus will provide the necessary support to enable the ideal candidate to work remotely within the Czech Republic.