DNAnexus is the leading cloud-based SaaS company serving the global life science community. DNAnexus’ health informatics platform serves customers across a spectrum of industries — government, biopharmaceutical, clinical diagnostics, healthcare, and academic research in 33 countries with compliant protection of data, privacy, and intellectual property. The platform provides a secure and collaborative environment where genomics, multi-omics, and real world data can be combined with clinical data at scale, providing new insights that can lead to improved diagnostics, new targeted therapies and better patient care.

The DNAnexus team is made up of experts in computational biology, big data/analytics and cloud computing, who work with world class organizations to tackle some of the most exciting opportunities in human health, making it easier—and in many cases feasible—to work with large-scale genomic and clinical data. With DNAnexus, organizations can stay a step ahead in leveraging genomics to achieve their goals. The future of science and human health is in genomics, multi-omics and data. DNAnexus brings it all together on a single scalable platform.  

Key Highlights:

• Founded in 2009 by leading Stanford genomic scientists, headquartered in Mountain View, CA, 140+ employees.
• Generating significant revenue, global footprint, ramping rapidly; with Enterprise customers including Ancestry, Regeneron, Natera, Johns Hopkins, FDA, Myriad Genetics, St Jude among others.
• FedRAMP Moderate ATO (“Authorized-To-Operate”) platform with current certifications in ISO27001, HITRUST, and Privacy Shield.
• Just signed a 5 year, $20M contract with the FDA to power the precisionFDA collaborative omics environment in the cloud.
• Well funded by Tier-1 investors including Foresite Capital, Google Ventures, Perceptive Advisors, Northpond Ventures and TPG Capital, among others.
• Massive, evolving market opportunity that hasn’t been adequately addressed yet.
• Passionate and proven executive leadership team with deep genomics, big data/analytics, and cloud expertise.   

ROLE AND RESPONSIBILITY

DNAnexus seeks an established Security Engineer to join the Security Team at DNAnexus. This role will join a team to ensure the ongoing security of both the customer facing and internal IT at DNAnexus. 

Key deliverables include:

• Security engineering expertise should include:
• Participate and advise product engineering about design and implementation options to improve security;
• Be able to develop custom tools, if necessary or use existing tools (e.g. Okta SSO provisioning);
• Be capable of performing infrastructure work, such as deploying security patches to security enterprise systems (e.g. JIRA).
• Maintain the Continuous Monitoring program mandated by FedRAMP and HITRUST, including managing the Security Information and Event Management (SIEM), cloud-based monitoring of the systems and network, management of authentication credentials and authorizations, IDP/IDS monitoring, and vulnerability management. 
• Participating in the Incident Management process with regard to Security and Privacy.
• Preparing and participating in the monthly ConMon meetings with the FedRAMP sponsors.
• Performing internally focused phishing exercises, penetration testing, and contributing to the continuous security training. 
• Implement appropriate standards and criteria for hardware, software, network, email and web firewall; access verification and encryption requirements in alignment with NIST and similar standards and frameworks. 
• Collaborate closely with Risk and Compliance to develop and maintain appropriate controls as well as efficiently provide support and key evidence for customer and certification audits.
• Partner with Corporate IT and DevOps to identify and help implement critical upgrades for all On-Prem and cloud-platform systems.  Establish a regular cadence of test and deployment strategies.
• Participate in ongoing and new vendor management and monitoring.

PROFESSIONAL SKILL-SET AND EXPERIENCE

The ideal background includes the following elements: 

• A Masters degree in one of the following degree programs: Cybersecurity, Computer Science/Engineering, Electrical Engineering, Informatics or related academic degrees.
• 7+ years of professional work experience in one or more of these areas: security engineering, Linux kernel programming, systems programming or cloud computing. 2+ years of experience in ethical hacking, penetration testing,  process automation, system design, penetration and software development
• 3+ years of experience in a multi-tenant SaaS or PaaS experience with preferences for AWS and/or Microsoft Azure.
• Advanced knowledge and understanding in various disciplines: threat intelligence, IAM, key management systems, data security, application security, web application and browser security, security protocols, operating system internals and hardening (e.g. Linux, OS X, Windows), network security, vulnerability management and applied cryptographic concepts. Experience with SIEM type skills, such as Splunk, Qualys, Tenable Nessus, QRadar, etc.
• Experience with Amazon AWS and Microsoft Azure is preferred.
• Strong problem-solving skills and excellent troubleshooting experience.
• Strongly preferred to  have a current CISSP certification. Other current certifications such as CISM, CISA, CCSP, CEH, GPEN, GCIH or equivalent will be considered a plus.  
• Strong people and leadership skills to interact with high caliber colleagues, cross-functional teams and customers, including the people at DNAnexus.
• Experience in participating in FedRAMP, FISMA, or HITRUST audits is a plus.
• Experience with day-to-day management of regulated systems in pharmaceutical, financial, or aerospace industries is a plus.

PERSONAL ATTRIBUTES AND VALUES

• An organizational leader that brings both strategic and tactical capabilities.  Able to earn the respect of the team on the basis of crisp execution, technical depth, hands-on style, and strategic decision making ability.
• A self starter that can work independently and collaboratively.
• Takes a data centric, objective approach to decision making and has the ability to put aside personal preferences, historical bias, peer pressure and political influences to arrive at decisions on a reasoned, objectively-defensible basis.
• Strong presence; good communicator and highly influential both externally as well as internally at the executive level and across the organization.
• A highly collaborative, team player with a company-first mentality; ability to influence and get alignment cross-functionally.
• Flexible, nimble, and scrappy; startup mentality and willingness/ability to change direction quickly if best for the business.
• A positive, energetic, can-do attitude. High EQ, hungry to succeed, achievement orientation, self-motivation.  Highly confident, yet humble and self-aware.
• Entrepreneurial DNA; not afraid to take calculated risks, brings a mentality of rapid innovation and the desire to attain big goals.
• Creative problem solving skills as well as the ability to ignite the creativity of others.
• High integrity, principles, and ethics.

Based in San Francisco and Mountain View, California, DNAnexus is experiencing rapid growth and is searching for the best talent to join our team. We recently completed a $100 million financing round to advance our growth globally to further serve leading healthcare and life science organizations. Key investors include Google Ventures, Perceptive Advisors, Northpond Ventures, TPG Biotech, and Foresite Capital.

If you are interested in joining our team, please apply today! 

All your information will be kept confidential according to EEO guidelines.