Company Description

Founded in 2009, DNAnexus is the enterprise orchestration platform for precision health. A pioneer in cloud-based omics and purpose-built bioinformatics for life sciences, DNAnexus helps customers contextualize, orchestrate, and federate multiomic and real-world data to derive actionable insights and accelerate the journey from sequence to scientific breakthrough. DNAnexus accomplishes this through its compliance-first, AI-enabled platform, equipped to handle extreme scale and complex data processing for genomics, multiomics, and beyond. For more information, visit www.dnanexus.com.

Job Description

Our customers depend on the secure and reliable operation of the DNAnexus platform to run their business. From clinical research to large-scale multi-omics computation, our platform is essential to tackle some of the most exciting opportunities in human health. With DNAnexus, organizations can stay a step ahead in leveraging genomics to achieve their goals. DNAnexus brings it all together on a single scalable platform.

Key Company Highlights

• Founded in 2009 by leading Stanford genomic scientists, headquartered in Mountain View, CA, 280+ employees.
• Generating significant revenue, global footprint, ramping rapidly; with Enterprise customers including Regeneron, Natera, FDA, Myriad Genetics, St Jude among others.
• FedRAMP Moderate ATO (“Authorized-To-Operate”) platform with current certifications in ISO27001.
• Well funded by Tier-1 investors including Blackstone, Google Ventures, Northpond Ventures and TPG Capital, among others.
• Massive, evolving multi-omics market opportunity that hasn’t been adequately addressed yet.
• Passionate and proven executive leadership team with deep genomics, big data/analytics, and cloud expertise.

The role

As a key part of the Security and Technology team at DNAnexus, the Lead, Security Detection & Response will drive the maturity of our Detection & Response program, leveraging internal and partner resources to cohesively identify, address, and stay ahead of the threats faced by companies like DNAnexus. Your day will include a mix of setting the vision for the Detection & Response Program, execution of that vision, and collaboration with the Security, Engineering, Technology, and Business teams that must play a role in securing DNAnexus systems and customer data.

The problems you will solve:

• Execute the daily operations of the CyberSecurity Detection & Response function through leveraging an external Managed Security Services Provider (MSSP) and internal IT & Security engineering resources.
• Leverage the data collected as part of the Detection & Response program to identify and prioritize control gaps, process gaps, and training gaps in our Cyber Security posture.
• Through collaboration with IT, Security, and Product engineering teams, you’ll see those gaps closed and incident reoccurrence rates reduced.
• You’ll work with internal and external partners to monitor cybersecurity threats and integrate the intelligence into our Detection & Response program
• You will leverage the trends you identify, and intelligence collected about the applicable threat space to influence our security roadmaps.
• Your leadership will raise the maturity level of our cybersecurity operational functions in the response, intelligence, detection engineering, and offensive security domains.
• You’ll run training programs to properly equip embedded responders within business and technical teams to quickly and effectively respond to security incidents.
• To meet the objectives of scale and speed, you’ll aggressively introduce automation to eliminate manual processes within the Detection & Response function.
• Mentor incident response team members to continuously mature and refine our capabilities.

Qualifications

• Prior experience handling cyber security incidents, preferably at multiple companies and working with Managed Security Service Providers (MSSP).
• You are confident and familiar working investigations (without assistance) in a modern SIEM such as Splunk, Sumologic, or DataDog.
• You take a hands-on approach to technology: you dig in to understand and mold the technology to your needs. While software development is not a primary function of this role, familiarity with a coding language such as python, javascript, rust, or go will be beneficial.
• You have a proven track record of successful collaboration with internal and external partner organizations to deliver high-quality outcomes.
• You have worked with and understand SaaS platforms and how to appropriately defend SaaS platforms from cyber attacks.
• Close familiarity with using public cloud services to provision SaaS/PaaS to external customers
• Strong understanding of modern corporate networks (SD-Wan, service-based remote access, device trust, and endpoint machine identity).
• Experience investigating and countering modern adversary tactics, techniques, and procedures in an incident response setting.
• 5+ years of work experience in security engineering, incident response, threat intelligence, or cloud infrastructure security.

Personal Attributes and Values:

• You personally enjoy contributing to the security community and driving our industry to do better.
• A self starter that can work independently and collaboratively across multiple workstreams without technical program management support.
• Able to earn the respect of the team on the basis of crisp execution, technical depth, hands-on style, and strategic decision making ability.
• Takes a data centric, objective approach to decision making and has the ability to put aside personal preferences, historical bias, peer pressure and political influences to arrive at decisions on a reasoned, objectively-defensible basis.
• Strong presence; good communicator and highly influential both externally as well as internally at the executive level and across the organization.
• A highly collaborative, team player with a company-first mentality; ability to influence, prioritize, and get alignment cross-functionally.
• Flexible, nimble, and scrappy; startup mentality and willingness/ability to change direction quickly if best for the business.
• A positive, energetic, can-do attitude. High EQ, hungry to succeed, achievement orientation, self-motivation. Highly confident, yet humble and self-aware.
• Entrepreneurial DNA; not afraid to take calculated risks, brings a mentality of rapid innovation and the desire to attain big goals.
• Creative problem solving skills as well as the ability to ignite the creativity of others.
• High integrity, principles, and ethics.

Salary and Other Compensation:

The annual base salary for this position is $170,000- $190,000 with a 10% annual bonus component. Factors which may affect starting pay within this range may include geography/market, skills, education, experience and other qualifications of the successful candidate.

Benefits:

The Company offers the following benefits for this position, subject to applicable eligibility requirements: medical insurance, dental insurance, vision insurance, 401(k) retirement plan, life insurance, long-term disability insurance, short-term disability insurance, flexible paid time off, 12 weeks of paid parental leave, and national holidays paid.

Additional Information

Headquartered in Mountain View, California, with over 220 team members across the United States and Europe, DNAnexus is experiencing rapid growth and market adoption. With the support of leading investors including Google Ventures and Blackstone, and trusted by hundreds of the world's biomedical leaders, the company is at the innovative forefront with our precision health data cloud to drive scientific breakthroughs. If you are interested in joining our team, please apply today!