Lead Security Engineer

About the Role

We are searching for an exceptional Lead Security Engineer with a laser focus on Cyber Defense and Identity and Access Management (IAM), to drive innovation and fortify Hinge Health’s digital assets against potential threats. This is an opportunity to make a real impact on the lives of millions revolutionizing the healthcare industry, ensuring utmost security, compliance and privacy.

As an Lead Security Engineer, you will be at the forefront of architecting and implementing secure, scalable, and cutting-edge solutions on AWS. You will secure Hinge Health’s digital assets against potential threats while maintaining seamless accessibility for authorized users. You will explore new technologies and ensure they meet the highest security standards. With your wealth of AWS expertise and healthcare compliance knowledge, you will lead the implementation of top-notch cyber defense best practices to shape the future of a secure and scalable AWS environment. The ideal candidate should be passionate about security and eager to drive change, embrace challenges, and take healthcare security to new heights.

What You'll Accomplish

• Security by design-Employ your deep understanding in AWS service and security best practices to design and implement security by design principles to ensure secure development . Stay abreast of industry trends and changing threat landscape and review technologies and services and make recommendations to continuously improve our capabilities

• Provide solutions to complex security problems with new services- Design and deliver security solutions for new services by evaluating potential risks, stakeholder needs, and available tooling as well as custom solutions.

• Security, Compliance and Regulations- Meet all compliance regulations including HIPAA, privacy and other relevant security frameworks. Ensure that new services introduced into our environment adhere to all relevant compliance obligations. Take a proactive approach to mitigate potential risks
• Cyber Security Operations- Develop and drive cybersecurity initiatives related to incident response, threat intelligence, vulnerability management, monitoring and reporting tools – to continuously improve and expand capabilities
• Identity and Access Management- Design and implement IAM solutions - enabling secure and granular access controls for users and applications, enforcing least privilege principles, and utilizing automation for privilege escalation, approvals, and overall developer experience.
• Security Governance, Auditing and Assessment - Collaborate with internal and external auditors to ensure continuous compliance with security standards. Implement security and IAM governance processes that align with our enterprise security policies. Enhance the security knowledge of engineers, empowering them to contribute to a secure cloud environment.

Hinge Health Hybrid Model

We believe that remote work and in-person work have their own advantages and disadvantages, and we want to be able to leverage the best of both worlds. Employees in hybrid roles are required to be in the office 3 days per week, for the full 8 hours of a typical business day. The San Francisco office has a dog-friendly workplace program.

Basic Qualifications

• Bachelor’s Degree (or equivalent) in Computer Science, Engineering or STEM related field

• 7+ years in cybersecurity, with 3+ years focused on security operations or IAM.

• 5+ years of experience in cloud security operations, specifically AWS

• 3+ years of coding experience

• Expert knowledge of enterprise IT infrastructure technology, systems, vulnerability and incident management processes

• Experience developing Terraform and updating existing infrastructure as code to conform with security standards

Preferred Qualifications

• AWS Solutions Architect Certification

• AI/ML certifications are a plus

• Familiarity with adversarial machine learning threats and mitigation strategies

• SOC, PCI, HIPAA training certifications

• Knowledge of low-level networking principles

• Deep, low-level understanding of OAUTH2 and SAML

Compensation

This position will have an annual salary, plus equity and benefits. Please note the annual salary range is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location. The annual salary range for this position is $192,000 - $288,000.

About Hinge Health

Hinge Health leverages software, including AI, to largely automate care for joint and muscle health, delivering an outstanding member experience, improved member outcomes, and cost reductions for its clients. The company has designed its platform to address a broad spectrum of MSK care—from acute injury, to chronic pain, to post-surgical rehabilitation—and the platform can help to ease members’ pain, improve their function, and reduce their need for surgeries, all while driving health equity by allowing members to engage in their exercise therapy sessions from anywhere. The company is headquartered in San Francisco, California.

Learn more athttp://www.hingehealth.com

What You'll Love About Us

• Inclusive healthcare and benefits: On top of comprehensive medical, dental, and vision coverage, we offer employees and their family members help with gender-affirming care, tools for family and fertility planning, and travel reimbursements if healthcare isn’t available where you live.

• Planning for the future: Start saving for the future with our traditional or Roth 401k retirement plan options which include a 2% company match.

• Modern life stipends: Manage your own learning and development

Diversity and Inclusion

Hinge Health is an equal opportunity employer and prohibits discrimination and harassment of any kind. We make employment decisions without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, pregnancy, or any other basis protected by federal, state or local law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. We provide reasonable accommodations for candidates with disabilities. If you feel you need assistance or an accommodation due to a disability, let us know by reaching out to your recruiter.

By submitting your application you are acknowledging we are using your personal data as outlined in thepersonnel and candidate privacy policy.