Principal Engineer, Fraud and Product Security

Principal Engineer, Fraud and Product Security

Job Locations: US-Remote

Our Mission: Our mission is to SAVE AND IMPROVE LIVES BY EMPOWERING HEALTHCARE CONSUMERS. Come be part of something remarkable.

Overview:

How you can make a difference: The Principal Engineer will design and deliver scalable software solutions that power HealthEquity’s fraud and security defenses. You will lead the development of secure, high-performance services – integrating real-time risk scoring, ML inference, and policy enforcement - all while ensuring reliability and performance. You will also guide senior engineers on best practices in secure coding, cloud architecture, and DevSecOps principles.

What you’ll be doing:

1. Technical Solution Delivery: Architect and build microservices and APIs for fraud detection and authentication in Go or Rust, interfacing with event streams and AI/ML engines. Integrate model inference pipelines to provide sub-millisecond risk scores within transaction flows.
2. Secure Development Practices: Conduct in-depth code reviews, enforce input validation and secure dependency management, and embed SAST/DAST scans into CI pipelines. Collaborate on threat models and remediation plans for vulnerabilities.
3. Cloud Infrastructure and Operations: Define and maintain IaC modules (e.g., Terraform/CloudFormation) and Kubernetes manifests; optimize auto-scaling, fault-tolerance, and blue-green deployments. Build dashboards and alerts for service health, latency, error rates, and security incidents.
4. Technical Mentorship: Pair-program and hold design workshops with engineers, sharing patterns for secure gRPC, observability, and resilient architectures. Develop documentation, run brown-bag sessions, and set engineering standards.

What you will need to be successful:

• Bachelor's degree in Computer Science, Software Engineering, Security, or related field.
• 8+ years of software engineering experience, with 3+ years in security/fraud domains.
• Proficiency in Go or Rust, with understanding of concurrent programming and distributed systems.
• Experience designing and operating Kubernetes-based services with CI/CD pipelines.
• Expertise in cryptographic libraries, authentication protocols, and secure coding guidelines.
• Advanced degree (M.S./Ph.D.) in Computer Science, Physics, Mathematics, or related.
• Experience integrating AI/ML models into production services.
• Knowledge of DevSecOps tooling and service meshes (e.g., Istio).
• Cloud certifications (Azure Solutions Architect, AWS Certified Security).
• Proficiency in programming languages including Go, Rust, Java, and Python.
• Experience in container orchestration using Kubernetes and Helm.
• Strong understanding of security protocols such as JWT/OAuth2, TLS, and Vault.
• Experience with CI/CD pipelines using GitHub Actions, Azure DevOps, and Jenkins.
• Expertise in logging and metrics tools, including ELK, Prometheus, and Grafana.

#LI-Remote

This is a remote position.

Salary Range: $127,000 - $180,000 per year

Benefits and Perks:

• Medical, dental, and vision insurance
• HSA contribution and match
• Dependent care FSA match
• Uncapped paid time off
• Paid parental leave
• 401(k) match
• Financial literacy programs
• Ongoing education and tuition assistance
• Gym and fitness reimbursement
• Wellness program incentives

Why work with HealthEquity: HealthEquity aims to make HSAs accessible and beneficial for all by 2030. For full info, follow the application link.

GatedTalent consolidates jobs from various sources. Users of Talentis and FileFinder CRMs can publish jobs via links from their core business apps. Additional jobs are added by our researchers and third-party aggregators. Note that GatedTalent staff are not involved in recruiting.