Lead Security Operations Engineer

Hinge Health is moving people beyond pain by transforming the way it is treated and prevented. Connecting people digitally and in-person with expert clinical care, we combine advanced technology, AI and a care team of experts to guide people through personalized care directly from their phone.

Our approach is proven to reduce pain by 68%, prevent 42% of new opioid prescriptions, and avoid more than half of joint replacement surgeries.

Available to 18M people, Hinge Health is trusted by leading health plans and employers, including Land O’Lakes, Bean, Salesforce, Self-Insured Schools of California, Southern Company, State of New Jersey, US Foods, and Verizon.

Learn more at Here at Hinge Health, we welcome all applicants and know a diverse team makes us better and stronger. We look for individuals who embody our leadership principles and we value varied experiences and skill sets.

Beyond specific work experience, we also look for unique capabilities and skill sets that are key indicators an applicant will thrive in our fast-paced, frequently evolving environment.

If this sounds like the kind of place you’d like to be part of, please apply - we would love to hear from you!l Hinge Health Hybrid Model : We believe that remote work and in-person work have their own advantages and disadvantages, and we want to be able to leverage the best of both worlds.

Employees in hybrid roles are required to be in the office 3 days / week. About the Role We are searching for an exceptional Lead Security Operations Engineer with a laser focus on Identity and Access Management (IAM) and Security, to drive innovation and fortify Hinge Health’s digital assets against potential threats.

This is an opportunity to make a real impact on the lives of millions revolutionizing the healthcare industry, ensuring utmost security, compliance and privacy.

As a Lead Security Engineer you will be at the forefront of architecting and implementing secure, scalable and cutting-edge solutions on AWS.

Your role will be responsible for securing Hinge Health’s digital assets against potential threats while still maintaining seamless accessibility for authorized users.

You love the thrill of exploring new technologies and ensuring they meet the highest security standards. Your wealth of AWS expertise, healthcare compliance and agile methodologies, will lead the implementation of top-notch IAM and security best practices to shape the future of a secure and scalable AWS environment.

The ideal candidate should be passionate about security and eager to drive change, embrace challenges and take healthcare security to new heights.

WHAT YOU’LL ACCOMPLISH

Security by design - Employ your deep understanding in AWS service and security best practices to design and implement security by design principles to ensure secure development .

Stay abreast of industry trends and changing threat landscape and review technologies and services and make recommendations to continuously improve our capabilities

• Provide solutions to complex security problems with new services - Design and deliver security solutions for new services by evaluating potential risks, stakeholder needs, and available tooling as well as custom solutions.
• Security, Compliance and Regulations. Meet all compliance regulations including HIPAA, privacy and other relevant security frameworks.

Ensure that new services introduced into our environment adhere to all relevant compliance obligations. Take a proactive approach to mitigate potential risks

• Cyber Security Operations - Develop and drive cybersecurity initiatives related to incident response, threat intelligence, vulnerability management, monitoring and reporting tools to continuously improve and expand capabilities
• Identity and Access Management - Design and implement IAM solutions - enabling secure and granular access controls for users and applications, enforcing least privilege principles, and utilizing automation for privilege escalation, approvals, and overall developer experience.
• Security Governance, Auditing and Assessment - Collaborate with internal and external auditors to ensure continuous compliance with security standards.

Implement security and IAM governance processes that align with our enterprise security policies. Enhance the security knowledge of engineers, empowering them to contribute to a secure cloud environment.

BASIC QUALIFICATIONS

• Bachelor’s degree in technical / engineering / scientific area or comparable education / experience
• 7+ years of cloud experience
• 5+ years of experience in cloud security operations, specifically AWS.
• Expert knowledge of enterprise IT infrastructure technology, systems, vulnerability and incident management processes
• Experience developing Terraform and updating existing infrastructure as code to conform with security standards.
• Excellent communication skills, including the ability to convey complex security related concepts to technical and non-technical audiences alike.

PREFERRED QUALIFICATIONS

• AWS Certifications
• SOC, PCI, HIPAA training certifications
• Knowledge of low-level networking principles
• Experience managing an Enterprise IDP, especially Okta
• Deep, low-level understanding of OAUTH2 and SAML

WHAT YOU'LL LOVE ABOUT US

• Inclusive healthcare and benefits : On top of comprehensive medical, dental, and vision coverage, we offer employees and their family members help with gender-affirming care, tools for family and fertility planning, and travel reimbursements if healthcare isn’t available where you live.
• Planning for the future : Start saving for the future with our traditional or Roth 401k retirement plan options which include a 2% company match.
• Modern life stipends : Manage your own learning and development

$220,000 - $330,000 a yearConsider the range above plus equity, and benefits. Please note that the base salary range is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies and work location.