Lead Security Operations Engineer

Hinge Health is moving people beyond pain by transforming the way it is treated and prevented. Connecting people digitally and in-person with expert clinical care, we combine advanced technology, AI and a care team of experts to guide people through personalized care directly from their phone. Our approach is proven to reduce pain by 68%, prevent 42% of new opioid prescriptions, and avoid more than half of joint replacement surgeries. Available to 18M people, Hinge Health is trusted by leading health plans and employers, including Land O’Lakes, L.L. Bean, Salesforce, Self-Insured Schools of California, Southern Company, State of New Jersey, US Foods, and Verizon.
Learn more at http://www.hingehealth.com
Here at Hinge Health, we welcome all applicants and know a diverse team makes us better and stronger. We look for individuals who embody our leadership principles and we value varied experiences and skill sets. Beyond specific work experience, we also look for unique capabilities and skill sets that are key indicators an applicant will thrive in our fast-paced, frequently evolving environment. If this sounds like the kind of place you’d like to be part of, please apply - we would love to hear from you!l
Hinge Health Hybrid Model:We believe that remote work and in-person work have their own advantages and disadvantages, and we want to be able to leverage the best of both worlds. Employees in hybrid roles are required to be in the office 3 days/week.
About the RoleWe are searching for an exceptional AWS Lead Security Engineer with a laser focus on Cyber Defense and  Identity and Access Management (IAM), to drive innovation and fortify HInge Health’s digital assets against potential threats. This is an opportunity to make a real impact on the lives of millions revolutionizing the healthcare industry, ensuring utmost security, compliance and privacy. 
As an AWS Lead Security Engineer, you will be at the forefront of architecting and implementing secure, scalable, and cutting-edge solutions on AWS. You will secure Hinge Health’s digital assets against potential threats while maintaining seamless accessibility for authorized users. You will explore new technologies and ensure they meet the highest security standards. With your wealth of AWS expertise and healthcare compliance knowledge, you will lead the implementation of top-notch cyber defense best practices to shape the future of a secure and scalable AWS environment. The ideal candidate should be passionate about security and eager to drive change, embrace challenges, and take healthcare security to new heights. 
The ideal candidate is a highly motivated individual with strong experience securing cloud infrastructures from the ground up. Eager to drive change and embrace challenges, He/She/has been a key partner in maintaining awareness of new security and threat mitigation trends. He/She/They has served as security champion to a broad audience regarding the architecture, availability, resiliency, and access security concerns. We are looking for an individual with a solid Cloud Security technical background who can also shape the future of the security operations program at Hinge Health.

WHAT YOU’LL ACCOMPLISH

• Security by design - Employ your deep understanding in AWS service and security best practices to design and implement security by design principles to ensure secure development . Stay abreast of industry trends and changing threat landscape and review technologies and services and make recommendations to continuously improve our capabilities
• Provide solutions to complex security problems with new services -  Design and deliver security solutions for new services by evaluating potential risks, stakeholder needs, and available tooling as well as custom solutions. 
• Security, Compliance and Regulations.  Meet all compliance regulations including HIPAA, privacy and other relevant security frameworks. Ensure that new services introduced into our environment adhere to all relevant compliance obligations.  Take a proactive approach to mitigate potential risks 
• Cyber Security Operations - Develop and drive cybersecurity initiatives related to incident response, threat intelligence, vulnerability management, monitoring and reporting tools – to continuously improve and expand capabilities
• Identity and Access Management - Design and implement IAM solutions - enabling secure and granular access controls for users and applications, enforcing least privilege principles, and utilizing automation for privilege escalation, approvals, and overall developer experience. 
• Security Governance, Auditing and Assessment - Collaborate with internal and external auditors to ensure continuous compliance with security standards. Implement security and IAM governance processes that align with our enterprise security policies.  Enhance the security knowledge of engineers, empowering them to contribute to a secure cloud environment.

BASIC QUALIFICATIONS

• Proven track record as a Cloud expert, especially within AWS environments. 
• Innovative Mindset - Stay ahead of the curve by researching, testing  and recommending  new security tools and practices that align with the latest AWS advancements.
• Security Champion- Define and enforce security best practices for adoption of new AWS services.  Work closely with our engineering teams to provide guidance and ensure that services are configured security from the outset. 
• Business enablement - Drive the development of automated security assessment processes to efficiently evaluate new services. Endure scalability, enabling seamless onboarding of new services as we grow. 
• Collaborative Leadership - Work with cross-functional teams, to create a united front in our mission to secure and innovate our AWS platform. 
• Technical Leadership - The ability to own technical security solutions from inception through implementation and delivery, taking ownership of initiatives and mentoring team members on new solutions.

PREFERRED QUALIFICATIONS

• AWS Certifications
• SOC, PCI, HIPAA training certifications
• Knowledge of low-level networking principles
• Experience managing an Enterprise IDP, especially Okta
• Deep, low-level understanding of OAUTH2 and SAML

WHAT YOU'LL LOVE ABOUT US

• Inclusive healthcare and benefits: On top of comprehensive medical, dental, and vision coverage, we offer employees and their family members help with gender-affirming care, tools for family and fertility planning, and travel reimbursements if healthcare isn’t available where you live.
• Planning for the future: Start saving for the future with our traditional or Roth 401k retirement plan options which include a 2% company match.
• Modern life stipends: Manage your own learning and development

About Hinge Health:LinkedIn recently named Hinge Health one of the Top 50 Startups. Forbes, Fast Company, and Inc. have also recognized our technology, innovation, and culture.
Since our founding in 2014, we've raised more than $800 million from leading investors, including Coatue and Tiger Global. We work with 1000 customers across every industry and the public sector — including Salesforce, Verizon, and the State of New Jersey — to give more than 23 million people access to the care they need. We’re positioned to continue leading the market with unmatched investments in clinical research, care innovation, machine learning, AI, and computer vision.
Diversity and Inclusion:We’re committed to building diverse teams that reflect the communities we serve. Visit hingehealth.com/diversity-equity-and-inclusion to learn more about what moves us. 
Hinge Health is an equal opportunity employer and prohibits discrimination and harassment of any kind. We make employment decisions without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, pregnancy, or any other basis protected by federal, state or local law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.
We provide reasonable accommodations for candidates with disabilities. If you feel you need assistance or an accommodation due to a disability, let us know by reaching out to your recruiter.
By providing your information through this page or applying for a job at Hinge Health, you acknowledge that Hinge Health will collect, use, and process your information as part of our job application process. For more information on how Hinge Health processes your personal information, click here to view our Applicant and Personnel Privacy Notice.
Disclaimer:There continues to be a significant increase in phishing attempts across all industries where fraudsters are impersonating real employees and sending fictitious job offers to applicants in a scheme to obtain sensitive information. Please note that we will never ask for your financial information at any part of the interview process including the post-offer stage, and will only correspond through @hingehealth.com domain email addresses.
If you encounter any suspicious activity, we recommend you cease all communication with the individual and consider reporting them to the U.S. FBI Internet Crime Complaint Center. If you would like to verify the legitimacy of an email you received from our recruiting team, please forward it to security@hingehealth.com
*Please do not send resumes via email*