Hinge Health - Lead Security Engineer
Upload My Resume
Drop here or click to browse · Tap to choose · PDF, DOCX, DOC, RTF, TXT
Requirements
• A Security-First Thinker: You instinctively design systems that are secure by default, and you know how to balance security rigor with engineering velocity. • A Security-First Thinker • An AI-Savvy Engineer: You're energized (not intimidated) by the rapid adoption of AI-assisted development and see it as an opportunity to build novel security frameworks. • An AI-Savvy Engineer • A Trust Builder: You communicate effectively across engineering, compliance, and leadership teams — authoring clear, plain-spoken technical proposals that drive alignment. • A Trust Builder • A Learn-it-all: You stay ahead of emerging threats and continuously evolve your approach — from adversarial ML to supply chain attacks on AI pipelines. • A Learn-it-all • A Leader at All Levels: You're hands-on in code and architecture, but you also mentor others and help the team self-organize around measurable outcomes. • A Leader at All Levels • Bachelor's degree in a technical, engineering, or scientific field — or comparable education/experience • 7+ years in cybersecurity, with 3+ years focused on security operations or IAM • 5+ years of experience in cloud security operations, specifically AWS • 3+ years of coding experience (e.g., Python, Go, or TypeScript) with hands-on experience developing Terraform and infrastructure-as-code • Hands-on experience securing AI/ML systems, including data pipelines, model deployments, API integrations, and their security challenges • AWS Solutions Architect or Security Specialty certification • AI/ML security certifications or familiarity with adversarial machine learning threats and mitigation strategies • Experience building or integrating security controls into CI/CD pipelines and AI-assisted development workflows • Experience managing an Enterprise IdP, especially Okta, with deep understanding of OAuth 2.0 and SAML • SOC 2, PCI, or HIPAA audit/training certifications • Knowledge of low-level networking principles • What You'll Accomplish
Responsibilities
• Audit current cloud security posture and IAM architecture across our AWS environment; build relationships with key stakeholders in Application Security, SRE, and R&D Engineering. • Assess existing AI-assisted development tooling (Claude Code, Cursor, MCP gateway) for security risks and begin developing a governance framework. • Design and implement AI-driven tools and workflows to enhance security monitoring, threat detection, incident response, and IAM governance. • Develop and enforce policies and protocols to protect AI tools and platforms from misuse, data breaches, and external threats — including secure agent sandboxing and MCP server governance. • Deliver IAM solutions enabling secure, granular access controls that enforce least privilege principles, utilizing automation and AI for privilege escalation and approvals. • In your first year: • In your first year: • Own the security strategy for AI-enabled development and cloud infrastructure, acting as the primary subject matter expert for security engineering across the organization. • Ensure all compliance regulations — including HIPAA, privacy, and relevant security frameworks — are met for new services, AI tooling, and infrastructure. • Develop and drive cybersecurity initiatives related to incident response, threat intelligence, vulnerability management, and monitoring tools. • Mentor team members in adopting new security tools and processes; educate the broader organization through knowledge-sharing sessions and author clear technical proposals with measurable security OKRs. • At Hinge Health, we're using technology to scale and automate the delivery of healthcare – starting with musculoskeletal (MSK) conditions, which affect over 1.7 billion people worldwide. With an AI-powered human-centered care model, Hinge Health leverages cutting-edge technology to improve outcomes, experiences and costs to help people move beyond their pain. The platform addresses a broad spectrum of MSK care – from acute injury, to chronic pain, to post-surgical rehabilitation – through personalized, evidence-based care. As the preferred partner to 50+ health plans, PBMs and other ecosystem partners, Hinge Health is available to over 20 million people across more than 2,550 employers. The company is headquartered in San Francisco with additional offices in Montreal and Bangalore. • Learn more at hingehealth.com
Benefits
• 250K midpoint $239K – $263K • Offers Equity • This position will have an annual salary, plus equity and benefits. Please note the annual salary range is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, and competencies. • Planning for the future: Start saving for the future with our traditional or Roth 401k retirement plan options which include a 2% company match. • Planning for the future • Modern life stipends: Manage your own learning and development. • Modern life stipends • Culture & Engagement
No credit card. Takes 10 seconds.