Lead Security Enginee
About Hinge Health
At Hinge Health, we're on a mission to help millions move beyond musculoskeletal (MSK) pain. We leverage an AI-powered, human-centered care model, integrating cutting-edge technology to improve outcomes, experiences, and costs. Our platform addresses the full spectrum of MSK care – from acute injury to chronic pain and post-surgical rehabilitation – delivering personalized, evidence-based solutions. As the preferred partner to over 50 health plans and available to more than 20 million people across 2,550+ employers, we are leaders in digital healthcare. Headquartered in San Francisco with additional offices in Montreal and Bangalore, we're building the future of health. Learn more at hingehealth.com.
The Opportunity
Are you a cybersecurity visionary ready to define the future of secure AI-assisted development? Hinge Health is rapidly advancing its engineering organization with AI-powered code generation, automated PR review workflows, agent sandboxing, and MCP gateway integrations. We need a **Lead Security Engineer** to spearhead the creation of robust security guardrails, innovative tooling, and critical standards, ensuring we ship with confidence and impact millions of lives.
This pivotal role places you at the cutting edge of **cloud security**, **AI-enabled engineering**, and **identity & access management**. You'll partner closely with Application Security, Site Reliability Engineering (SRE), and R&D Engineering to architect and enforce security-by-design principles across our dynamic AWS environment, sophisticated CI/CD pipelines, and evolving developer tooling. This is your chance to drive advancements in healthcare security, ensuring unparalleled compliance and privacy while empowering engineers to innovate swiftly and securely.
Who You Are
A Security-First Architect: You instinctively design systems that are secure by default, skillfully balancing rigorous security with engineering velocity.
An AI-Savvy Innovator: The rapid adoption of AI-assisted development energizes you, sparking opportunities to build novel security frameworks and tackle emerging threats.
A Collaborative Leader: You build trust and drive alignment across engineering, compliance, and leadership, authoring clear, plain-spoken technical proposals.
A Perpetual Learner: You stay ahead of the curve, continuously evolving your approach to address everything from adversarial ML to supply chain attacks on AI pipelines.
A Hands-On Mentor: You're as comfortable diving into code and architecture as you are mentoring others and guiding the team to self-organize around measurable outcomes.
Basic Qualifications
Bachelor's degree in a technical, engineering, or scientific field — or comparable education/experience.
7+ years in cybersecurity, with 3+ years focused on security operations or IAM.
5+ years of experience in cloud security operations, specifically AWS.
3+ years of coding experience (e.g., Python, Go, or TypeScript) with hands-on experience developing Terraform and infrastructure-as-code.
Hands-on experience securing AI/ML systems, including data pipelines, model deployments, API integrations, and their unique security challenges.
Preferred Qualifications
AWS Solutions Architect or Security Specialty certification.
AI/ML security certifications or familiarity with adversarial machine learning threats and mitigation strategies.
Experience building or integrating security controls into CI/CD pipelines and AI-assisted development workflows.
Experience managing an Enterprise IdP, especially Okta, with deep understanding of OAuth 2.0 and SAML.
SOC 2, PCI, or HIPAA audit/training certifications.
Knowledge of low-level networking principles.
What You'll Accomplish
In your first 3 months: Audit current cloud security posture and IAM architecture across our AWS environment; build relationships with key stakeholders in Application Security, SRE, and R&D Engineering. In your first 6 months: Design and implement AI-driven tools and workflows to enhance security monitoring, threat detection, incident response, and IAM governance. In your first year: Own the security strategy for AI-enabled development and cloud infrastructure, acting as the primary subject matter expert for security engineering across the organization. What You'll Love About Us Inclusive healthcare and benefits: On top of comprehensive medical, dental, and vision coverage, we offer employees and their family members help with gender-affirming care, tools for family and fertility planning, and travel reimbursements if healthcare isn't available where you live. Culture & Engagement Beware of Phishing Attempts: We've noticed an increase in phishing where fraudsters impersonate employees and send fake job offers to steal sensitive information. We'll never ask for financial details during the hiring process and only use "@hingehealth.com" emails. If you receive a suspicious offer, stop communication and report it to the US FBI Internet Crime Complaint Center. To verify an email from our recruiting team, forward it to [email protected].
Assess existing AI-assisted development tooling (Claude Code, Cursor, MCP gateway) for security risks and begin developing a governance framework.
Develop and enforce policies and protocols to protect AI tools and platforms from misuse, data breaches, and external threats — including secure agent sandboxing and MCP server governance.
Deliver IAM solutions enabling secure, granular access controls that enforce least privilege principles, utilizing automation and AI for privilege escalation and approvals.
Ensure all compliance regulations — including HIPAA, privacy, and relevant security frameworks — are met for new services, AI tooling, and infrastructure.
Develop and drive cybersecurity initiatives related to incident response, threat intelligence, vulnerability management, and monitoring tools.
Mentor team members in adopting new security tools and processes; educate the broader organization through knowledge-sharing sessions and author clear technical proposals with measurable security OKRs.
Planning for the future: Start saving for the future with our traditional or Roth 401k retirement plan options which include a 2% company match.
Modern life stipends: Manage your own learning and development with a dedicated stipend.
Hinge Health is an equal opportunity employer and prohibits discrimination and harassment of any kind. We make employment decisions without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, pregnancy, or any other basis protected by federal, state or local law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. We provide reasonable accommodations for candidates with disabilities. If you feel you need assistance or an accommodation due to a disability, let us know by reaching out to your recruiter. By submitting your application you are acknowledging we are using your personal data as outlined in the personnel and candidate privacy policy.