Overview:
We are CONNECTING HEALTH AND WEALTH. Come be part of remarkable.
How you can make a difference
The Product Security Architect is responsible for validating that HealthEquity's software products adhere to cybersecurity principles when designed, built and implemented and helps ensure end-to-end security from product inception through end-of-life. The architect will work closely with our Product & Technology department and be the primary point of contact to help all of HealthEquity's cybersecurity teams get product feature requests groomed, prioritized, and delivered. That effort will be bolstered by the architect researching and networking with peer companies to understand what they are doing and regularly monitoring the threat landscape and its potential impact to HealthEquity products. The product security architect must also focus on secure development practices, threat modeling, architecture, and application security design.
What you’ll be doing
- Collaborate with developers and product managers to design a solution for continuous product security validation.
- Attend and participate in product meetings addressing security requirements for new and existing products.
- Create meaningful and automated metrics that inform stakeholders as well as help improve the product security program.
- Maintain product security documentation (including feature security requirements).
- Recommend controls where there are security gaps and track through to implementation and validation.
- Support the rest of the DevSecOps team by willingness to be cross-trained and contribute to the general success of the team.
- Participate in a high performing team that thrives on regular, incremental deliverables towards an initiative. Proactively document progress towards these initiatives.
- Participate in and be passionate about our company culture and our mission to save and improve lives by empowering healthcare customers.
- Other duties as assigned.
What you will need to be successful
- Individuals in this role possess a wide range of cybersecurity and software engineering technical acumen and exceptional communication skills.
- The product security architect is expected to adapt to continuous integration and continuous delivery (CI/CD) pipelines to ensure products meet business objectives.
- An attacker mindset that is only satisfied when defense-in-depth controls are in place but will still question assumptions about our existing security posture. Ability to perform high-quality and effectual threat modeling.
- Leverage security standards and implementation configurations, as well as common security frameworks.
- 7+ years experience in cybersecurity with a product and application security engineering background.
- Familiarity with container security, such as Docker and Kubernetes.
- Experience with security requirements for APIs.
- Agile/Scrum and Microsoft Azure experience are beneficial.
- Ability to research, identify and iterate on new security metrics to provide greater visibility on program status and improvement opportunities to senior leadership.
- Ability to clearly and logically document all procedures related to this role and a passion for keeping documentation up to date.
#LI-Remote
This is a remote position.
Salary Range:
$127000.00 To $165,000.00 / year
Benefits & Perks:
The compensation range describes the typical minimum or maximum base pay range for this position. The actual compensation offer is determined based on job-related knowledge, education, skills, experience, and work location. This position will be eligible for performance-based incentives as part of the total compensation package, in addition to a full range of benefits including:
- Medical, dental, and vision
- HSA contribution and match
- Dependent care FSA match
- Uncapped paid time off
- Adventure accounts
- Paid parental leave
- 401(k) match
- Personal and healthcare financial literacy programs
- Ongoing education & tuition assistance
- Gym and fitness reimbursement
- Wellness program incentives
Come be your authentic self:
Why work for HealthEquity
HealthEquity has a vision that by 2030 we will make HSAs as wide-spread and popular as retirement accounts. We are passionate about providing a solution that allows American families to connect health and wealth. Join us and discover a work experience where the person is valued more than the position. Click here to learn more.
Come be your authentic self
HealthEquity, Inc. is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, age, color, religion, sex, sexual orientation, gender identity, national origin, status as a qualified individual with a disability, veteran status, or other legally protected characteristics. HealthEquity is a drug-free workplace. For more information about our EEO policy, or about HealthEquity’s applicant disability accommodation, drug-free-workplace, background check, and E-Verify policies, please visit our Careers page.
HealthEquity is committed to your privacy as an applicant for employment. For information on our privacy policies and practices, please visit HealthEquity Privacy.
