Job Information
HEALTHEQUITY, INC. Sr Security Engineer, Cryptography and Key Management (Data in DRAPER, Utah
Sr Security Engineer, Cryptography and Key Management (Data Protection)
Job Locations
US-Remote
Our Mission
Our mission is to SAVE AND IMPROVE LIVES BY EMPOWERING HEALTHCARE CONSUMERS.Come be part of remarkable.
Overview
How You Can Make a Difference
We are building a new data security engineering team to protect sensitive data across databases and file shares. This is a top priority initiative for the upcoming fiscal year with full executive sponsorship.
You will be the cryptography and key management specialist, responsible for designing and implementing encryption, tokenization, and key lifecycle controls at scale across a large, complex data environment.
What You Will Be Doing
Own the cryptographic architecture for protecting sensitive data across databases and file shares
Design and implement encryption and tokenization strategies
Define and implement key management and vaulting patterns, including key generation, storage, rotation, revocation, backup, and recovery
Integrate certificate-based authentication and PKI workflows for services and applications
Evaluate database-level vs application-level cryptography, including column-level protection when appropriate
Partner with DBAs, developers, architects, and security leaders to deliver secure, supportable solutions
Assess performance and latency impacts of cryptographic controls and design mitigations
Establish standards, guardrails, runbooks, and operational processes
Provide technical leadership and mentorship to help teams avoid common cryptography pitfalls
Environment: Azure, C#, SQL Server, MySQL, Oracle, enterprise file shares
Partners: Development, IT, DBAs, architecture, and security leadership
What You Will Need to Be Successful
Bachelor's degree in Computer Science, Information Systems, or equivalent hands-on experience
Deep, hands-on cryptography experience applied in real production systems
Proven experience implementing encryption and or tokenization, including key management considerations
Strong knowledge of HSM concepts, certificate-based authentication, and vaulting patterns
Experience influencing senior DBAs, developers, and architects
Comfort operating in ambiguity and building programs from the ground up
Preferred Qualifications
Experience with HashiCorp Vault and or Thales encryption and key management solutions
Experience integrating HSM-backed or enterprise key management platforms
Familiarity with SQL Server, MySQL, and Oracle, including encryption impacts and constraints
Cloud experience, especially Azure, and securing cloud-hosted applications and services
#LI-Remote
This is a remote position.
Salary Range
$109,500.00 To $165,000.00 / year
Benefits and Perks
The actual compensation offer is determined based on job-related knowledge, education, skills, experience, and work location. This position will be eligible for performance-based incentives as part of the total compensation package, in addition to a full range of benefits including:
Medical, dental, and vision
HSA contribution and match
Dependent care FSA match
Uncapped paid time off
Paid parental leave
401(k) match
Personal and healthcare financial literacy programs
Ongoing educationand tuition assistance
Gym and fitness reimbursement
Wellness program incentives
Onboarding and Travel
This is a remote role, w ith an in-person onboarding training component. New team members must participate in Trailhead, HealthEquity's immersive onboarding experience Trailhead is designed to foster meaningful connections, support your integration into the organization, and equip you with a strong understanding of our business. Trailhead participation is a key expectation of this role. Trailhead is held onsite at our hea quarters once per quarter.... For full info follow application link.