HealthEquity

Compensation

Full Description

Our Mission Our mission is to SAVE AND IMPROVE LIVES BY EMPOWERING HEALTHCARE CONSUMERS. Come be part of remarkable. Overview How you can make a difference At HealthEquity, our mission is to save and improve lives by empowering healthcare consumers. To do that well, we protect member and partner data with care, craft, and modern engineering. Join a small, senior team building a greenfield data protection program with full executive support. You will design and ship security controls that scale across petabyte-level data and dozens of platforms, all while partnering closely with developers, DBAs, and architects. What you’ll be doing Cryptography Specialist: Deep hands-on experience with key management, HSMs, certificate lifecycle, and enterprise vaulting. Comfortable with products such as HashiCorp Vault or Thales, and with performance tradeoffs in real production systems Database and Product Security Engineer: Strong background in database development or administration and application development. Skilled at implementing encryption or tokenization end to end and coaching teams through integration and troubleshooting. Design, build, and operate cryptographic services to protect data at rest and in use across databases, file shares, and applications Implement encryption, tokenization, and secrets management patterns, integrating them into app and data pipelines with minimal friction Guide engineering teams through connection string updates, certificate-based authentication, HSM-backed key operations, and column-level encryption Establish reference implementations, SDKs, and runbooks that make secure-by-default the easiest path for product and data teams Evaluate and integrate data discovery and classification tooling to find and reduce exposure of sensitive data across diverse environments Lead security risk assessments for on-prem and cloud data services and translate findings into pragmatic, measurable engineering work Instrument and publish program metrics and dashboards that show adoption, coverage, and control effectiveness for senior leadership Present recommendations clearly to senior leaders and mentor engineers and DBAs on best practices Contribute to security as a service, offering patterns, paved roads, and consultative guidance to partner teams What you will need to be successful Bachelor’s degree in Computer Science, Information Systems, or a related technical field — or equivalent hands-on experience. 6+ years in security or platform engineering with proven success delivering data protection solutions at scale across both legacy and cloud environments. Practical experience implementing encryption or tokenization for production applications and databases, including managing performance and latency trade-offs. Hands-on with some the following: HashiCorp Vault, Thales, HSMs, certificate-based authentication, mTLS, Secrets management, FPE, and tokenization Strong database expertise in SQL Server, MySQL, or Oracle Expertise in at least one modern language (C# or Java) Scripting with PowerShell or Python Azure expertise, including secure use of cloud-native services and identity; familiarity with column-level encryption and key rotation. Security Framework Knowledge with NIST CSF, ISO 27001, and CIS Controls, applied pragmatically to engineering decisions. Excellent communication and influencing skills — able to partner effectively with DBAs, developers, architects, and senior leaders. Certifications CISSP, CISM, CCSP, or OSCP are valued but not required. We prioritize hands-on impact over badges. Nice to Haves Experience building BI dashboards for program metrics (Power BI or Tableau) Agile/Scrum experience Consulting or advisory background. #LI-Remote This is a remote position. Salary Range $109,500.00 To $142,500.00 / year Benefits & Perks The actual compensation offer is determined based on job-related knowledge, education, skills, experience, and work location. This position will be eligible for performance-based incentives as part of the total compensation package, in addition to a full range of benefits including: Medical, dental, and vision HSA contribution and match Dependent care FSA match Uncapped paid time off Paid parental leave 401(k) match Personal and healthcare financial literacy programs Ongoing education & tuition assistance Gym and fitness reimbursement Wellness program incentives Why work with HealthEquity HealthEquity has a vision that by 2030 we will make HSAs as wide-spread and popular as retirement accounts. We are passionate about providing a solution that allows American families to connect health and wealth. Join us and discover a work experience where the person is valued more than the position. Click here to learn more. You belong at HealthEquity! HealthEquity, Inc. is an equal opportunity employer, and we are committed to being an employer where no matter your background or identity – you feel welcome and included. We ensure equal opportunity for all applicants and employees without regard to race, age, color, religion, sex, sexual orientation, gender identity, national origin, status as a qualified individual with a disability, veteran status, or other legally protected characteristics. HealthEquity is a drug-free workplace. For more information about our EEO policy, or about HealthEquity’s applicant disability accommodation, drug-free-workplace, background check, and E-Verify policies, please visit our Careers page. HealthEquity uses Microsoft Copilot to transcribe screening interviews between candidates and their direct Talent Partner for note taking and interview summaries. By scheduling a screening interview with us, you consent to Microsoft Copilot’s AI technology recording and transcribing your interview with your Talent Partner. This information will be reviewed for accuracy and then used by HealthEquity to summarize the interview, ensure accuracy, and facilitate our hiring process. We take privacy seriously. You have the option to opt out. If you wish to opt out of this Microsoft Copilot transcription, please notify your Talent Partner in advance of the interview. If we do not receive an opt-out request from you, we will assume that you consent to the use of Microsoft Copilot. At HealthEquity, our goal is to save and improve lives by empowering healthcare consumers. This shared purpose inspires everything we do, including how we approach hiring. Our process is designed to get to know the real you: your skills, experiences, and potential to make a difference. We value honesty, originality, and the courage to do the right thing, even when it is not the easiest path. Showing up as your authentic self reflects these values and helps us build something truly remarkable together. As AI is becoming a common tool throughout the application process, we want to be clear about its appropriate use at HealthEquity. Using AI to support resume writing, research, or interview preparation is perfectly acceptable, provided the content is accurate and genuinely represents your qualifications and skills. For other key parts of our interview process, however, it is important that the ideas, communication, and work you share reflect your own voice, experiences, and thinking. We ask that you participate in our live interviews and complete any assessments without AI assistance unless instructions explicitly indicate otherwise or a specific exception is discussed and approved in advance. This approach ensures fairness, celebrates your individuality, and allows your authentic perspective to shine. Behaviors that do not align with these guidelines may result in disqualification from the hiring process or termination of employment if later discovered. We appreciate your understanding and look forward to learning about the unique contributions only you can bring to HealthEquity. HealthEquity is committed to your privacy as an applicant for employment. For information on our privacy policies and practices, please visit HealthEquity Privacy.