Security Engineer

Looking for a passionate Application Security Engineer to join our team! Your primary focus is to ensure that the HealthEquity Technology platform is secure by design and to guide software delivery teams. You will be a key contributor to direct security architecture and design for a talented engineering team working closely with the business team to deliver value. You will work closely with scrum teams and information security to deliver high quality, high value company initiatives. You will work closely with agile software development teams during design and development phases to guide secure feature design, secure coding practices, and improve overall security maturity. Develop application threat models for web, mobile, microservices, and public API’s and mitigation strategies for securing our technologies. Teach scrum teams how to develop and maintain feature level threat models and mitigate the vulnerabilities. Conduct static, dynamic, SCA and container vulnerability analysis using industry standard tools. Perform manual and automated code reviews. Develop and teach secure coding standards and practices. Participate in pen testing activities and assisting teams in validating, remediating, and mitigating vulnerabilities. Work closely with development teams to ensure security at each layer of microservices and container development. Review build pipelines for best-practice security gates and controls.