Principal Software Engineer - Architect

Job Description

Position Description Combine two of the fastest-growing fields on the planet with a culture of performance, collaboration and opportunity and this is what you get. Leading edge technology in an industry thats improving the lives of millions. Here, innovation isnt about another gadget, its about making health care data available wherever and whenever people need it, safely and reliably. Theres no room for error. Join us and start doing your lifes best work.(sm)Primary Responsibilities:

• Plan, define, design, implement and maintain the solution architecture in the area of internal and external identity & access management solution in public and private cloud environments
• Adopt, implement and define guidelines using open standard identity protocols and mechanisms such as OAuth 2.0/ OpenID Connect, SAML 2.0, Federated Identity Management and SSO
• Hands on developer with great coding skills with best practices ( Java, JavaScript, Spring Boot, Spring Cloud, Kubernetes, AWS)
• Mentor other members of the team on Information Security and Secure Development Standards
• Evaluate and recommend new and emerging security methods, best practices, tools, technologies and staying abreast of new threats & vulnerabilities
• Implement Security and Disaster Recovery measures and drive automation in the cloud architecture
• Develop and integrate analytics algorithms using AI and machine learning against security event data in largescale environments
• Help implement data-driven security analytics, reporting and monitoring initiatives and to support security incident analysis with your technical expertise
• Keep yourself up to date on the security aspects of the products, including infrastructure security, application security and cloud security
• Work with the product management, implementation teams to respond to customer security related issues and help define the security roadmap for implementation
• Develop and maintain threat models and perform frequent threat assessments
• Assess overall cloud security posture at frequent intervals. Redesign or evolve the posture as necessary
• Research, Implement and promote the adoption of proactive security concepts, such as threat hunting and threat modelling to improve the existing security strategy
• Demonstrate business acumen and vision to disrupt healthcare
• Drive architectural initiatives that align our business needs and technical capabilities for Identity Management solutions
• Be an IAM SME to provide guidance and consulting services across teams
• Implementation of Technology specifications and/or RFCs

Required Qualifications:

• 8+ years of hands-on technical experience in implementing secure enterprise applications using cloud technologies
• 6+ years of relevant experience in Identity & Access Management and Information Security
• Good experience in Threat, Vulnerability & Risk management, Infrastructure security
• Hands-on working experience with SailPoint, ForgeRock, Ping, Okta, OneLogin, Azure AD or similar IAM products
• Hands-on experience with security management of virtual machines, containers, and applications
• Demonstrable experience in Site Reliability Engineering and DDoS mitigation techniques
• Deep knowledge of OAuth 2.0, OpenID Connect, SAML 2.0, Identity federation, Single Sign-On, RBAC, ABAC, MFA, RBA
• Strong working knowledge of Web Application Firewalls, HTTP(s), TCP/UDP, SSL/TLS, Forward and reverse proxies, Load balancers
• Strong understanding and development experience on Java, SpringBoot, RESTful Web Services and Microservices
• Working knowledge of Scripting languages (Python and PowerShell)
• Good understanding of the web application architectures, TCP/IP networking, cloud computing and data integrity and confidentiality including cryptographic techniques
• Knowledge of SANS Top 20 Critical Security Controls and OWASP Top 10 vulnerabilities
• Strong communication skills and presentation skills, leadership skills, problem solving and analytical skills
• Flexible to work with global teams and working on different time zones

Preferred Qualifications:

• AWS Certifications
• 5+ years of experience in information security threat modelling and risk analysis
• Experience in implementing Security Analytics using AI and machine learning
• Experience in healthcare industry applications development and support
• Working knowledge of containers and orchestration
• Familiarity with security, privacy and compliance standards such as FISMA, FedRAMP, HIPAA, NIST800-53, NIST800-63 and GDPR

,

Keyskills :
sqlenvironmental impact assessmentjavalinuxidentity access managementweb servicesdata scienceagilefederated identity managementspring bootstrong communication skillshigh performance teamsjavascriptsaml 20