Senior Software Engineer

Identity Platform Engineer Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together.Aikyam is the most advanced 'Identity as a Service' Platform within UnitedHealth Group that is aimed to provide a central and universal user identity for identifying and authenticating a user in the healthcare domain. It is built upon open standards like OAuth 2.0, OpenID Connect, SAML 2.0 Web SSO etc. It is a highly available, reliable and scalable service hosted in public cloud. We enjoy the trust of large customers in healthcare industry and government services with operations across United States of America.You'll enjoy the flexibility to work remotely from anywhere within the U.S. as you take on some tough challenges. For all hires in the Minneapolis or Washington, D.C. area, you will be required to work in the office for a minimum of four days per week.Primary Responsibilities: Contribute to system design and implement approved architecture and design patterns to ensure scalable and efficient Identity Platform solutionsBuild and operate cloud-native, containerized identity services with strong focus on scalability, resiliency, and operational excellenceEnsure all solutions comply with enterprise IT principles, security standards, and healthcare regulations (HIPAA, TEFCA, CMS Interoperability)Apply security controls directly within application code and service design through secure coding, threat modeling, and defense-in-depth practicesParticipate in intake discussions, solution design, and support estimation activities for identity platform enhancementsOwn the design and implementation of complex features from requirements through development, testing, deployment, and production supportCollaborate with solution engineering, development teams, partners, and vendors to maintain a coherent and consistent approach to design, implementation, and integrationContribute to logging, monitoring, alerting, and operational dashboards to ensure reliability, performance, and security of identity services in productionProvide hands-on technical guidance, including reference implementations, reusable design patterns, and best-practice guidelinesIntegrate AI and ML capabilities into identity workflows for adaptive authentication, fraud detection, and risk-based access controlDesign and implement AI-driven security analytics to detect anomalies, predict threats, and automate incident response in large-scale environmentsResearch and adopt proactive AI-based security strategies, such as anomaly detection, threat modeling, and autonomous policy enforcementIncorporate conversational AI and NLU into identity platforms for guided user experiences, troubleshooting, and self-service authentication flowsAdhere to established AI governance, security, and compliance standardsDesign, develop, and deploy AI-powered solutions to address complex business challenges with emphasis on responsible use of AIYou'll be rewarded and recognized for your performance in an environment that will challenge you and give you clear directions on what it takes to succeed in your role as well as provide development for other roles you may be interested in.Required Qualifications: Bachelor's degree in CS or IT related field6+ years of hands-on technical experience in implementing secure enterprise applications using any one of cloud technologies like Azure, AWS or GCP5+ years of experience with programming languages, frameworks like Java and Springboot. Building RESTful Web Services and Microservices5+ years of experience with identity protocols (OAuth2, OIDC, SAML)5+ years of experience with security data platforms (Splunk, ELK) for monitoring, troubleshooting and security analysis4+ years of hands-on experience with threat modeling, vulnerability remediation, and infrastructure/application security3+ years of experience with React for frontend development of user or admin-facing applications3+ years of experience with Identity federation, Single Sign-On, RBAC, ABAC, MFA, RBA3+ years of relevant experience in Identity & Access Management and Information and application Security3+ years of hands-on working experience with SailPoint, ForgeRock, Ping, Okta, OneLogin, Azure AD or similar IAM productsPreferred Qualifications: Hands-on experience with security management of virtual machines, containers, and applicationsKnowledge of SANS Top 20 Critical Security Controls and OWASP Top 10 vulnerabilitiesWorking knowledge of Scripting languages (Python and PowerShell)Solid working knowledge of Web Application Firewalls, HTTP(s), TCP/UDP, SSL/TLS, Forward and reverse proxies, Load balancersGood understanding of the web application architectures, TCP/IP networking, cloud computing and data integrity and confidentiality including cryptographic techniquesFamiliarity with ML frameworks (TensorFlow, PyTorch) and AI services (Azure AI, AWS SageMaker)Exposure to Site Reliability Engineering concepts and production support practicesInterest or exposure to advanced identity risk and anomaly detection conceptsProven solid communication skills and presentation skills, mentoring skills, problem solving and analytical skillsPay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you'll find a far-reaching choice of benefits and incentives. The salary for this role will range from $91,700 to $163,700 annually based on full-time employment. We comply with all minimum wage laws as applicable.Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants.At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission.UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations.UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.