Software Engineer – Identity & Access Management

We are seeking aSoftware Engineer with deep interest and experience in Identity & Access Management (IAM)to help design build and secure authentication and authorization capabilities across CoverMyMeds platforms. This role sits on acore IAM platform teamthat owns enduser identity federated authentication and authentication infrastructure for web applications partnering closely with Security Product and other engineering teams.

This is ahandson individual contributor rolein a productoriented Kanban-driven environment where impact is achieved through technical depth secure engineering practices and collaboration.

What Youll Do

Identity Engineering & Integrations

• Design build and maintain authentication and authorization solutions usingOIDC OAuth 2.0 and SAML.

• Integrate applications and APIs with identity platforms such asOkta Auth0 Ping or Microsoft Entra ID.

• ImplementSSO MFA federated authentication session management and secure token handling.

• Contribute to identity services such as login gateways authorization middleware claims transformation and access policy enforcement.

• SupportSMART on FHIR (OAuth 2.0)use cases and unified authentication initiatives.

Security & Standards

• Apply industry-standard security practices includingleast privilege secure defaults defense in depth and secure secret handling.

• Partner with Security onthreat modeling risk reviews and secure SDLC practices.

• Implement identity solutions aligned withNIST-based identity and access control principles.

Software Development & Delivery

• Build production-quality systems using one or more ofJavaScript/TypeScript Ruby Python or C#.

• Write clean testable maintainable code with strong engineering discipline (CI/CD code reviews automated testing).

• Create clear technical documentation for APIs integrations and operational support.

• Participate in on-call or operational support for critical identity services as needed.

Ways of Working

• Work within aKanban delivery model managing flow and continuously improving quality and throughput.

• Collaborate with Product Security and stakeholders to define outcomes and manage tradeoffs.

• Bring anenterprise-first mindset constructively challenging designs and contributing new ideas.

Priority will be given to candidates who reside in theColumbus OH metropolitan area.

We are unable to provide sponsorship for this role now or in the future.

Minimum Qualifications

Degree or equivalent and typically requires 4 years of relevant experience

Education

• Degreenot required.

Critical Skills:

• 4 years experience building and shipping production software as an individual contributor.

• Deep experience (4 years) withOkta and/or Auth0(policies apps federation claims).

• Hands-on experience(4 years)implementing or integratingauthentication and authorizationusing OIDC OAuth 2.0 and/or SAML.

• Strong understanding ofsecure engineering practicesand common identity threats.

• Experience working in at least one of the following:JavaScript/TypeScript Ruby Python C#.

• Ability to collaborate across engineering product and security teams and communicate technical decisions clearly.

Preferred Qualifications

• Experience withSMART on FHIR SCIM directory integrations or identity lifecycle management.

• Familiarity withRBAC/ABAC claims-based authorization or policy engines.

• Experience inregulated environmentsand audit support.

• Experience improving reliability of critical auth systems (SLIs/SLOs graceful degradation).