Principal Software Engineer Identity Access Hyderabad Tg
Combine two of the fastest-growing fields on the planet with a culture of performance, collaboration and opportunity and this is what you get. Leading edge technology in an industry that\'s improving the lives of millions. Here, innovation isn\'t about another gadget, it\'s about making health care data available wherever and whenever people need it, safely and reliably. There\'s no room for error. Join us and start doing your life\'s best work.(sm)
Optum ID is the most advanced Identity Service within United Health Group that is aimed to provide a central and universal user identity for identifying and authenticating a user in the healthcare domain. It is built upon open standards like OAuth 2.0, OpenID Connect, SAML 2.0 Web SSO etc. It is a highly available, reliable and scalable service hosted in public cloud. We enjoy the trust of large customers in healthcare industry and government services with operations across United States of America.
Primary Responsibilities:
- Plan, define, design, implement and maintain the solution architecture in the area of internal and external identity and access management solution in public and private cloud environments.
- Adopt, implement and define guidelines using open standard identity protocols and mechanisms such as OAuth 2.0/ OpenID Connect, SAML 2.0, Federated Identity Management and SSO.
- Hands on developer with great coding skills with best practices. We currently use Java, Java Script, Spring Boot, Spring Cloud, Kubernetes, AWS.
- Mentors other members of the team on Information Security and Secure Development Standards.
- Evaluates and recommends new and emerging security methods, best practices, tools, technologies and staying abreast of new threats and vulnerabilities.
- Implement Security and Disaster Recovery measures and drive automation in the cloud architecture.
- Develop and integrate analytics algorithms using AI and machine learning against security event data in largescale environments.
- Help implement data-driven security analytics, reporting and monitoring initiatives and to support security incident analysis with your technical expertise.
- Keep yourself up to date on the security aspects of the products, including infrastructure security, application security and cloud security.
- Work with the product management, implementation teams to respond to customer security related issues and help define the security roadmap for implementation.
- Develop and maintain threat models and perform frequent threat assessments.
- Be an IAM SME to provide guidance and consulting services across teams.
- Assess overall cloud security posture at frequent intervals. Redesign or evolve the posture as necessary.
- Researches, Implements and promotes the adoption of proactive security concepts, such as threat hunting and threat modelling to improve the existing security strategy.
- Influence the technical and business communities in UHG alike.
- Demonstrate business acumen and vision to disrupt healthcare.
- Drive architectural initiatives that align our business needs and technical capabilities for Identity Management solutions.
- Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so.
Required Qualifications:
- 6 + Years of relevant experience in Identity and Access Management and Information Security.
- 8 + Years of hands-on technical experience in implementing secure enterprise applications using cloud technologies.
- Good experience in Threat, Vulnerability and Risk management, Infrastructure security.
- Hands-on working experience with Sail Point, Forge Rock, Ping, Okta, One Login, Azure AD or similar IAM products.
- Hands-on experience with security management of virtual machines, containers, and applications.
- Demonstrable experience in Site Reliability Engineering and DDoS mitigation techniques.
- Deep knowledge of OAuth 2.0, OpenID Connect, SAML 2.0, Identity federation, Single Sign-On, RBAC, ABAC, MFA, RBA.
- Strong working knowledge of Web Application Firewalls, HTTP(s), TCP/UDP, SSL/TLS, Forward and reverse proxies, Load balancers.
- Strong understanding and development experience on Java, Spring Boot, RESTful Web Services and Microservices.
- Working knowledge of Scripting languages (Python and Power Shell)
- Good understanding of the web application architectures, TCP/IP networking, cloud computing and data integrity and confidentiality including cryptographic techniques.
- Knowledge of Sans Top 20 Critical Security Controls and OWASP Top 10 vulnerabilities.
- Strong communication skills and presentation skills, leadership skills, problem solving and analytical skills.
- Flexible to work with global teams and working on different time zones.
Preferred Qualifications:
- AWS Certifications
- 5 + Years of experience in information security threat modelling and risk analysis.
- experience in healthcare industry applications development and support.
- experience in implementing Security Analytics using AI and machine learning.
- Familiarity with security, privacy and compliance standards such as FISMA, FedRAMP, HIPPA, NIST800-53, NIST800-63 and GDPR.
- Implementation of Technology specifications and/or RFCs.
- Good understanding of foundational statistics and its applications along with relevant algorithms used for data analysis.
- Good understanding of data science methodologies. Distinguish between descriptive, diagnostic, predictive and prescriptive analytic capabilities and their applications.
- Good understanding of scim2, u2f/uaf/fido2, hotp, totp.
- Working knowledge of containers and orchestration.
Careers with Optum. Here\'s the idea. We built an entire organization around one giant objective; make the health system work better for everyone. So when it comes to how we use the world\'s large accumulation of health-related information, or guide health and lifestyle choices or manage pharmacy benefits for millions, our first goal is to leap beyond the status quo and uncover new ways to serve. Optum, part of the United Health Group family of businesses, brings together some of the greatest minds and most advanced ideas on where health care has to go in order to reach its fullest potential. For you, that means working on high performance teams against sophisticated challenges that matter. Optum, incredible ideas in one incredible company and a singular opportunity to do your life\'s best work.(sm)