Principal Software Engineer

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together.

Primary Responsibilities:

• Plan, define, design, implement and maintain the solution architecture in the area of internal and external identity & access management solution in public and private cloud environments
• Design - Architect - Automate - Enhance in AWS Infrastructure Security
• Lead in AWS Infrastructure Architecture Security function
• Create complex architecture design models that describe platform security solutions that both conform to platform standards and advocates for modern

technology and best practices

Provide end-to-end support and leadership of multiple platforms

Continuous application monitoring & Alerting using modern advanced monitoring & log forwarding tools such as Elastic Search, Splunk, New Relic, Elastic APM, Prometheus, Grafana etc.

Adopt, implement and define guidelines using open standard identity protocols and mechanisms such as OAuth 2.0/ OpenID Connect, SAML 2.0, Federated Identity Management and SSO

Evaluates and recommends new and emerging security methods, best practices, tools, technologies and staying abreast of new threats and vulnerabilities

Passion for building scalable, global, complex systems to solve problems with proven ability to deliver high quality software

Develop and integrate analytics algorithms using AI and machine learning in largescale environments

Work with the product management and Designers and convert their vision into a technical security solution

Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so

Required Qualifications:

• Bachelor's degree in computer science or equivalent
• 12+ years of experience in Software Engineering
• Experience on AWS and Terraform for designing and building distributed, secure and reliable systems.
• Proven skilled in:
  • Customer Identity and Access Management and Information Security
  • Security at all layers (Ingress and Egress)
  • Web Application Firewalls
  • Edge security
  • AWS Network Firewall, DDos protection, Secure protocols(HTTPS , SSL/TLS , TCP , PKI etc..)
  • Encryption
  • Load balancers
  • Forward & Reverse proxies
  • OAuth 2.0
  • OpenID Connect
  • SAML 2.0,Identity federation
  • SSO
  • RBAC
  • MFA
  • SANS Top 20 Critical Security Controls
  • OWASP Top 10 vulnerabilities
  • DevSecOps
• Proven flexible to work with global teams and working on different time zones
• Demonstrated ability to work in a fast-paced environment where continuous innovation
• Proven ability to be an IAM SME to provide guidance and consulting services across teams

Preferred Qualifications:

• Preferred ISC2 CISSP Certification
• Experience with Information security threat modelling and risk analysis
• Experience with handling multi-vector attacks
• Experience with Host Intrusion detection System tools
• Proven skilled in security, privacy and compliance standards such as:
  • CMS MARS-E, FISMA, FedRAMP, HIPAA, NIST800-53, NIST800-63 and GDPR, AWS, Terraform, Docker, Kubernetes, ISTIO, Helm, Java, Spring Boot, REST API, Jenkins Git, Shell, Python, Go, SQL, New Relic or Datadog or Dynatrace, Kibana or Splunk

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission.