Gainwell TechnologiesRemote
Experienced Information Security Engineer
United States of America
Full Time
2 days ago
$110,000 - $150,000 USD
No H1B
Key skills
IAMOAuthJWTSAMLGitSource ControlCI/CD
About this role
Gainwell Technologies is focused on improving health and well-being through innovative technologies. They are seeking an Experienced Information Security Engineer to implement, automate, and operate federated identity integrations, ensuring secure authentication and authorization for modern healthcare applications.
Responsibilities:
- Implement and support federated authentication and authorization integrations using OpenID Connect, OAuth 2.1, and SAML 2.0
- Configure and maintain identity integrations for web, mobile, and API-based applications, including: Client registrations and trust relationships, Token claims, scopes, and attribute mappings, Certificates, signing keys, and rotation processes
- Support application modernization efforts by: Migrating legacy authentication mechanisms to standards-based federation, Enabling token-based access for APIs and distributed services, Supporting decoupled identity patterns for modern application architecture
- Build and maintain CI/CD pipelines for identity configurations and integrations, including: Source control of identity artifacts, Automated deployment and promotion between environments, Validation and rollback of identity changes
- Apply infrastructure-as-code or configuration-as-code principles to identity platforms where possible
- Collaborate with application teams to implement identity integrations according to established patterns and standards
- Troubleshoot complex authentication and authorization issues using logs, HTTP traces, and token inspection
- Support operational identity activities such as incident response, certificate renewal, and configuration maintenance
- Strong contribution to technical documentation, runbooks, and implementation guides
Requirements:
- 7+ years of experience in IAM, application security, or identity-focused engineering roles
- Strong hands-on experience with OpenID Connect and OAuth 2.1 flows and grant types
- Strong hands-on experience with SAML 2.0 federation configurations
- Strong hands-on experience with JWT signing, encryption, and validation
- Practical experience integrating identity with modern web and API architectures
- Experience implementing CI/CD pipelines and Git-based workflows
- Strong automation skills using scripting or pipeline tooling
- Proven ability to deliver identity changes safely in regulated or security-sensitive environments
- Strong troubleshooting skills at the protocol and application integration level