Principal Software Engineer - Remote or Hybrid in MN and DC
About The Position
Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with your team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. The Optum Technology Digital team is on a mission to disrupt the healthcare industry, transforming UHG into an industry-leading Consumer brand. We deliver hyper-personalized digital solutions that empower direct-to-consumer, digital-first experiences, educating, guiding, and empowering consumers to access the right care at the right time. Our mission is to revolutionize healthcare for patients and providers by delivering cutting-edge, personalized and conversational digital solutions. We’re Consumer Obsessed, ensuring they receive exceptional support throughout their healthcare journeys. As we drive this transformation, we're revolutionizing customer interactions with the healthcare system, leveraging AI, cloud computing, and other disruptive technologies to tackle complex challenges. Serving UnitedHealth Group's digital technology needs, the Consumer Engineering team impacts millions of lives through UnitedHealthcare & Optum. The Optum Technology Chief Digital Office (CDO) Leadership team is transforming Optum to be an industry-leading Consumer brand. We are on a journey towards delivering a best-in-the-industry consumer experience to our patients and providers by delivering personalized digital solutions that support our consumers throughout their healthcare journeys. This team is transforming to meet the moment – to begin radically altering the way our customers engage with the healthcare system using modern tech to solve some of the most complex problems experienced along the way. Serving all of UnitedHealth Group’s digital technology needs, the CDO team is responsible for driving outcomes across nearly 30 million+ human lives with UnitedHealthcare insurance, a number which puts UHC at the top of the pack as the largest managed care provider in the United States. We are looking for a Principal Engineer, Identity to drive consumer identity architecture across the Identity Platform and the products built on it. This is identity for members, patients, and care providers, not workforce identity. The role partners with peer leaders in the Non-Human Identity (NHI) and Security & Trust domains. Together, these roles cover the full identity architecture surface of the platform; this role anchors the human identity domain.
Requirements
- 10+ years building production identity and access management systems, with significant time at Staff or Principal level as an individual contributor
- Production architecture experience with at least one enterprise IDP (Ping, Okta, ForgeRock, Auth0, or Microsoft Entra)
- Production experience operating business-critical identity services in cloud environments
- Deep expertise in identity foundations: authentication, authorization, SSO, federation, IGA, and identity lifecycle
- Proven solid command of OAuth 2.0 and 2.1, OpenID Connect, and SAML 2.0, with the ability to make architectural trade-offs at scale
- Track record influencing architecture across multiple product engineering teams as an individual contributor
Nice To Haves
- Production experience across both CIAM (B2C) and B2B or workforce federation, including multi-tenant SSO and SCIM
- Identity proofing and assurance at IAL2 / AAL2 in production
- Healthcare identity context (HIPAA, SMART-on-FHIR, UDAP, TEFCA, or similar)
- Operating CIAM as a multi-tenant platform consumed by other product teams
- Passwordless or passkey rollouts in production at consumer scale
- Familiarity with emerging identity primitives such as decentralized identifiers (DIDs), verifiable credentials, and digital wallets
- Experience with identity orchestration and adaptive identity journeys
Responsibilities
- Set the architectural direction for consumer identity across the Identity Platform and the products that consume it, driving convergence of consumer (B2C) and provider (B2B) experiences onto shared platform capabilities
- Establish reference designs and platform standards for authentication, authorization, federation, delegation, identity lifecycle, proofing, and account recovery
- Own the direction for modern authentication and assurance, including passwordless, adaptive authentication, and alignment to NIST 800-63
- Influence and align architecture across product engineering teams as a trusted technical advisor, and raise the engineering bar across the identity organization
- Partner with peer leaders in NHI and Security & Trust at the boundaries where human, machine, and risk intersect, including delegated access and on-behalf-of flows for AI agents
Benefits
- comprehensive benefits package
- incentive and recognition programs
- equity stock purchase
- 401k contribution
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Principal
Education Level
No Education Listed
