Senior Software Engineer, Identity and Access Management

athenahealth•Boston, MA

1d•Hybrid

About The Position

Join athenahealth as a Senior Software Engineer, based in Boston, MA, working in a hybrid environment. You will design, build, and evolve identity, authentication, and authorization capabilities that protect and enable access across athenaOne, athenahealth’s core EHR platform, and related applications. The successful candidate will work with a high degree of independence to solve complex technical problems, contribute sound technical designs, mentor less experienced engineers, and collaborate closely with Product, Security, Compliance, Architecture, and partner application stakeholders. This position reports directly to the Senior Engineering Manager within the Identity and Access Management zone. The Identity and Access Management (IAM) zone at athenahealth builds and maintains the authentication and authorization foundations that secure the company’s core EHR platform and related applications. The team owns shared services and centralized frameworks for single sign-on (SSO), token and session management, fine-grained access control, and policy-based access control. The zone focuses on secure-by-default, developer-friendly integration patterns that balance security, compliance, performance, and seamless user experience.

Requirements

Bachelor’s degree in Computer Science, Software Engineering, or a related field, or equivalent professional experience.
3 to 6 years of progressive professional experience in software engineering roles within a product development environment.
Strong software engineering skills with a focus on SDLC and DevSecOps-driven delivery, with a track record of independently delivering high-quality features in complex systems.
Proficiency in Java and Spring Boot, with experience building RESTful services and secure backend systems; working knowledge of Node.js is a plus.
Experience designing and maintaining distributed services, APIs, and integration patterns in cloud environments.
Familiarity with authentication and authorization concepts such as OAuth 2.0, OpenID Connect, SAML, token-based security, and service-to-service access patterns, along with cloud environments, Infrastructure as Code, and CI/CD tooling such as AWS, Terraform, Git, Jenkins, or Harness.
Strong analytical, problem-solving, and communication skills; familiarity with AI technologies and their application in software development workflows.
A collaborative mindset with demonstrated ability to mentor peers and contribute to a positive team culture.

Nice To Haves

Experience in healthcare technology, compliance-sensitive systems, or regulated environments is a plus.
Familiarity with policy decision and enforcement models such as OPA/Rego, fine-grained authorization, multi-tenant authorization, API gateways, audit logging, and secrets or key management is a plus.

Responsibilities

Design, develop, test, deploy, and maintain high-quality software components, APIs, SDKs, and services that support authentication, authorization, identity propagation, token and session management, and secure access workflows.
Deliver features with a high degree of independence from implementation through peer review, rollout, and production support.
Contribute to the design and evolution of authentication and authorization frameworks, including policy-based and fine-grained access control systems.
Build cloud-based services and reusable integration patterns that can be adopted across multiple teams, products, and use cases.
Collaborate with Product, Security, Architecture, Compliance, and application teams to deliver identity and access solutions aligned with business goals and technical standards.
Write modular, well-tested, production-ready code and contribute meaningfully to code reviews by identifying design issues, quality gaps, security risks, and opportunities for improvement.
Participate in technical design discussions, analyze trade-offs, and recommend pragmatic solutions for scalability, resilience, security, and developer experience.
Use AI-powered development tools for faster feature delivery, debugging, refactoring, and efficient multi-file and code generation workflows.
Proactively identify and resolve complex technical problems across distributed systems, applying strong debugging and analytical skills to drive root-cause resolution.
Troubleshoot production issues, participate in incident response and root-cause analysis, and drive improvements that reduce time to detect and time to mitigate.
Apply SDLC and DevSecOps practices to deliver secure, reliable, auditable, and maintainable software; follow and help refine coding standards, architectural patterns, and the team’s Definition of Done.
Contributes to the evaluation and adoption of emerging technologies relevant to identity, security, and healthcare software development.
Contribute to documentation for software designs, architecture decisions, operational runbooks, integration guides, and developer onboarding materials.
Monitor service performance, reliability, and security signals to proactively identify issues and optimization opportunities.
Stay informed on advancements in AI (tools and techniques) as they relate to software engineering, and demonstrate initiative in experimenting with emerging tools and techniques to identify practical improvements in efficiency gains, productivity improvement, and developer experience.
Coach and mentor junior and mid-level engineers through knowledge sharing, pairing, and constructive code reviews.
Be accountable for outcomes, including delivering on commitments, maintaining quality standards, and following through on team agreements.