[Remote] Experienced Information Security Engineer

Note: The job is a remote job and is open to candidates in USA. Gainwell Technologies is focused on improving health and well-being through innovative technologies. They are seeking an Experienced Information Security Engineer to implement, automate, and operate federated identity integrations, ensuring secure authentication and authorization for modern healthcare applications.

Responsibilities

• Implement and support federated authentication and authorization integrations using OpenID Connect, OAuth 2.1, and SAML 2.0
• Configure and maintain identity integrations for web, mobile, and API-based applications, including: Client registrations and trust relationships, Token claims, scopes, and attribute mappings, Certificates, signing keys, and rotation processes
• Support application modernization efforts by: Migrating legacy authentication mechanisms to standards-based federation, Enabling token-based access for APIs and distributed services, Supporting decoupled identity patterns for modern application architecture
• Build and maintain CI/CD pipelines for identity configurations and integrations, including: Source control of identity artifacts, Automated deployment and promotion between environments, Validation and rollback of identity changes
• Apply infrastructure-as-code or configuration-as-code principles to identity platforms where possible
• Collaborate with application teams to implement identity integrations according to established patterns and standards
• Troubleshoot complex authentication and authorization issues using logs, HTTP traces, and token inspection
• Support operational identity activities such as incident response, certificate renewal, and configuration maintenance
• Strong contribution to technical documentation, runbooks, and implementation guides

Skills

• 7+ years of experience in IAM, application security, or identity-focused engineering roles
• Strong hands-on experience with OpenID Connect and OAuth 2.1 flows and grant types
• Strong hands-on experience with SAML 2.0 federation configurations
• Strong hands-on experience with JWT signing, encryption, and validation
• Practical experience integrating identity with modern web and API architectures
• Experience implementing CI/CD pipelines and Git-based workflows
• Strong automation skills using scripting or pipeline tooling
• Proven ability to deliver identity changes safely in regulated or security-sensitive environments
• Strong troubleshooting skills at the protocol and application integration level

Benefits

• Generous, flexible vacation policy
• Educational assistance
• Comprehensive health benefits
• 401(k) employer match
• A variety of leadership and technical development academies to help build your skills and capabilities
• Work flexibility
• Learning
• Career development

Company Overview