Senior Software Engineer, Identity and Access Management

Join us as we work to create a thriving ecosystem that delivers accessible, high-quality, and sustainable healthcare for all. Position Summary Join athenahealth as a Senior Software Engineer, based in Boston, MA, working in a hybrid environment. You will design, build, and evolve identity, authentication, and authorization capabilities that protect and enable access across athenaOne, athenahealth's core EHR platform, and related applications. The successful candidate will work with a high degree of independence to solve complex technical problems, contribute sound technical designs, mentor less experienced engineers, and collaborate closely with Product, Security, Compliance, Architecture, and partner application stakeholders. This position reports directly to the Senior Engineering Manager within the Identity and Access Management zone. Team Summary The Identity and Access Management (IAM) zone at athenahealth builds and maintains the authentication and authorization foundations that secure the company's core EHR platform and related applications. The team owns shared services and centralized frameworks for single sign-on (SSO), token and session management, fine-grained access control, and policy-based access control. The zone focuses on secure-by-default, developer-friendly integration patterns that balance security, compliance, performance, and seamless user experience.

Essential Job Responsibilities:

Design, develop, test, deploy, and maintain high-quality software components, APIs, SDKs, and services that support authentication, authorization, identity propagation, token and session management, and secure access workflows. Deliver features with a high degree of independence from implementation through peer review, rollout, and production support. Contribute to the design and evolution of authentication and authorization frameworks, including policy-based and fine-grained access control systems. Build cloud-based services and reusable integration patterns that can be adopted across multiple teams, products, and use cases. Collaborate with Product, Security, Architecture, Compliance, and application teams to deliver identity and access solutions aligned with business goals and technical standards. Write modular, well-tested, production-ready code and contribute meaningfully to code reviews by identifying design issues, quality gaps, security risks, and opportunities for improvement. Participate in technical design discussions, analyze trade-offs, and recommend pragmatic solutions for scalability, resilience, security, and developer experience. Use AI-powered development tools for faster feature delivery, debugging, refactoring, and efficient multi-file and code generation workflows. Proactively identify and resolve complex technical problems across distributed systems, applying strong debugging and analytical skills to drive root-cause resolution. Troubleshoot production issues, participate in incident response and root-cause analysis, and drive improvements that reduce time to detect and time to mitigate. Apply SDLC and DevSecOps practices to deliver secure, reliable, auditable, and maintainable software; follow and help refine coding standards, architectural patterns, and the team's Definition of Done.

Additional Job Responsibilities:

Contributes to the evaluation and adoption of emerging technologies relevant to identity, security, and healthcare software development. Contribute to documentation for software designs, architecture decisions, operational runbooks, integration guides, and developer onboarding materials. Monitor service performance, reliability, and security signals to proactively identify issues and optimization opportunities. Stay informed on advancements in AI (tools and techniques) as they relate to software engineering, and demonstrate initiative in experimenting with emerging tools and techniques to identify practical improvements in efficiency gains, productivity improvement, and developer experience. Coach and mentor junior and mid-level engineers through knowledge sharing, pairing, and constructive code reviews. Participate in technical design discussions, analyze trade-offs, and recommend pragmatic solutions for scalability, resilience, security, and developer experience. Be accountable for outcomes, including delivering on commitments, maintaining quality standards, and following through on team agreements.

Expected Education & Experience:

Bachelor's degree in Computer Science, Software Engineering, or a related field, or equivalent professional experience. 3 to 6 years of progressive professional experience in software engineering roles within a product development environment. Strong software engineering skills with a focus on SDLC and DevSecOps-driven delivery, with a track record of independently delivering high-quality features in complex systems. Proficiency in Java and Spring Boot, with experience building RESTful services and secure backend systems; working knowledge of Node.js is a plus. Experience designing and maintaining distributed services, APIs, and integration patterns in cloud environments. Familiarity with authentication and authorization concepts such as OAuth 2.0, OpenID Connect, SAML, token-based security, and service-to-service access patterns, along with cloud environments, Infrastructure as Code, and CI/CD tooling such as AWS, Terraform, Git, Jenkins, or Harness. Strong analytical, problem-solving, and communication skills; familiarity with AI technologies and their application in software development workflows. A collaborative mindset with demonstrated ability to mentor peers and contribute to a positive team culture. Experience in healthcare technology, compliance-sensitive systems, or regulated environments is a plus. Familiarity with policy decision and enforcement models such as OPA/Rego, fine-grained authorization, multi-tenant authorization, API gateways, audit logging, and secrets or key management is a plus. Expected Compensation $119,000 - $203,000 The base salary range shown reflects the full range for this role from minimum to maximum. At athenahealth, base pay depends on multiple factors, including job-related experience, relevant knowledge and skills, how your qualifications compare to others in similar roles, and geographical market rates. Base pay is only one part of our competitive Total Rewards package - depending on role eligibility, we offer both short and long-term incentives by way of an annual discretionary bonus plan, variable compensation plan, and equity plans.

About athenahealth Our vision:

In an industry that becomes more complex by the day, we stand for simplicity. We offer IT solutions and expert services that eliminate the daily hurdles preventing healthcare providers from focusing entirely on their patients — powered by our vision to create a thriving ecosystem that delivers accessible, high-quality, and sustainable healthcare for all.

Our company culture:

Our talented employees — or athenistas, as we call ourselves — spark the innovation and passion needed to accomplish our vision. We are a diverse group of dreamers and do-ers with unique knowledge, expertise, backgrounds, and perspectives. We unite as mission-driven problem-solvers with a deep desire to achieve our vision and make our time here count. Our award-winning culture is built around shared values of inclusiveness, accountability, and support.

Our DEI commitment:

Our vision of accessible, high-quality, and sustainable healthcare for all requires addressing the inequities that stand in the way. That's one reason we prioritize diversity, equity, and inclusion in every aspect of our business, from attracting and sustaining a diverse workforce to maintaining an inclusive environment for athenistas, our partners, customers and the communities where we work and serve. What we can do for you: Along with health and financial benefits, athenistas enjoy perks specific to each location, including commuter support, employee assistance programs, tuition assistance, employee resource groups, and collaborative workspaces — some offices even welcome dogs. We also encourage a better work-life balance for athenistas with our flexibility. While we know in-office collaboration is critical to our vision, we recognize that not all work needs to be done within an office environment, full-time. With consistent communication and digital collaboration tools, athenahealth enables employees to find a balance that feels fulfilling and productive for each individual situation. In addition to our traditional benefits and perks, we sponsor events throughout the year, including book clubs, external speakers, and hackathons. We provide athenistas with a company culture based on learning, the support of an engaged team, and an inclusive environment where all employees are valued. Learn more about our culture and benefits here: athenahealth.

com/careers https:

//www.athenahealth.com/careers/equal-opportunity United by our mission and driven by our entrepreneurial spirit, our work at athenahealth is collaborative, transformative, and above all, it's meaningful. Our employees take pride in using technology and data-driven insights to inspire changes that will make the U.S. healthcare system better for everyone, including your friends, family and maybe even you. Notice to

Job Seekers/Job Candidates:

Recruitment Fraud Alert Please be aware of questionable job offers that are not affiliated with athenahealth. athenahealth has been made aware of unauthorized career opportunities offered by individuals posing as representatives of larger U.S. companies, including athenahealth. The fictitious jobs are advertised on employment-search websites, such as Indeed.com and Craigslist.com, and prospective employees are required to share their personal and financial information (e.g. credit card, bank information), provide copies of their government-issued identification, and/or send money for application fees, processing charges or work permits. The victims who are told they are "hired" are often instructed to deposit a check (which is later returned as fraudulent) into their own account and to forward overpayment to individuals - usually via wire transfer.

Important information for job seekers:

athenahealth has a formal application process and we do not request you to interview on a Google Hangout or via text messaging. athenahealth will never request money for the opportunity to apply or work for athenahealth. athenathealth does not require completion of tax forms, bank account or credit card information as part of the recruiting process. If you feel that you have been a victim of such a scam, please send an email to: askhr@athenahealth.com