Title: Senior Identity and Access Management Engineer Location: Olympia United States Job Description: The mission of Washington Health Benefit Exchange (Exchange) is to radically improve how Washington residents secure health insurance through innovative and practical solutions, an easy-to-use customer experience, our values of integrity, respect, equity and transparency, and by providing undeniable value to the health care community. The Exchange is a public-private partnership that operates Washington Healthplanfinder, the eligibility and enrollment portal used by one in four Washington residents to obtain health and dental coverage. Through this platform, and with support from a Customer Support Center and statewide network of in-person navigators and brokers, individuals and families can shop, compare and enroll in private, qualified health plans (as defined in the Affordable Care Act) or enroll in Washington Apple Health, the state Medicaid program. The Exchange embraces the following equity statement adopted by our Board of Directors: Equity is fundamental to the mission of the Washington Health Benefit Exchange. The process of advancing toward equity and becoming anti-racist is disruptive and demands vigilance to dismantle deeply entrenched systems of privilege and oppression. While systemic racism is a root cause of many societal inequities, we must also use an intersectional approach to address all forms of bias and oppression, which interact with and often exacerbate racial inequities. To be successful, we must recognize the socioeconomic drivers of health and focus on people and places where needs are greatest. As we listen to community, we must hold ourselves accountable to responding to recommendations to remedy inequitable policies, systems, or practices within the Exchange's area of influence. Our goal is that all Washingtonians have full and equal access to opportunities, power and resources to achieve their full potential. SUMMARY The Senior Identity and Access Management Engineer position focuses on designing, developing, and supporting customer IAM solutions using PingOne IdentityCloud to provide secure and seamless digital experiences to customers. Key responsibilities include managing user lifecycle automation, implementing access controls, integrating applications with IAM systems through industry-standard protocols, and enhancing security via Single Sign-On (SSO), Multi-Factor Authentication (MFA), and risk-based policies. The position also involves troubleshooting authentication flows, ensuring regulatory compliance, and collaborating with Information Technology (IT), security, and product teams to deliver robust IAM integrations across cloud platforms.•Design, develop, implement, and support customer IAM solutions utilizing PingOne IdentityCloud, and support transition to Okta where applicable. - Build and maintain automated processes for user lifecycle management, including provisioning, deprovisioning, and role- or attribute-based access controls. - Develop and maintain custom connectors, workflows, APIs, and scripts to integrate IAM systems with enterprise applications. - Integrate web, mobile, and API-based cloud applications with IAM platforms using protocols such as SAML, OAuth, and OIDC. - Implement SSO, adaptive authentication, MFA, and risk-based policies to enhance security and user experience. - Configure and troubleshoot federation and OAuth/OIDC flows, and ensure secure session handling across systems. - Implement and manage workflows for customer registration, login, account recovery, and profile management. - Support migration of CIAM capabilities from PingOne Identity Cloud to Okta, including configuration, testing, validation, troubleshooting, deployment. - Assist with migration planning, architecture design, and implementation of access and identity flows in Okta. - Ensure IAM architecture and solutions adhere to security, privacy, regulatory, and consumer data protection requirements. - Work closely with IT, Security, and Delivery teams to ensure secure IAM solutions across all cloud systems. - Collaborate with delivery teams, product owners, and scrum masters to integrate IAM features into application releases. - Participate in sprint planning, backlog refinement, and technical design discussions to ensure identity requirements are considered early in development. - Support IAM changes during sprint release cycles, ensuring thorough testing and validation. - Coordinate IAM-related changes with DevOps and change management teams to minimize disruptions during deployments. - Provide guidance to IT and Delivery teams on secure authentication patterns, token usage, and best practices for IAM. - Ensure IAM solutions align with enterprise security policies, identify gaps, and provide progress updates. - Monitor IAM environments for authentication issues, anomalies, and performance bottlenecks. - Document IAM architectures, integrations, and operational procedures. - Execute and manage access recertification campaigns, ensuring timely completion and accurate audit reporting. - Implement and maintain least-privilege and segregation-of-duties controls across IAM systems. - Leverage microservices and API architectures to design, build, and manage IAM functionalities, enabling secure and scalable authentication, authorization, and service access controls. - Serve as the primary technical contact with the Ping Identity support team to address environment-related issues, tenant performance concerns, incidents, and troubleshooting. - Track vendor releases, platform updates, and new capabilities for adoption within the organization. - Coordinate maintenance windows, patch updates, and feature releases with the Change Advisory Board, Delivery Team, and Ping Identity vendor. - Validate vendor fixes in lower environments before production rollout. - Monitor authentication health, login trends, and token issuance metrics. - Perform root cause analysis for authentication and authorization incidents. - Assist in investigations of security incidents involving identity compromise. - Maintain detailed logging and audit trails aligned with regulatory requirements. - Monitor IAM logs and integrate events with SIEM platforms to support security monitoring and incident response. - Support audit activities by providing technical guidance and documentation, and act as a liaison for internal and external audit reviews as needed. - Develop automation scripts (e.g., Python, Java, or similar) to streamline IAM processes. - Leverage PingOne REST APIs for configuration management tasks. - Support CI/CD deployment of IAM configurations. - Support infrastructure-as-code initiatives where applicable. - Assist the IAM Lead and Information Security Manager (ISM) in reviewing IAM capabilities and defining a roadmap for IAM enhancements. - Support the development and implementation of information security awareness and training initiatives. - Stay current on industry trends, emerging threats, and relevant technologies, and communicate key insights to the IAM Lead and ISM. - Provide regular briefings to the IAM Lead and ISM, escalating issues and blockers as necessary. - Perform other duties as assigned within the scope of IAM. Required: - Minimum of seven (7) years of experience in Customer Identity and Access Management (CIAM) implementation and support, with a minimum of three (3) years within that experience focused on implementing and supporting CIAM solutions using PingOne Identity Cloud. - Hands-on experience with Okta including SSO, MFA, federation, application integrations, and identity lifecycle management. - Experience with IAM migration projects. - Hands-on experience implementing authentication and authorization protocols including OAuth, OIDC, and SAML. - Experience integrating web, mobile, and API applications with IAM platforms using token-based authentication mechanisms. - Experience in implementing SSO, MFA, federation, and identity lifecycle management. - Familiarity with customer registration, authentication journeys, and identity flows in CIAM platforms. - Hands-on software development or scripting experience using languages such as Java, JavaScript, Python, or similar. - Demonstrated knowledge of IAM best practices, including risk-based authentication and consumer data protection strategies. - Experience supporting IRS/CMS or other relevant audits in the context of IAM. - Experience working in Agile/Scrum environments, collaborating with product owners, scrum masters, and development teams during sprint cycles. - Familiarity with DevOps processes, change management, and release coordination to support secure and stable deployments. - Understanding of secure authentication patterns, token lifecycle management, and identity integration best practices. - Experience working with enterprise security policies, identity governance practices, and compliance requirements. - Demonstrated communication and collaboration skills with the ability to provide technical guidance to IT, delivery teams, and developers on secure IAM integration. - Minimum of seven (7) years of experience in IAM, including work with Customer Identity and Access Management (CIAM) platforms. - Experience working with REST API integrations for IAM services. - Knowledge in integrating IAM systems with API gateways and backend services to ensure secure access control. - Experience managing IAM platform configuration changes and automated deployments across development, staging, and production environments. - Experience integrating IAM platforms with SIEM or security monitoring tools for authentication and identity event monitoring. Desired: - Experienced in creating comprehensive reports and dashboards to communicate findings, track remediation progress, and provide visibility to management and relevant teams. - Experience participating in sprint planning, backlog refinement, and technical design discussions to integrate identity and authentication requirements into application development. - Motivated self-starter with initiative to take independent action and accept responsibility for your actions. - Excellent understanding of emerging threats in the IAM landscape. - Hands-on experience with CI/CD pipelines for IAM configuration deployments, including tools such as Jenkins. - Experience using source control and deployment workflows with GitHub for managing IAM configuration scripts or integration code. - Familiarity with DevOps practices and infrastructure automation supporting IAM or CIAM platform changes. - Experience troubleshooting authentication failures, federation issues, token validation issues, and identity integrations. - Demonstrates strong interpersonal and collaboration skills, effectively partnering with internal management, staff, and cross-functional teams as well as external partners and vendors. - Ability to prioritize identified gaps and collaborate with cross-functional teams to ensure timely remediation and effective risk mitigation. - Demonstrates a proactive approach by consistently identifying potential blockers and communicating them early, while maintaining a solutions-focused mindset to facilitate continued progress. - Creative and proactive problem solver; must possess the ability to make independent decisions, set work priorities, and address issues promptly. - Experience in developing, reviewing, and updating security standards, procedures, awareness, and training. - Demonstrated knowledge of secure software development lifecycle (SDLC) and secure architecture design principles. APPLICATION INSTRUCTIONS This position will be open until we find a suitable number of candidates to review. If interested, please submit an application (CLICK HERE) as soon as possible. The Exchange reserves the right to close the recruitment at any time. SALARY INFORMATION Full Salary Range: $98,842.00 to $148,263.00 annually, with midpoint at $123,552.00. Hiring Range: $ 113,668.00 and $123,552.00 annually. This is an estimate of where a qualified candidate can expect to receive an offer. The actual salary offer will consider candidate experience, skills, qualifications, internal equity, and the market. Our compensation policy reserves the salary range above the midpoint for employees who are meeting and exceeding expectations and for growth and development, up to the maximum. BENEFITS Take a peek at our benefits package. WORKING CONDITIONS Core business hours are 8:00 a.m. to 5:00 p.m., Monday through Friday. There are times where irregular hours will be required. The preferred duty station is our Olympia, Washington headquarters. The nature of this role relies heavily on remote and in-person collaboration. While a hybrid remote and on-site schedule may be considered, the position will require flexibility to allow for in-office availability as business needs dictate. Travel requirements will be limited, however there may be occasions where an employee is required to travel and work irregular hours to attend meetings or trainings. Duties of this position require the use of standard office furniture and equipment, including setup for remote work. The employee is responsible for providing and maintaining a safe, ergonomic, and secure workspace at their remote location. The working conditions and physical demands are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. SPECIAL REQUIREMENTS A criminal background screen will be conducted for candidates under final consideration, and if hired, every five years of employment where highly sensitive data is processed or maintained by the position. The result of this background screen must meet the Exchanges eligibility standards. OTHER INFORMATION The above statements are intended to describe the general nature and levels of work being performed. They are not intended to be construed as an exhaustive list of responsibilities, duties and skills of personnel so classified. This is not an employment agreement or contract. Management has the exclusive right to alter this job description at any time without notice. The Washington Health Benefit Exchange is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, marital status, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. We participate in E-Verify. You can view the Department of Justice's Right to Work poster here.

Role Description - Develop and maintain scalable web applications using modern full stack technologies. - Collaborate with cross-functional teams to define, design, and ship new features. - Ensure the performance, quality, and responsiveness of applications. - Identify and correct bottlenecks and fix bugs. - Help maintain code quality, organization, and automation. - Participate in code reviews and provide constructive feedback to peers. - Stay up-to-date with emerging technologies and industry trends to continuously improve development processes. Qualifications - Bachelor’s degree in Computer Science, Engineering, or a related field. - Proven experience as a Full Stack Engineer or similar role. - Proficiency in front-end technologies such as HTML, CSS, JavaScript, and frameworks like React or Angular. - Strong knowledge of back-end languages such as Node.js, Python, or Java. - Experience with databases such as MySQL, MongoDB, or PostgreSQL. - Familiarity with version control systems like Git. - Excellent problem-solving skills and attention to detail. - Strong communication and teamwork abilities. Benefits - Competitive salary and performance-based bonuses. - Comprehensive health and wellness benefits. - Opportunities for professional development and career advancement. - Flexible working hours and remote work options. - Access to cutting-edge technology and resources. - Collaborative and innovative work environment. - Employee discounts on Tencent products and services. Company Description

Title: Principal Engineer - Transmission Planning Carolinas Location: Raleigh United States Job Description: Important Application Submission Information In order to ensure your application is successfully received before the job posting expires, please submit your application by 11:59 PM on Sunday, June 21, 2026 More than a career - a chance to make a difference in people's lives. Build an exciting, rewarding career with us - help us make a difference for millions of people every day. Consider joining the Duke Energy team, where you'll find a friendly work environment, opportunities for growth and development, recognition for your work, and competitive pay and benefits. Position Summary The Principal Engineer position is the expert level of the Engineering classification hierarchy. Employees at this level solve the most complex problems, manage work and provide oversight in engineering areas of specialization, with wide latitude for un-reviewed work. Assignments at this level require the highest level of critical thinking to resolve high-impact, complex and /or cross functional problems. The Principal Engineer is expected to have advanced skills, work independently and is considered an industry expert in their discipline or in a particular field. Employees in the Principal Engineer position consult on strategic and highly complex work. The Principal Engineer will increase external industry engagement with federal and state regulations, specifically those associated with large loads and inverter-based resource penetration, and influence development of industry standards. This role will actively participate in SERC Engineering and Technical meetings, NERC workshops, and a variety of industry forums including NATF, EEI, EIPC, EPRI, IEEE and local/regional planning organizations - CTPC and SERTP. The role will support drafting of industry or NERC standards or compliance filings for FERC Orders. The role will help evolve planning in use of probabilistic, scenario-based approaches and multi-value benefits justification for projects, latest technology trends, study methodologies, and modeling practices. The role will use out-of-the-box thinking, work with other grid planning NERC standards SMEs and Industry topic SMEs to educate organization of strong technical understanding and develop new processes. The role will use critical evaluation to provide technical leadership and guidance to enable planning engineers to comply with NERC standards, regulations and internal processes. The role would support organization in performing transmission studies if needed, develop transmission solutions and interface with other groups and Duke Energy customers. Responsibilities - Provides engineering/technical expertise and guidance in the identification, analysis and resolution of high impact, complex and/or cross-functional problems at a corporate or industry level in their area of expertise, - Ensures accomplishment of business goals and objectives through effective planning, organizing, estimating, scheduling and monitoring of work activities where little to no standardization exists; handles unique situations Prepares thorough and accurate technical reports, correspondence, documentation, calculations and sketches with the ability to conduct analysis and recommend process enhancements and standards relative to a corporate or industry level in their field of expertise, - Prepares thorough and accurate technical reports, correspondence, documentation, calculations and sketches with the ability to conduct analysis and recommend process enhancements and standards relative to a corporate or industry level in their field of expertise, - Conducts engineering and related studies with full technical responsibility for planning and coordinating high-impact complex projects, - Applies extensive technical expertise to manage projects and disseminate knowledge to enhance the company's competitive position, - Possesses expert knowledge of the organization, - Demonstrates a mastery of existing and emerging organizational technologies, issues, processes and practices' - Develops positive working relationships to effectively coordinate work activities, - Demonstrates effective verbal and written communication skills, - Maintains accurate records and files, - Supports the company's goals and represents the company positively and professionally, - Coaches and mentors other engineering and non-degreed engineering professionals, and - Provides technical leadership and direction on a corporate or industry level in their field of expertise Basic/Required Qualifications - Must have obtained Bachelor of Science in Engineering from an ABET accredited program AND PE AND 12 years minimum engineering experience - A Master's degree in Engineering will be considered in lieu of the B.S. Engineering degree - Nuclear may require additional requirements, such as either Professional Engineer registration, a Masters Degree in a technical discipline, SRO certification, an RO or SRO license, or Technical Nuclear certification - Power Generation Operations may substitute an applicable PhD Additional Preferred Qualifications - Masters or PhD in Electric Power Systems - Extensive transmission planning experience - Experience with transmission planning analysis software such as PSSE, TARA, PSCAD applications supporting the advanced functions. - Experience pertinent to jurisdictional Transmission Planning processes, and associated FERC Orders and NERC Standard RequirementsExperience with developing new corporate or industry standards and compliance filings - Experience working in the Electric Utility power transmission systems and understanding of Transmission work processes - Have working knowledge of NERC Reliability Standards, FERC Orders and Tariff - Understanding of Energy Control Center and Grid Management processes - Understanding EMS/SCADA substation and field device operations characteristics - Must be able to collaborate with external organizations and across multiple internal departments - Demonstrated advance knowledge and aptitude in applicable computer systems - Demonstrated effective communication skills with ability to relate to all types of people including state regulators and large stakeholder groups - Demonstrated effective conflict management skills - Demonstrated champion for working safely in an injury free culture - Demonstrated effective interpersonal skills - Processes Core business process understanding and process development experience - Demonstrated ability to implement and lead others through change - Mastery of existing and emerging organizational technologies, issues, processes and practices. - Demonstrated leadership within Duke Energy and in the Industry. - Skilled in principles of project management. - Department specific experience applicable to the hiring department. Working Conditions - Some business units may require visits to field sites and/or plants - Hybrid Mobility Classification - Work will be performed from both remote and onsite locations after the onboarding period. However, hybrid employees should live within a reasonable daily commute to the designated Duke Energy facility. #LI-JM1 Travel Requirements 5-15% Relocation Assistance Provided (as applicable) Yes Represented/Union Position No Visa Sponsored Position No Please note that in order to be considered for this position, you must possess all of the basic/required qualifications. Privacy Do Not Sell My Personal Information (CA) Terms of Use Accessibility

• Designing and evolving pipelines that enable efficient sharing of technology, systems, and tools across multiple projects. • Supporting and guiding teams through code and system merging processes, minimizing conflicts and ensuring consistency. • Driving and supporting refactoring efforts to improve modularity, maintainability, and reusability of existing systems. • Collaborating with engineers and technical leaders to identify opportunities for standardization and consolidation. • Reviewing architectures and implementations with a focus on scalability, modularity, and long-term sustainability. • Acting as a mentor and consultant for teams on best practices related to code sharability and cross-project development. • Driving adoption of shared solutions and reducing duplication of effort across the studio. • Identifying fragmentation risks and proactively proposing improvements to the overall tech ecosystem. • Contributing directly to shared systems, especially in areas that unblock multiple teams, and re-architecting solutions to be reusable across different contexts.