Role Description We're looking for a Software Engineer with Identity and Access Management (IAM) domain experience to support and enhance an enterprise OpenID Connect platform used across a large application ecosystem. This is primarily an application engineering role, not a Kubernetes, DevOps, SRE, or infrastructure engineering position. You'll work on the identity platform itself, investigating authentication and authorization issues, onboarding applications, maintaining Node.js/TypeScript services, implementing platform enhancements, and troubleshooting complex OAuth2 and OpenID Connect workflows. The ideal candidate has hands-on experience building, supporting, or extending identity platforms and a strong understanding of: - OAuth2 - OpenID Connect - JWTs - Claims - Scopes - MFA - Identity federation You should be comfortable reading and modifying application code, debugging production issues, and diagnosing problems across application, data, and infrastructure layers. This role operates with core collaboration hours of 6:00 PM – 12:00 AM IST to provide overlap with global teams. Outside of core hours, work is flexible and outcome-focused. Qualifications - 2–4 years of experience working with OAuth2 and OpenID Connect - Understanding of Authorization Code Flow, Client Credentials Flow, JWT, PKCE, Claims and Scopes, MFA concepts, and Identity Federation Requirements - Node.js and TypeScript experience - REST API development - Git-based workflows - Kubernetes fundamentals - Linux administration - Monitoring and troubleshooting skills - Basic Elasticsearch knowledge Nice to have - Experience with oidc-provider, Keycloak, Zitadel, or Authentik - Active Directory or Azure AD / Entra ID Benefits - Highly competitive salary - Ability to work anywhere in the world - Dynamic team environment - Engagement in interesting challenges in the technology/infrastructure space

• Write high-quality, elegant, effective code • Share your learnings with the team from keeping up to date with industry trends and technology developments • Collaborate with the Scrum Master, Developer in Test, and Product Owners on story refinement and prioritization • Ensure code committed meets the definition of done • Identify and share relevant architectural patterns • Coach the team in the avoidance of anti-patterns • Lead by example in the use of test automation • Ensure the team keeps the CI/CD pipeline green • Guide the team in ensuring all code deployed to the trunk is in a shippable state • Perform code reviews for security, accuracy, and functionality • Create a culture of metrics and data to drive continuous improvement • Provide operational support for your products • Ensure the team meets its commitments and goals for each sprint, delivering high-quality code into production • Coach the team in the practice of continual code quality improvement • Ensure relevant regulatory and compliance goals are met • Work closely with Infosec to ensure Security's ‘shift left’ • Collaborate closely with the Operations team, promoting a DevOps culture • Mentor your fellow software engineers to help them achieve more than they thought possible

• Analyze the underlying schema of the WellSky platform. • Identify primary/foreign keys and map the complex relationships between clients, caregivers, services, and demographic data. • Create clear, comprehensive Entity Relationship Diagrams (ERDs) and a functional Data Dictionary for future internal use. • Translate business requirements into complex SQL queries to extract accurate datasets. • Utilize Python to automate data extraction, transformation, and formatting processes. • Develop clear Standard Operating Procedures (SOPs) and runbooks. • Conduct a handoff training session with staff to ensure they can independently execute and maintain the reports you build.

• Own outcomes end-to-end, wherever you're deployed. • Frame the problem, design it, ship it, own the metric. • Descope to the cheapest version that works. • Prototype in days. • Stay close to customers. • Shadow sales and support, join advisory conversations, and let customer reality drive technical decisions. • Propose what to build, defer, and kill. • Own your domain and share it - its interfaces, reliability, performance, and security, including on-call for the systems you own. • Consent and PII handling are central to customer trust. • Bring patterns, tooling, and hard-won context back to the wider org rather than hoarding them. • Build and scale both the product surface and the platform beneath it. • Ship responsive, accessible React interfaces with a strong UI/UX eye, back them with Node.js and Python services and APIs, and keep the cloud batch platform and data pipelines that deliver multi-tenant products reliable as they scale. • Architect AI-driven leverage. • Build AI-assisted workflows that hold up, evolve the team's practices as tooling changes, and look for product wins AI unlocks. • Multiply the teams you touch. • Mentor on judgment and product sense, not just syntax. • Write decision memos and ADRs. Enable Product and Design to self-serve.