Hidden Roles
Get Started
Back to all jobs
PointClickCare logo

Principal Software Engineer - Authorization Platform

PointClickCare
MississaugaCAD 156k–174k/yrHybrid1mo ago
Apply
Employment
Full-time
Seniority
Staff

About the role

  • Build robust platform services supporting clinical operations.
  • Partner with product and clinical teams to understand and solve real workflow challenges.
  • Drive architectural decisions for business platform services.
  • Own the reliability and performance of critical healthcare solutions.
  • Mentor team members on modern engineering practices.
  • Lead the design and rollout of an externalized authorization platform spanning RBAC, ABAC, and ReBAC models, choosing the right model for each domain (clinical data, administrative actions, cross-tenant sharing, etc.).
  • Define our PDP / PEP / PIP / PAP architecture, including policy authoring, distribution, caching, and decision logging for audit.
  • Extend our current homegrown authorization solution and, where it makes sense, augment it with reputable OSS frameworks as pragmatic evolution over rip-and-replace.
  • Partner with security, compliance, and product to translate HIPAA, consent, and least privilege requirements into enforceable policy
  • Establish patterns for extending authorization to AI agents and automated actors (scoped credentials, delegated authority, human-in-the-loop approvals)
  • Strong track record building and shipping production software in modern languages (Java, Python, or similar).
  • Deep understanding of cloud-native architecture and distributed systems design patterns.
  • Expertise in design, optimization, and scaling for relational (SQL) database systems, bonus points for NoSQL database systems.
  • Experience designing and implementing RESTful APIs and microservices.
  • Proficiency with test-driven development, automated testing, and maintaining high code quality.
  • Hands-on experience with modern frontend frameworks, primarily React.
  • Working knowledge of CI/CD pipelines and infrastructure-as-code practices.
  • Experience with production observability, monitoring, and performance optimization tools.
  • Deep working knowledge of authorization models — RBAC, ABAC, and ReBAC and clear judgment on where each fits.
  • Hands-on experience designing PDP / PEP / PIP / PAP separations, including policy decision caching, and failure-mode design (fail-open vs. fail-closed, with explicit reasoning for each surface).
  • Practical experience with one or more OSS authorization frameworks in production.
  • Strong grasp of AuthN ↔ AuthZ boundaries
  • Experience authoring policy-as-code.
  • Awareness of how authorization is evolving for AI agents and autonomous systems — comfortable reasoning about non-human principals, delegated authority, ephemeral identity, and the limits of current standards in agentic contexts.
  • Comfortable using AI-augmented development tools (e.g., GitHub Copilot, Claude Code) as part of your workflow.
  • Experience applying AI tools throughout the development lifecycle from requirements analysis, documentation to incident response.
  • Strong code review skills demonstrated through giving and receiving constructive feedback.
  • Experience with Git workflows and collaborative development practices.
  • Ability to balance feature delivery with system reliability and technical excellence.
  • Comfortable with on-call responsibilities and incident response.
  • Experience building and scaling SaaS platforms.
  • Track record of mentoring engineers or leading technical initiatives.
  • Background with Spring Boot and Java ecosystem.
  • Experience with Azure cloud services and Kubernetes (AKS).
  • Experience in healthcare technology or regulated industries.
  • Understanding of HIPAA compliance and handling sensitive data 
  • Front-End: React, Micro-Frontends,Material-UI
  • Backend: Java, Spring Boot
  • Data: PostgreSQL, MSSQL, Redis
  • CI/CD: GitHub Actions, Jenkins
  • Infrastructure: Azure, AKS, Terraform
  • AI Tooling: Claude Code 

Perks & benefits

  • Paid Time Off

731,000+ hidden jobs like this

PointClickCare and thousands of companies post here first — often days before LinkedIn or Indeed. Your first 5 applications are free; go Pro to apply without limits.

Everything Pro unlocks:

  • Unlimited applications — free stops at 5
  • Track every application in one place
  • Apply straight to the source, one click
  • Save & organize roles you love
  • Roles pulled from company boards before the big sites

Weekly

$9.99
$4.99/week

For an active search. Cancel anytime.

Get Weekly
Most popular

Monthly

$24.99
$12.99/month

The smart pick. Save 35% vs weekly.

Get Monthly

Lifetime

$99
$49.99once

Pay once. Every future feature, forever.

Get Lifetime