Senior Principal Identity Access Management Engineer

At Medtronic you can begin a life‑long career of exploration and innovation, while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world.

Medtronic is seeking a skilled Identity and Access Management IT Engineer / Architect to join our dynamic team. This role focuses on supporting application development and run support for our manufacturing digital transformation solutions in the areas of identity and access management, encryption, authentication, certificate management, and Kubernetes orchestration. The ideal candidate will have a strong background in these areas and a passion for ensuring secure and efficient IT operations.

• Authentication as primary area of knowledge
• Experience with identity providers such as Keycloak for authentication and authorization.
• Deep knowledge of identity protocols such as OAuth 2.0, OIDC, and SAML 2.0
• Develop and support authentication mechanisms, including multi‑factor authentication (MFA).
• Troubleshoot and resolve authentication‑related issues.
• Stay updated with the latest authentication technologies and best practices.
• Provide guidance and recommendations for constrained IIoT device authentication and access policies.

• Design, implement, and manage identity management solutions for custom developed applications.
• Support user provisioning, de‑provisioning, and access management processes and automation.
• Ensure compliance with identity and access management policies.

• Implement and maintain encryption protocols to protect sensitive data.
• Manage encryption keys and ensure secure storage and access.
• Monitor and audit encryption processes for compliance and effectiveness.

• Support containerized application development and deployment.
• Monitor and optimize Kubernetes performance and scalability.
• Improve service availability across cloud and ground clusters.

• Proficient in administering Linux systems (e.g., Ubuntu, CentOS, RHEL, Debian) in production environments.
• Strong knowledge of Linux internals including system calls, process management, networking, and filesystems.
• Experience with system monitoring and performance tuning on Linux servers.

• Manage the lifecycle of digital certificates, including issuance, renewal, and revocation.
• Ensure secure storage and handling of certificates and implement intermediate certificate issuers.
• Support developers in automation for certificate rotation.
• DevOps: Implements GitOps workflows for Kubernetes using declarative infrastructure in Git.
• Manages manifests, Helm charts, or Kustomize in version control.
• Automates reconciliation between Git and clusters for consistent deployments.
• Monitors and troubleshoots GitOps deployment issues, enforcing drift detection with Git‑centric tools.
• Designs, builds, and maintains scalable CI/CD pipelines using GitLab CI or similar tools.

• Provide ongoing support and maintenance for applications and services.
• Troubleshoot and resolve technical issues in a timely manner.
• Collaborate with development teams to ensure smooth operation of applications.
• Mentor and develop offshore support team members.

• Bachelor’s degree in computer science, Information Technology, or a related field.
• Four years of experience in IT engineering, with a focus on identity management, encryption, authentication, certificate management, and Kubernetes orchestration.
• Strong understanding of security best practices and compliance requirements.
• Experience with cloud platforms such as AWS, Azure, or Google Cloud.
• Proficiency in scripting languages (e.g., Python, Bash) and automation tools.
• Excellent problem‑solving skills and attention to detail.
• Strong communication and collaboration abilities.
• Certifications in relevant technologies (e.g., Certified Kubernetes Administrator, CISSP).
• Experience with DevOps practices and tools (e.g., CI/CD pipelines, GitOps).
• Familiarity with microservices architecture and containerization technologies.

The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position.

Medtronic offers a competitive Salary and flexible Benefits Package. This position is eligible for a short‑term incentive called the Medtronic Incentive Plan (MIP).

We lead global healthcare technology and boldly tackle the most challenging health problems facing humanity by searching for and finding solutions.

It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.