Arcadia is dedicated to happier, healthier days for all. We believe that there is a better healthcare world – one powered by data. Our platform transforms complex, diverse data into a unified foundation for health, helping organizations deliver better care, boost revenue, and lower costs.
We’re a team of fiercely driven individuals committed to making healthcare more sustainable—and we’re looking for passionate people to help us get there.
For more information, visit arcadia.io.
Why This Role Is Important to Arcadia
Arcadia’s mission is to improve healthcare outcomes through better data and smarter technology. A critical pillar of this mission is the User Management system, which governs authentication, authorization, and user provisioning across all Arcadia’s applications.
We’re looking for a Principal Software Engineer to take technical ownership of this area—leading the rearchitecture and implementation of a robust, scalable, and secure access control framework. By the time you join, the team will have completed key architectural planning decisions; your focus will be on translating that architecture into reality.
Beyond the core platform work, this role will drive adoption of AI-augmented engineering practices across the team—bringing modern agentic development approaches that raise the standard for how we build software.
What Success Looks Like
In 3 months
Gain deep familiarity with Arcadia's existing User Management system — Auth0 tenants, Chimera authorization model, Hydra session management, and event-driven provisioning workflows
Complete design handoff for the new access and grants architecture, collaborating closely with product and platform teams to understand business and security requirements
Begin staged implementation of the new system, focusing on core backend services and foundational APIs
In 6 months
Lead the implementation of a centralized access control framework that replaces legacy patterns across the platform
Drive integration of new user and access models into key Arcadia applications with zero-downtime migration for internal and external users
In 12 months
Own and operate a fully modernized User Management system that delivers secure, reliable, and high-performance authentication and authorization at scale
Define and begin executing on a unified access control strategy across services — establishing the roadmap to eliminate duplicated auth logic and reduce integration surface area
Mentor engineers and guide teams across Arcadia in secure, distributed, and scalable system design — including adoption of AI-augmented development practices
What You'll Be Doing
Leading the rearchitecture and modernization of the User Management platform — authentication (Auth0, SAML 2.0, OAuth2, JWT), authorization, access control, and user provisioning across Arcadia products
Building backend services and APIs across a polyglot stack (TypeScript/NestJS, Go, Python) supporting secure, multi-tenant access models
Owning Auth0 tenant management, cross-application SSO, and session infrastructure — including SAML integrations, identity provider relationships, and Hydra session management
Managing cloud infrastructure through Infrastructure-as-Code (Terraform/Terragrunt) and AWS-native services (Lambda, API Gateway, DynamoDB, Cognito, SNS)
Defining SLOs and designing telemetry for key features, ensuring robust monitoring, canary, and standard rollout strategies — with shared ownership of on-call reliability
Partnering with cross-functional stakeholders — including Product, Security, and SRE — to ensure alignment between technical execution and organizational priorities
Providing leadership, mentorship, and clarity in complex, ambiguous problem spaces
What You'll Bring
10+ years of professional full-stack software engineering experience with a focus on backend and distributed systems
Proven success building and scaling identity and access management systems, including authentication (SAML 2.0, OAuth2, JWT) and fine-grained authorization frameworks
Expertise in TypeScript, Node.js/NestJS, and modern React/Angular development for full stack delivery
Hands-on experience with agentic AI-assisted development — actively using agentic coding tools, context-engineered environments, and AI-augmented workflows, with a track record of independently shipping AI-native tooling and defining how teams leverage AI strategically
Strong command of cloud architecture (AWS preferred) and IaC practices with Terraform
Deep experience with relational and NoSQL data stores, designing for vertical & horizontal scalability and high availability
Demonstrated ability to own complex systems from design through rollout and post-release operation, with strong attention to quality and reliability
Strong communication, collaboration, and architectural reasoning skills — able to work across engineering, product, SRE, and security teams while balancing pragmatism with long-term technical health
Would Love for You to Have
Experience modernizing identity and access systems or other critical, cross-cutting platform services
Familiarity with API gateway design, centralized JWT validation, and event-driven architectures
Exposure to data streaming or message-driven systems (Kafka, Kinesis, SNS/SQS)
Experience in healthcare technology, HIPAA compliance, or other regulated data environments
Polyglot engineering experience — comfortable working across multiple languages and frameworks (e.g., Python, Java, Go) when solving complex distributed system challenges
Experience building internal developer tooling, custom agents, or platform-level AI integrations that go beyond individual productivity — shaping how an engineering organization adopts and scales AI-assisted development
What You'll Get
The opportunity to own one of Arcadia's most critical platform domains and drive its evolution for scale and reliability
A mission-driven culture where your work improves patient outcomes and healthcare delivery
Competitive compensation, comprehensive benefits, and Flexible Time Off (~22-day company average)
A collaborative, remote-friendly engineering culture that values innovation, curiosity, and technical excellence
A team that is actively investing in AI-augmented engineering practices — you won't just use these tools, you'll help define how the organization adopts them
About Arcadia
Arcadia.io helps innovative providers and payers across the country transform healthcare to reduce cost while improving patient health. We do this by aggregating large amounts of disparate data, applying algorithms to identify opportunities to provide better patient care, and making those opportunities actionable by physicians at the point of care in near-real time. We are passionate about helping our customers drive meaningful outcomes. We are growing fast and have emerged as a market leader in the highly competitive population health management software market and have been recognized by industry analysts KLAS, IDC, Forrester, and Chilmark for our leadership. For a better sense of our brand and products, please explore our
website.
Protect Yourself
If you have concerns about the authenticity of a job offer or recruitment-related communication claiming to be from Arcadia, we encourage you to verify by contacting us directly at (781) 202-3600 and select option 3. For more information, visit our
website.
This position is responsible for following all Security policies and procedures in order to protect all PHI under Arcadia's custodianship as well as Arcadia Intellectual Properties. For any security-specific roles, the responsibilities would be further defined by the hiring manager.
