The organisation delivers national-scale IT solutions for public health and care, maintaining registries and services used by healthcare professionals and suppliers. This application architect role exists to design secure, API-first architectures and to lead the migration of authentication to Keycloak, working across Angular frontends and Java/Spring Boot backends.
The mission
You will join a multidisciplinary team responsible for a portfolio of healthcare applications and integrations used by hospitals, regulators and certified suppliers. The technical landscape is microservices-based, with Java and Spring Boot services, Angular frontends, relational databases, containerised deployments on OpenShift and CI/CD pipelines. Security and identity management are central, including IAM patterns, OAuth/OpenID flows and OWASP-aligned controls.
Day-to-day you will define and validate application architectures, review designs from development teams and own the migration strategy for a new Keycloak-based authenticator that will replace the current portal authentication. You will work with business analysts and developers to translate regulatory requirements into secure APIs and integration patterns, support rollout sequencing per application and help teams implement CI/CD, Docker/Kubernetes deployment manifests and automated security checks.
Your responsibilities
- Define and document target application architectures that meet functional, security and operational requirements, focusing on API-first and microservices patterns
- Lead the authentication migration by designing Keycloak integration patterns, migration paths per application and validation criteria for cutovers
- Validate designs and code-level decisions with development teams, ensuring secure implementations (OAuth/OpenID, OWASP, IAM) in Java Spring Boot services and Angular frontends
- Establish CI/CD, container and platform requirements, including Docker images, Kubernetes/OpenShift manifests and pipeline quality gates
- Drive integration patterns and API contracts across services to reduce coupling and improve observability and testability
- Mentor mid-level developers on design patterns, secure coding practices and platform-specific deployment constraints
Your profile
Essential skills
- Strong experience as an application or solution architect, or senior developer transitioning to architecture responsibilities, with around 3-6 years in software engineering and architecture roles
- Proven hands-on experience with Java and Spring Boot, and with Angular for front-end integration scenarios
- Practical knowledge of container platforms and orchestration, specifically OpenShift, Docker and Kubernetes
- Solid understanding of identity and access management, including Keycloak, OAuth2/OpenID Connect and IAM design
- Experience defining and implementing CI/CD pipelines and automated quality/security gates
- Working knowledge of SQL and relational database design, API design and enterprise integration patterns
Education
- Bachelor or Master in Computer Science, Engineering or equivalent hands-on experience