"SSO/MFA Lead"

About the Department

The University of Southern California (USC) is advancing its cybersecurity posture with a renewed focus on resilience, cyber risk management, and threat-informed defense. As a world-class research institution, USC is building a culture of security that supports its academic and research mission in a rapidly evolving threat landscape.

This role sits within a newly restructured cybersecurity organization thats leading this transformation. Youll join a team focused on scalable, proactive defense strategies, incident preparedness, and operational excellenceworking alongside experts who are deeply committed to service, innovation, and impact.

If youre driven by purpose, thrive in complexity, and want to help shape the future of cybersecurity at a leading university, we invite you to bring your leadership to the table.

Position Summary

As the SSO & MFA Lead you will be an integral member of the cybersecurity department while also collaborating with stakeholders across the university ecosystem, and reporting to the Manager PAM & SSO Services. This is a full-time exempt position, eligible for all of USCs fantastic Benefits + Perks. This opportunity is remote.

The SSO & MFA Lead is responsible for overseeing the management and operations of Single Sign-On (SSO) solutions, such as ForgeRock, Shibboleth, Multi-Factor Authentication (MFA) systems, Identity Proofing, and Account Take Over prevention. Leads the product offering (e.g., overall strategy, development, lifecycle management), responsible for managing projects, prioritizing tasks and directing both engineering and operational activities. Ensures the security, integrity and efficient functioning of SSO systems, collaborates with various departments to meet regulatory requirements, and provides leadership and mentorship.

The SSO & MFA Lead will:

• Lead the development and management of the SSO & MFA product roadmap, ensuring alignment with university goals. Prioritizes tasks and projects based on business needs, risk assessments and resource availability.
• Manage SSO-related projects from inception to completion, ensuring timely delivery and adherence to budget. Oversees the day-to-day operations of SSO systems to ensure optimal performance and security.
• Oversee the design, development and implementation of SSO, MFA, Identity Proofing and Account Take Over solutions. Ensures the integration of SSO systems with other university systems and applications.
• Develop and enforce policies and procedures tailored to the university's SSO needs. Conducts regular risk assessments to identify and mitigate potential security risks.
• Collaborate with IT, HR, academic departments and other stakeholders to ensure seamless integration of SSO processes.
• Encourage a workplace culture where all employees are valued, value others and have the opportunity to contribute through their ideas, words and actions, in accordance with the USC Code of Ethics.

Minimum Qualifications

Great candidates for the position of SSO & MFA Lead will meet the following qualifications:

• 5 years in Identity and Access Management.
• A bachelors degree or combined experience and education as substitute for minimum education.
• Experience in SSO and MFA solutions.
• Expertise in designing and implementing SSO and MFA frameworks, ensuring seamless integration with enterprise applications.
• Knowledge of authentication protocols such as SAML, OAuth, OpenID Connect and related technologies.
• Strong understanding of security best practices for authentication and access control.
• Proven ability to monitor and optimize SSO and MFA performance, ensuring high availability.
• Experience with cloud-based identity platforms like Okta, Ping Identity or Azure AD.
• Strong troubleshooting skills and ability to resolve authentication-related issues promptly.
• Effective communication skills for working with technical and non-technical stakeholders.

Preferred Qualifications

Exceptional candidates for the position of SSO & MFA Lead will also bring the following qualifications or more:

• 7 years of related experience.
• Relevant certifications, such as CISSP, CISM and product-specific certification.

Salary and Benefits

The annual base salary range for this position is $150,433.13 to $168,158.88. When extending an offer of employment, the University of Southern California considers factors such as (but not limited to) the scope and responsibilities of the position, the candidates work experience, education/training, key skills, internal peer alignment, federal, state, and local laws, contractual stipulations, grant funding, as well as external market and organizational considerations.

To support the well-being of our faculty and staff, USC provides benefits-eligible employees with a broad range of perks to help protect their and their dependents health, wealth, and future. These benefits are available as part of the overall compensation and total rewards package. You can learn more about USCs comprehensive benefits here.