SSO_MFA Support Specialist

ABOUT THE DEPARTMENT

The University of Southern California (USC) is advancing its cybersecurity posture with a renewed focus on resilience, cyber risk management, and threat-informed defense. As a world-class research institution, is building a culture of security that supports its academic and research mission in a rapidly evolving threat landscape.

This role sits within a newly restructured cybersecurity organization that's leading this transformation. You'll join a team focused on scalable, proactive defense strategies, incident preparedness, and operational excellence-working alongside experts who are deeply committed to service, innovation, and impact.

If you're driven by purpose, thrive in complexity, and want to help shape the future of cybersecurity at a leading university, we invite you to bring your leadership to the table.

POSITION SUMMARY

As the SSO & MFA Support Specialist you will be an integral member of the cybersecurity department while also collaborating with stakeholders across the university ecosystem, and reporting to the Manager, PAM and SSO Services . This is a full-tim e non-exempt position, eligible for all of 's fantastic Benefits + Perks . This opportunity is remote.

The SSO & MFA Support Specialist is responsible for the maintenance, troubleshooting, and operational support of Single Sign-On (SSO) and Multi-Factor Authentication (MFA) systems. Manages key platforms such as ForgeRock, Shibboleth, Duo, and Account Takeover (ATO) system to ensure secure and seamless authentication for all users. Addresses incidents, supports configuration changes, and ensures the health and performance of critical authentication services.

The SSO & MFA Support Specialist will:

• Provides operational support for ForgeRock and Shibboleth (e.g., integration, configuration, and incident resolution). Administers and troubleshoots Duo MFA services, ensuring secure and reliable two-factor authentication. Manages Account Takeover (ATO) system to enhance password security and monitor account vulnerabilities. Addresses and resolves authentication-related incidents and user support requests in a timely manner.

• Collaborates with application teams to integrate SSO and MFA with new and existing applications .

• Tests and implements configuration updates and patches for SSO/MFA systems to ensure optimal functionality. Executes and documents standard operating procedures for SSO/MFA-related tasks to ensure adherence to standards and consistency .

• Develops and maintains documentation for SSO/MFA processes and provides training to relevant stakeholders . Maintains knowledge of SSO/MFA technologies and industry best practices to recommend and implement improvements .

• Encourages a workplace culture where all employees are valued, value others and have the opportunity to contribute through their ideas, words and actions, in accordance with the Code of Ethics.

MINIMUM QUALIFICATIONS

Great candidate s for the position of SSO & MFA Support Specialist will meet the following qualifications:

• 2 years of experience in Identity and Access Management.

• A bachelor's degree or combined experience and education as substitute for minimum education .

• Experience supporting SSO and MFA solutions.

• Familiarity with authentication protocols such as SAML, OAuth, and OpenID Connect.

• Ability to troubleshoot and resolve issues related to SSO and MFA integrations with enterprise systems.

• Basic knowledge of cloud-based identity providers like Okta, Ping Identity, or Azure AD.

• Strong attention to detail and problem-solving skills in managing user authentication issues.

• Effective communication skills for documenting technical issues and collaborating with teams.

PREFERRED QUALIFICATIONS

Exceptional candidate s for the position of SSO & MFA Support Specialist will also bring the following qualifications or more :

• 5 years of related experience.

• Relevant certifications, such as Okta Certified Administrator or equivalent.

In addition, the successful candidate must also demonstrate , through ideas, words and actions, a strong commitment to USC's Unifying Values of integrity, excellence, community, well-being, open communication, and accountability.

SALARY AND BENEFITS

The annual base salary range for this position is $47.77/ hr to $54.17/hr . When extending an offer of employment, the University of Southern California considers factors such as (but not limited to) the scope and responsibilities of the position, the candidate's work experience, education/training, key skills, internal peer alignment, federal, state, and local laws, contractual stipulations, grant funding, as well as external market and organizational considerations.

To support the well-being of our faculty and staff, provides benefits-eligible employees with a broad range of perks to help protect their and their dependents' health, wealth, and future. These benefits are available as part of the overall compensation and total rewards package. You can learn more about USC's comprehensive benefits here .

Join the cybersecurity team within an environment of innovation and excellence.

Minimum Education: Bachelor's degree Addtional Education Requirements Combined experience/education as substitute for minimum education Minimum Experience: 2 years in Identity and Access Management. Minimum Skills: Experience supporting SSO and MFA solutions. Familiarity with authentication protocols such as SAML, OAuth, and OpenID Connect. Ability to troubleshoot and resolve issues related to SSO and MFA integrations with enterprise systems. Basic knowledge of cloud-based identity providers like Okta, Ping Identity, or Azure AD. Strong attention to detail and problem-solving skills in managing user authentication issues. Effective communication skills for documenting technical issues and collaborating with teams. Preferred Certifications: Relevant certifications, such as Okta Certified Administrator or equivalent. Preferred Experience: 5 years