Manager, PAM and SSO Services

• Manages the implementation and operation of PAM tools (e.g., privileged account provisioning, credential vaulting, session monitoring). Oversees SSO and MFA systems to ensure secure and seamless user authentication across all university systems. 

• Collaborates with cybersecurity and IT teams to align PAM and SSO initiatives with the broader security framework. Integrates PAM and SSO technologies with enterprise applications, directory systems and cloud platforms. Provides training and support to technical staff and end-users on PAM and authentication tools and processes. 

• Implements and enforces security policies for privileged access (e.g., least privilege, just-in-time access). Configures adaptive authentication mechanisms (e.g., conditional access policies) to balance security and user experience. 

• Ensures compliance with regulatory standards and internal security frameworks for PAM and SSO systems. Conducts regular audits and reviews of privileged accounts and authentication logs to detect and mitigate risks. Leads the resolution of technical issues related to PAM and SSO, ensuring high availability and reliability.

• Develops and documents operational standards and workflows for privileged account lifecycle management and authentication systems. Monitors and reports on the performance and adoption of PAM and SSO systems, providing metrics to inform leadership decisions. Stays updated on emerging PAM and authentication technologies, driving innovation and improvement within access management practices. 

• Encourages a workplace culture where all employees are valued, value others and have the opportunity to contribute through their ideas, words and actions, in accordance with the USC Code of Ethics.

MINIMUM QUALIFICATIONS

Greatcandidates for the position of Manager, PAM and SSO Serviceswill meet the following qualifications:

• 7 years in Identity and Access Management.

• A Bachelor's degree or combined experience/education as substitute for minimum education.

• Experience with PAM and SSO technologies.

• Expertise in implementing and managing PAM solutions (e.g., CyberArk. BeyondTrust and SSO platforms (e.g., Okta, Azure AD).

• Proficient in designing secure authentication frameworks (e.g., MFA, adaptive authentication, passwordless solutions).

• Strong understanding of privileged access workflows, session monitoring and compliance standards.

• Experience developing metrics to evaluate the performance of PAM and SSO solutions.

• Proven ability to manage incidents and mitigate risks related to PAM and SSO vulnerabilities.

• Strong leadership and interpersonal skills to manage cross-functional teams and vendor relationships.

• Knowledge of scripting or programming languages (e.g., PowerShell, Python) to support automation initiatives.

PREFERRED QUALIFICATIONS

Exceptional candidates for the position of Manager, PAM and SSO Serviceswill also bring the following qualifications or more:

• 10 years of related experience.

• A bachelor’s degree in information science or computer science or computer engineeringor in related field(s).

• Extensive proven leadership experience.

• Experience in a university environment.

• Relevant certifications such as CyberArk Certified Trustee or similar.

In addition, the successful candidate must also demonstrate, through ideas, words and actions, a strong commitment to USC’s Unifying Values of integrity, excellence, community, well-being, open communication, and accountability.

SALARY AND BENEFITS

The annual base salary range for this position is $164,548.27 to $185,306.86. When extending an offer of employment, the University of Southern California considers factors such as (but not limited to) the scope and responsibilities of the position, the candidate’s work experience, education/training, key skills, internal peer alignment, federal, state, and local laws, contractual stipulations, grant funding, as well as external market and organizational considerations.

To support the well-being of our faculty and staff, USC provides benefits-eligible employees with a broad range of perks to help protect their and their dependents’ health, wealth, and future. These benefits are available as part of the overall compensation and total rewards package. You can learn more about USC’s comprehensive benefits here.

Join the USC cybersecurity team within an environment of innovation and excellence.