Key Responsibilities
• Register new applications for SSO across multiple environments.
• Support major and minor enhancements requested by application teams.
• Implement and maintain ABAC and RBAC capabilities during user SSO sessions.
• Support least privilege enforcement, inactivity tracking, and just-in-time provisioning patterns.
• Schedule and support rotation of credentials, keys, tokens, and certificates.
• Troubleshoot SSO issues during and after application integration.
• Support mobile authentication for GFE mobile devices.
• Develop logging, safeguards, alerting, and dashboards for on-prem and cloud environments.
• Create and maintain procedural documents, knowledge base articles, and training materials for users, system owners, requesters, and ServiceNow operators.
• Develop automated access control audits and alerts.
• Enhance dashboards using Splunk, New Relic, AWS CloudWatch, or similar data sources.
Required Qualifications
• Experience with OAuth and OpenID Connect.
• Experience with PIV-based authentication or certificate-backed authentication.
• Experience implementing or supporting RBAC and/or ABAC.
• Experience supporting application onboarding/integration across multiple environments.
• Ability to troubleshoot identity, token, session, certificate, and access issues.
• Ability to obtain favorable EOD / suitability and maintain required USCIS access.
• U.S. citizenship likely required for DHS IT access unless waiver is granted — confirm before final posting.
Preferred Qualifications
• Experience with UAA, OAuth/OIDC token providers, LACS, ServiceNow, Splunk, New Relic, or CloudWatch.
• Prior DHS, USCIS, or federal ICAM experience.
• Experience supporting 100+ or 150+ application team environments.
• Experience with automated access reviews, least privilege, and policy governance.
Skills Required
- Real identity integration experience (hands-on with identity systems, not generic cybersecurity)
- Experience with enterprise SSO and identity federation
- Experience with OAuth and OpenID Connect
- Experience with PIV-based or certificate-backed authentication
- Experience implementing or supporting RBAC and/or ABAC
- Experience onboarding/integrating applications across multiple environments
- Ability to troubleshoot identity, token, session, certificate, and access issues
- Ability to obtain favorable EOD / suitability and maintain required USCIS access
- U.S. citizenship likely required for DHS IT access (confirm before final posting)
- Experience with Shibboleth IdP or similar identity provider platforms
- Experience with UAA, LACS, ServiceNow, Splunk, New Relic, or AWS CloudWatch
- Prior DHS, USCIS, or federal ICAM experience
- Experience supporting large application environments (100+ applications)
- Experience with automated access reviews, least privilege enforcement, and policy governance
What We Do
Makpar provides high level strategic and project management services based on over 10 years of experience in customer focused, cutting edge technology in product development, big data and analytics. With a principal office in Loudon County, Virginia, we have access to the best and the brightest people in the industry who have a passion for helping our clients. Our highly experienced consultants will work on your most pressing challenges day in and day out and will deliver results that will delight you. We value integrity, honesty, and open communications in all our dealings. We continually strive to improve ourselves through soliciting feedback and evaluating our results against the best in the industry.









