Second Factor Authentication Client Engineer


The Johns Hopkins University Applied Physics Laboratory (APL), a national leader in scientific research and development, located midway between Baltimore and Washington, DC is seeking a Second Factor Authentication Client Engineer.

Job Summary:

Implement and provide technical support for enterprise client security and identity management solutions. Work with the Help Desk and other IT service areas to resolve issues and enhance services.


  • Implement, support and provide advanced troubleshooting for the second-factor authentication on-premises deployed solution. Work with Information Technology Services Department teams to support user administration and access management to ensure Laboratory employees have appropriate access to resources.
  • Provide functional expertise in at least two major functional areas (Multi-Factor Authentication, Active Directory, LDAP, SAML, or Kerberos.)
  • Complete Service Now related second-factor authentication tickets.
  • Develop and maintain documentation related to the installation, administration, maintenance, and use of second-factor authentication tools.

Note: This job summary and listing of duties is for the purpose of describing the position and its essential functions at time of hire and may change over time.

Required Qualifications:

  • B.S. in Computer Science or other IT related field
  • 1-3 years’ experience with Windows 7, Active Directory and Server 2012 R2.
  • 1-3 years’ experience with Single Sign On, LDAP or SAML technologies.
  • 1-3 years’ demonstrated experience with Perl, PowerShell or other scripting language.
  • Self-motivated with the ability to work collaboratively in a team environment and interface with all levels of staff.
  • Strong analytical, troubleshooting, organizational and problem solving skills.
  • Quick learner with strong desire to develop new technical skills.
  • Strong written and presentation skills, which will be used to document analysis and deliver technical presentations.

Desired Qualifications:

  • Experience with Windows 10, Red Hat Enterprise Linux and Mac OS X.
  • Solid understanding of Identity governance and administration.
  • Knowledge of PKI and the installation of client and server certificates.
  • Previous experience with Multi-factor authentication solutions and technologies.
  • CompTIA Security , CISSP or GSEC certification.
  • Demonstrated ability to develop LDAP queries and manipulate LDAP attributes.
  • Strong understanding of TCP/IP (UDP, ICMP, TCP).
  • Proven ability to evaluate vendor hardware/software solutions.

Special Working Conditions:

Occasional Saturday morning hours required. Participate in a weekly after hours on-call rotation.


Applicant selected will be subject to a government security clearance investigation and must meet the requirements for access to classified information. Eligibility requirements include U.S. citizenship.


APL offers a comprehensive benefits package including a liberal vacation plan, a matching retirement program, significant educational assistance, a scholarship tuition program for staff with dependents, and competitive salaries commensurate with skills and experience. For more information about our organization, please visit our web site at

Equal Employment Opportunity:Johns Hopkins University/Applied Physics Laboratory (APL) is an Equal Opportunity/Affirmative Action employer that complies with Title IX of the Education Amendments Acts of 1972, as well as other applicable laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

Back to top