Expert Storage Engineer

Description

Looking for an opportunity to make an impact?

At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. The Leidos National Security Sector (NSS) combines technology-enabled services and mission software capabilities in the areas of cyber, logistics, security operations, and decision analytics to support our defense and intel customers mission to defend against evolving threats around the world.

Your greatest work is ahead!

The Multi-domain Solutions Division (MDS) within the Leidos National Security Sector is seeking a skilled Expert Storage Engineer to join a new cyber security program and play a key role in supporting government-critical systems. You will be part of a program that oversees development, integration, delivery, and operations and maintenance of IT managed security services, which encompasses support to monitor the cybersecurity threat and security posture situational awareness for the enterprise. This opportunity is in anticipation of a future contract award!

What youll be doing:

• Secure and manage enterprise storage environments by implementing best practices, mitigating security risks, and ensuring compliance with industry standards.
• Work closely with security, infrastructure, and operations teams to protect critical data stored in on-premises and cloud-based storage systems.
• Assess and remediate storage security vulnerabilities, manage encryption and access controls, and monitor storage environments for security events and threats.
• Responsible for designing, implementing, and maintaining secure data storage solutions to protect against cyber threats and ensure data availability and integrity.
• Responsible for installation, configuration, administration, support and maintenance of systems, including associated hardware.
• Management of systems infrastructures, implementing best practices to Identify and recommend system functional specifications, configuration of physical and virtual systems, backup and recovery of IT infrastructure.
• Support duties may include updating and supporting systems by tuning performance, allocating storage space.
• Implement critical patches, reviewing systems performance logs to identify anomalies and troubleshoot issues.
• Influence development of solutions that impact strategic project/program goals and business results.
• Recommend and develop new technical solutions, products, and/or standards in support of functions strategy and operations.
• Lead and manage works of other technical staff that has significant impact on project results/outputs.
• Design and implement secure storage solutions for enterprise environments, including SAN, NAS, object storage, and cloud-based storage systems (AWS S3, Azure Blob, Google Cloud Storage).
• Develop and enforce security policies, standards, and best practices to protect sensitive data stored on-premises and in cloud environments.
• Implement secure data storage architectures aligned with frameworks such as NIST, ISO 27001, and CIS Benchmarks.
• Configure and manage secure storage environments with appropriate encryption, access controls, and auditing mechanisms.
• Manage encryption at rest and in transit across storage platforms, ensuring compliance with industry standards and organizational policies.
• Implement and maintain Key Management Systems (KMS) to protect encryption keys and ensure secure key rotation.
• Configure secure storage replication and backup solutions to protect against data loss and unauthorized access.
• Ensure that sensitive data is properly classified, protected, and retained according to regulatory requirements (HIPAA, PCI-DSS, GDPR).
• Monitor storage environments for security anomalies, unauthorized access, and data exfiltration using Security Information and Event Management (SIEM) platforms.
• Integrate storage security monitoring with SIEM solutions (Splunk, Microsoft Sentinel, Elastic Security) to detect and respond to security incidents.
• Investigate and analyze storage security events, perform root cause analysis, and implement corrective actions.
• Develop and maintain incident response plans (IRP) for storage security incidents, including data breaches and ransomware attacks.
• Implement and manage Role-Based Access Control (RBAC), Multi-Factor Authentication (MFA), and Privileged Access Management (PAM) for storage systems.
• Conduct periodic audits of access controls and permissions, ensuring adherence to the principle of least privilege.
• Design and enforce secure authentication and authorization mechanisms for storage resources, both on-premises and in the cloud.
• Perform regular vulnerability assessments and penetration testing on storage systems to identify and remediate security gaps.
• Apply security patches and updates to mitigate risks and maintain compliance with security standards.
• Collaborate with infrastructure and security teams to harden storage appliances, virtualized environments, and cloud-based storage solutions.
• Ensure compliance with regulatory and industry standards such as HIPAA, PCI-DSS, SOC 2, and GDPR for storage security.
• Conduct regular security audits and reviews of storage environments, documenting findings and implementing improvements.
• Develop and maintain storage security documentation, including policies, procedures, and operational guidelines.

What does Leidos need from me?

• Active Top Secret/SCI (TS/SCI) with Polygraph security clearance required. Must be U.S. Citizen.
• Bachelor's degree and 12 to 15 years of prior relevant experience or Master's with 10 to 13 years of prior relevant experience. Experience may be considered in lieu of a degree.
• Understanding of DoD IT security protocols and requirements
• Strong knowledge of storage technologies, including SAN, NAS, object storage, and cloud storage (AWS, Azure, Google Cloud).
• Hands-on experience with storage security controls, including encryption, access management, and backup security.
• Proficiency in configuring and managing storage solutions such as NetApp, EMC, Dell, Pure Storage, or HPE.
• Experience with encryption technologies, Key Management Systems (KMS), and Public Key Infrastructure (PKI).
• Familiarity with SIEM platforms and integrating storage logs for security event monitoring.
• Knowledge of storage protocols (iSCSI, NFS, SMB/CIFS, Fibre Channel) and their security implications.

Favorable if you have:

• Relevant certifications like CISSP, CCSP, GCED, etc.
• Experience with Cloud Storage Security Posture Management (CSPM) tools to ensure cloud storage compliance and risk mitigation.
• Knowledge of data loss prevention (DLP) technologies and methodologies.

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.