Senior Storage Solutions Engineer

Description

Ready to take your career to the next level?

Join Leidos, where we leverage the skills of our diverse talent to deliver innovative solutions that make a real impact. Our commitment to our employees, customers, and communities stands at the forefront of all we do. In the Leidos National Security Sector (NSS), we provide cutting-edge technology-enabled services and mission software capabilities for our defense and intelligence customers, helping them stay ahead of evolving global threats.

Your next big opportunity awaits.

The Multi-domain Solutions Division (MDS) at Leidos seeks a talented Senior Storage Solutions Engineer to join an important cybersecurity program. This role is essential in supporting government-critical systems. You will be involved in developing, delivering, and maintaining IT managed security services aimed at enhancing cybersecurity threat monitoring and situational awareness. This position is anticipated in response to a future contract award.

Key Responsibilities include:

• Securely manage enterprise storage environments by employing best practices and mitigating security risks while ensuring compliance with industry regulations.
• Collaborate with security, infrastructure, and operations teams to safeguard critical data stored in both on-premises and cloud-based storage systems.
• Evaluate and resolve storage security vulnerabilities while overseeing encryption and access controls, as well as monitoring for security incidents.
• Design, implement, and maintain secure data storage solutions to defend against cyber threats and ensure data integrity and availability.
• Oversee the installation, configuration, administration, support, and maintenance of storage systems and associated hardware.
• Manage systems infrastructures by implementing best practices, identifying and recommending system specifications, and managing backup and recovery processes.
• Update and optimize systems by tuning performance and allocating appropriate storage space.
• Implement critical updates and review performance logs to identify abnormalities and troubleshoot issues.
• Influence the development of strategic solutions that impact project goals and outcomes.
• Recommend and develop new solutions, products, and standards that align with the strategic direction of the organization.
• Lead and guide technical staff to achieve impactful project results.
• Design secure storage solutions for enterprise environments, including SAN, NAS, object storage, and cloud storage systems (AWS S3, Azure Blob, Google Cloud Storage).
• Develop and enforce security policies, standards, and best practices to protect sensitive data both on-premises and in the cloud.
• Implement secure data storage architectures aligned with security frameworks such as NIST, ISO 27001, and CIS Benchmarks.
• Configure and manage secure storage environments with robust encryption, access controls, and auditing mechanisms.
• Manage encryption processes for data at rest and in transit, ensuring adherence to industry standards and organizational policies.
• Implement Key Management Systems (KMS) to ensure the security of encryption keys and manage secure key rotation.
• Design and enforce backup and replication solutions to safeguard against data loss and unauthorized access.
• Ensure proper classification, protection, and retention of sensitive data in compliance with regulations (HIPAA, PCI-DSS, GDPR).
• Monitor storage environments for anomalies, unauthorized access, and data breaches using Security Information and Event Management (SIEM) platforms.
• Integrate storage security monitoring with SIEM solutions (like Splunk, Microsoft Sentinel, and Elastic Security) to detect and respond to incidents effectively.
• Conduct investigations into storage security events, carry out root cause analysis, and implement corrective actions as necessary.
• Develop and maintain incident response plans (IRPs) for various storage security incidents, including data breaches and ransomware responses.
• Implement and oversee Role-Based Access Control (RBAC), Multi-Factor Authentication (MFA), and Privileged Access Management (PAM) protocols for storage systems.
• Conduct periodic audits of access controls and permissions to ensure alignment with the principle of least privilege.
• Design and implement secure authentication and authorization mechanisms for storage resources, both on-premises and in cloud environments.
• Execute regular vulnerability assessments and penetration tests on storage systems to identify and mitigate security gaps.
• Apply necessary security patches and updates to mitigate risks and maintain compliance with security standards.
• Collaborate with infrastructure and security teams to enhance the security of storage appliances, virtualized environments, and cloud storage solutions.
• Ensure adherence to regulatory requirements and industry standards such as HIPAA, PCI-DSS, SOC 2, and GDPR related to storage security.
• Conduct consistent audits and reviews of storage environments, documenting findings and suggesting improvements.
• Maintain clear and comprehensive storage security documentation, including policies, procedures, and operational guidelines.

What We Need From You:

• Active Top Secret/SCI (TS/SCI) with Polygraph security clearance is required. Must be a U.S. Citizen.
• Bachelor's degree with 12 to 15 years of relevant experience or a Master's degree with 10 to 13 years of relevant experience. Equivalent experience may substitute for a degree.
• A strong understanding of DoD IT security protocols and requirements.
• Extensive knowledge of storage technologies, including SAN, NAS, object storage, and cloud storage (AWS, Azure, Google Cloud).
• Hands-on experience with storage security controls, such as encryption, access management, and backup security measures.
• Proficiency in configuring and managing storage solutions like NetApp, EMC, Dell, Pure Storage, or HPE.
• Experience with encryption technologies, KMS, and Public Key Infrastructure (PKI).
• Familiarity with SIEM platforms and the integration of storage logs for effective security event monitoring.
• Comprehensive understanding of storage protocols (iSCSI, NFS, SMB/CIFS, Fibre Channel) and their security implications.

Preferred Qualifications:

• Relevant certifications such as CISSP, CCSP, GCED, etc.
• Experience with Cloud Storage Security Posture Management (CSPM) tools for ensuring cloud storage compliance and mitigating risks.
• Knowledge of data loss prevention (DLP) technologies and practices.

Original Posting: March 30, 2025 For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range: Pay Range $112,450.00 - $203,275.00 The Leidos pay range for this job level is a general guideline only, not a guarantee of compensation. Factors affecting offers include responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, market alignment, and applicable laws.