Security Engineering Lead

About Mach Industries

Founded in 2022, Mach Industries is a rapidly growing defense technology company focused on developing next-generation autonomous defense platforms. At the core of our mission is the commitment to delivering scalable, decentralized defense systems that enhance the strategic capabilities of the United States and its allies. With a workforce of approximately 220 employees, we operate with startup agility and ambition.

Our vision is to redefine the future of warfare through cutting-edge manufacturing, innovation at speed, and unwavering focus on national security. We are dedicated to solving the next generation of warfare with lethal systems that deter kinetic conflict and protect global security.

The Role

We’re seeking a Security Engineering Lead to drive our efforts to build, maintain, and continuously improve our security and compliance posture across the breadth of our network infrastructure, facilities, and endpoints. You'll continuously collaborate with cross-functional teams including IT, physical security, product security, GRC, software development, operations, engineering, manufacturing, and legal to ensure our security controls exceed both technical and regulatory standards.

The ideal candidate has a background in cybersecurity engineering with expertise in network security technology and cloud infrastructure. You’ll have experience securing systems in regulated, compliance-heavy environments. You’re also well-versed in frameworks like NIST SP 800-171, CMMC, DFARS, ATO, or ISO 27001, and you know how to translate complex regulatory requirements into practical, enforceable security controls.

Key Responsibilities

• Design, implement, and maintain cybersecurity tools and systems, including firewalls, EDR, IDS/IPS, SIEM, and vulnerability scanners.

• Proactively monitor security events, investigate suspicious activity, and respond to incidents with urgency and precision.

• Develop and maintain System Security Plans (SSPs), POA&Ms, and supporting documentation for audits and assessments.

• Partner with IT and engineering teams to integrate security into infrastructure and application design (DevSecOps).

• Build the foundation of our insider risk program by designing and implementing novel detections and controls using SIEM, SOAR, DLP, and UEBA tooling.

• Manage security patching cycles and lead remediation efforts based on risk assessments.

• Support audit, compliance, and risk management activities (e.g., NIST, CMMC, & others) and manage supply chain cybersecurity concerns.

• Conduct regular internal audits and readiness checks in preparation for external audits or DoD reviews.

• Coordinate with the Network Engineering team to manage firewall configurations within the corporate network based on operational requirements.

• Delivery training to IT, security staff, and all employees to help foster a security-first mindset across the company.

Required Qualifications

• 6+ years of hands-on experience in cybersecurity engineering, infrastructure security, or related fields.

• Strong technical background in network security, endpoint protection, access control, and vulnerability management.

• Proficiency with modern security tools (e.g., CrowdStrike, Palo Alto, Abnormal AI, Splunk, etc.).

• Experience with incident response, malware analysis, or penetration testing.

• Demonstrated experience with cloud security (AWS, Azure, or GCP).

• Deep understanding of security principles, threats, and frameworks (e.g., cyber kill chain, MITRE ATT&CK, NIST, STIG Controls).

• Strong documentation, troubleshooting, and communication skills.

• Ability to thrive in fast-paced, high-pressure environments with competing priorities.

• Ability to pivot between analyst, engineer, and threat hunter roles with ease.

• Familiarity with compliance standards (e.g. DoD ATO, FedRAMP, NIST 800-171, or NIST 800-53).

• Comfortable owning large initiatives end-to-end with minimal oversight.

• Eligible to obtain and maintain an active U.S. Secret security clearance.

Preferred Qualifications

• Experience in regulated environments (DoD, aerospace, SCIFs).

• Active Security+, CISSP, CEH, or similar certification(s).

• Relevant experience with NIST 800-171, CMMC, DFARS, and/or IT in relation to cybersecurity audit readiness.

• Experience with incident response, malware analysis, or penetration testing is a plus.

• Python programming or automation capabilities

Disclosures

This position may require access to information protected under U.S. export control laws and regulations, including the Export Administration Regulations (EAR) and the International Traffic in Arms Regulations (ITAR).  Please note that any offer for employment may be conditioned on authorization to receive software or technology controlled under these U.S. export control laws and regulations without sponsorship for an export license.

Mach participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.

The salary range for this role is an estimate based on a wide range of compensation factors, inclusive of base salary only. Actual salary offers may vary based on (but not limited to) work experience, education and training, critical skills, and business considerations. Highly competitive equity grants are included in most offers and are considered part of Mach’s total compensation package. Mach offers benefits such as health insurance, retirement plans, and opportunities for professional development.

Mach is an equal opportunity employer committed to creating a diverse and inclusive workplace. All qualified applicants will be treated with respect and receive equal consideration for employment without regard to race, color, creed, religion, sex, gender identity, sexual orientation, national origin, disability, uniform service, Veteran status, age, or any other protected characteristic per federal, state, or local law, including those with a criminal history, in a manner consistent with the requirements of applicable state and local laws. If you’d like to defend the American way of life, please reach out!