About Mach Industries

Founded in 2022 Mach Industries is a rapidly growing defense technology company focused on developing next-generation autonomous defense platforms. At the core of our mission is the commitment to delivering scalable decentralized defense systems that enhance the strategic capabilities of the United States and its allies. With a workforce of approximately 220 employees we operate with startup agility and ambition.

Our vision is to redefine the future of warfare through cutting-edge manufacturing innovation at speed and unwavering focus on national security. We are dedicated to solving the next generation of warfare with lethal systems that deter kinetic conflict and protect global security.

The Role

Were seeking a Security Engineering Lead to drive our efforts to build maintain and continuously improve our security and compliance posture across the breadth of our network infrastructure facilities and endpoints. Youll continuously collaborate with cross-functional teams including IT physical security product security GRC software development operations engineering manufacturing and legal to ensure our security controls exceed both technical and regulatory standards.

The ideal candidate has a background in cybersecurity engineering with expertise in network security technology and cloud infrastructure. Youll have experience securing systems in regulated compliance-heavy environments. Youre also well-versed in frameworks like NIST SP 800-171 CMMC DFARS ATO or ISO 27001 and you know how to translate complex regulatory requirements into practical enforceable security controls.

Key Responsibilities

• Design implement and maintain cybersecurity tools and systems including firewalls EDR IDS/IPS SIEM and vulnerability scanners.

• Proactively monitor security events investigate suspicious activity and respond to incidents with urgency and precision.

• Develop and maintain System Security Plans (SSPs) POA&Ms and supporting documentation for audits and assessments.

• Partner with IT and engineering teams to integrate security into infrastructure and application design (DevSecOps).

• Build the foundation of our insider risk program by designing and implementing novel detections and controls using SIEM SOAR DLP and UEBA tooling.

• Manage security patching cycles and lead remediation efforts based on risk assessments.

• Support audit compliance and risk management activities (e.g. NIST CMMC & others) and manage supply chain cybersecurity concerns.

• Conduct regular internal audits and readiness checks in preparation for external audits or DoD reviews.

• Coordinate with the Network Engineering team to manage firewall configurations within the corporate network based on operational requirements.

• Delivery training to IT security staff and all employees to help foster a security-first mindset across the company.

Required Qualifications

• 6 years of hands-on experience in cybersecurity engineering infrastructure security or related fields.

• Strong technical background in network security endpoint protection access control and vulnerability management.

• Proficiency with modern security tools (e.g. CrowdStrike Palo Alto Abnormal AI Splunk etc.).

• Experience with incident response malware analysis or penetration testing.

• Demonstrated experience with cloud security (AWS Azure or GCP).

• Deep understanding of security principles threats and frameworks (e.g. cyber kill chain MITRE ATT&CK NIST STIG Controls).

• Strong documentation troubleshooting and communication skills.

• Ability to thrive in fast-paced high-pressure environments with competing priorities.

• Ability to pivot between analyst engineer and threat hunter roles with ease.

• Familiarity with compliance standards (e.g. DoD ATO FedRAMP NIST 800-171 or NIST 800-53).

• Comfortable owning large initiatives end-to-end with minimal oversight.

• Eligible to obtain and maintain an active U.S. Secret security clearance.

Preferred Qualifications

• Experience in regulated environments (DoD aerospace SCIFs).

• Active Security CISSP CEH or similar certification(s).

• Relevant experience with NIST 800-171 CMMC DFARS and/or IT in relation to cybersecurity audit readiness.

• Experience with incident response malware analysis or penetration testing is a plus.

• Python programming or automation capabilities

Disclosures

This position may require access to information protected under U.S. export control laws and regulations including the Export Administration Regulations (EAR) and the International Traffic in Arms Regulations (ITAR). Please note that any offer for employment may be conditioned on authorization to receive software or technology controlled under these U.S. export control laws and regulations without sponsorship for an export license.

Mach participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.

The salary range for this role is an estimate based on a wide range of compensation factors inclusive of base salary only. Actual salary offers may vary based on (but not limited to) work experience education and training critical skills and business considerations. Highly competitive equity grants are included in most offers and are considered part of Machs total compensation package. Mach offers benefits such as health insurance retirement plans and opportunities for professional development.

Mach is an equal opportunity employer committed to creating a diverse and inclusive workplace. All qualified applicants will be treated with respect and receive equal consideration for employment without regard to race color creed religion sex gender identity sexual orientation national origin disability uniform service Veteran status age or any other protected characteristic per federal state or local law including those with a criminal history in a manner consistent with the requirements of applicable state and local laws. If youd like to defend the American way of life please reach out!

Required Experience:

IC