Security Engineering Lead

About The Position

Requirements

• 6+ years of hands-on experience in cybersecurity engineering, infrastructure security, or related fields.
• Strong technical background in network security, endpoint protection, access control, and vulnerability management.
• Proficiency with modern security tools (e.g., CrowdStrike, Palo Alto, Abnormal AI, Splunk, etc.).
• Experience with incident response, malware analysis, or penetration testing.
• Demonstrated experience with cloud security (AWS, Azure, or GCP).
• Deep understanding of security principles, threats, and frameworks (e.g., cyber kill chain, MITRE ATT&CK, NIST, STIG Controls).
• Strong documentation, troubleshooting, and communication skills.
• Ability to thrive in fast-paced, high-pressure environments with competing priorities.
• Ability to pivot between analyst, engineer, and threat hunter roles with ease.
• Familiarity with compliance standards (e.g. DoD ATO, FedRAMP, NIST 800-171, or NIST 800-53).
• Comfortable owning large initiatives end-to-end with minimal oversight.
• Eligible to obtain and maintain an active U.S. Secret security clearance.

Nice To Haves

• Experience in regulated environments (DoD, aerospace, SCIFs).
• Active Security+, CISSP, CEH, or similar certification(s).
• Relevant experience with NIST 800-171, CMMC, DFARS, and/or IT in relation to cybersecurity audit readiness.
• Experience with incident response, malware analysis, or penetration testing is a plus.
• Python programming or automation capabilities

Responsibilities

• Design, implement, and maintain cybersecurity tools and systems, including firewalls, EDR, IDS/IPS, SIEM, and vulnerability scanners.
• Proactively monitor security events, investigate suspicious activity, and respond to incidents with urgency and precision.
• Develop and maintain System Security Plans (SSPs), POA&Ms, and supporting documentation for audits and assessments.
• Partner with IT and engineering teams to integrate security into infrastructure and application design (DevSecOps).
• Build the foundation of our insider risk program by designing and implementing novel detections and controls using SIEM, SOAR, DLP, and UEBA tooling.
• Manage security patching cycles and lead remediation efforts based on risk assessments.
• Support audit, compliance, and risk management activities (e.g., NIST, CMMC, & others) and manage supply chain cybersecurity concerns.
• Conduct regular internal audits and readiness checks in preparation for external audits or DoD reviews.
• Coordinate with the Network Engineering team to manage firewall configurations within the corporate network based on operational requirements.
• Delivery training to IT, security staff, and all employees to help foster a security-first mindset across the company.

Benefits

• health insurance
• retirement plans
• opportunities for professional development
• Highly competitive equity grants are included in most offers and are considered part of Mach’s total compensation package.