Apply on Employer Site

Mach Industries · 5 hours ago

Information Security Analyst II

Huntington Beach, CA

Full-time

Onsite

Mid Level

3+ years exp

Mach Industries is a rapidly growing defense technology company focused on developing next-generation autonomous defense platforms. They are seeking an Information Security Analyst II to enhance their security and compliance posture across network infrastructure, collaborating with various teams to ensure adherence to technical and regulatory standards.

Drone ManagementIndustrialInfrastructureManufacturingNational Security

Responsibilities

Monitor, triage, and investigate security alerts from SIEM, EDR/XDR, IDS/IPS, and other detection tools

Respond to security incidents (phishing, malware, unauthorized access, data loss events), perform root cause analysis, and document findings

Create and refine alert logic, detections, and security playbooks to improve response efficiency

Conduct vulnerability scans, validate findings, prioritize remediation, and track closure

Support patch management and secure configuration baselines in partnership with IT and infrastructure teams

Assist in threat modeling, security assessments, and identifying systemic weaknesses

Support security controls testing and evidence gathering for audits (SOC 2, ISO 27001, NIST, ATO, CMMC, as applicable)

Maintain and improve security policies, standards, and procedures

Contribute to risk assessments and third-party/vendor risk reviews

Help build security awareness initiatives such as phishing simulation programs and secure behavior training

Provide guidance to internal teams on secure processes and best practices

Participate in security projects such as MFA rollouts, IAM improvements, cloud security hardening, logging standardization, etc

Assist with access reviews, permissions validation, and identity lifecycle processes

Partner with engineering and IT to enhance security architecture and controls

Qualification

Information SecurityNetwork Security ToolsCloud SecuritySecurity CertificationsIncident ResponseVulnerability ScanningCompliance FrameworksLog AnalysisScriptingCommunication Skills

Required

3–5 years of experience in information security, security operations, or a related technical security role

Experience working with security tooling (examples: SIEM like Splunk/Elsatic/Sentinel, EDR like CrowdStrike/MDE, vulnerability tools like Tenable/Qualys)

Familiarity with incident response processes and frameworks (NIST, SANS)

Strong understanding of common attack techniques and defensive strategies (MITRE ATT&CK)

Ability to analyze logs, network traffic, and endpoint activity to investigate suspicious behavior

Strong written and verbal communication skills, with the ability to write clear incident reports and recommendations

Preferred

Security certifications (one or more preferred): Security+, GSEC, SSCP, CySA+, CEH, CISSP (Associate), Splunk certification, Microsoft security certifications, etc

Experience with cloud security (AWS / Azure / GCP), including logging and access control best practices

Familiarity with security automation/SOAR, scripting (Python, PowerShell), or query languages (KQL, SPL)

Experience supporting compliance frameworks (SOC 2, ISO 27001, NIST 800-53)

Strong understanding of identity and access management, network segmentation, and endpoint hardening