Senior Incident Handler-Sierra Vista, AZ

DirectViz Solutions (DVS) is a dynamic and rapidly growing government contractor committed to delivering innovative IT solutions that address the mission-critical needs of our government clients. Through the expertise and dedication of our talented team, we provide cutting-edge technology services designed to achieve success and exceed expectations.

At DVS, we prioritize our employees as our greatest asset. We offer competitive compensation, comprehensive medical benefits, a 401(k) match, generous PTO accrual, professional development reimbursement, corporate-funded technology certifications, and robust employee recognition and appreciation programs.

DVS is actively seeking a Senior Incident Handler to support a large DoD team on-site in Sierra Vista, AZ. This position requires an active secret clearance or the ability to obtain.

Key Responsibilities

• Identify, analyze, and assess potential threats to the organization's security, including potential computer compromises, cyber threats, and vulnerabilities and provide recommendations for mitigation and remediation.
• Collect, analyze, and disseminate information from various sources, including open-source intelligence, social media, and dark web sources, to stay informed about emerging threats and trends.
• Perform in depth and thorough log analysis for potentially compromised windows and linux hosts and servers
• Provide well written recommendations to leadership on best way forward to recover from security incidents in a timely fashion
• Collaborate with teams, including; 24x7 Incident Handlers, SIEM and IPS content and development, and threat intelligence to inform analysis
  
  

Required Qualifications

• 4 years of experience in a incident handling or related role (College degree can account for experience)
• Strong understanding of cyber threats, threat intelligence, and security best practices
• Experience with platforms and tools such as Microsoft Defender for Endpoint (MDE), Microsoft Sentinel, and Service Now
• Strong analytical and problem-solving skills, with the ability to think critically and outside the box
• Excellent communication and collaboration skills, with the ability to work effectively with different teams
• Ability to work in a fast-paced environment, with multiple priorities and deadlines
• Top Secret Clearance or an ability to obtain Top Secret
  
  

Required Certifications

• DOD 8570 IAT II certification (Security CE or higher)
• DOD 8570 CSSP Analyst: CEH, CySA
  
  

Preferred Qualifications

• Familiarity with U.S. Army policies and procedures, and organizational processes
• Experience in cyber security controls, policies, and procedures in a military setting
• Experience with analyzing network activities, responding to anomalies, and reporting events
• Familiarity with network protocols and architectures
• Experience reviewing and analyzing endpoint security events/logs
• Knowledge of Digital Forensics and Incident Response (DFIR) procedures
• Experience in computer memory analysis
• Experience in some or all of the following tools, Elastic Kibana, Service Now, TippingPoint, Gabriel Nimbus, Wireshark, Microsoft Defender for Endpoint (MDE), and Microsoft Sentinel
• Familiarization working in JMN/JRSS environment.
• Threat and Vulnerability Analysis
• Knowledge of threat modeling frameworks like MITRE ATT&CK, including:
• Knowledge of the MITRE ATT&CK matrix and its components (tactics, techniques, and procedures)
• Ability to map adversary behavior to MITRE ATT&CK tactics and techniques
  

Physical And Mental Qualifications

• Maintain focus and awareness throughout scheduled working hours.
• Perform tasks requiring prolonged periods of sitting or standing at a desk, utilizing a computer, mouse, and keyboard.
• Lift and move objects weighing up to 15 pounds as needed.
• Exhibit excellent verbal and written communication skills, with a strong command of the English language.
• Demonstrate the ability to work independently while also collaborating effectively as part of a team.
• Quickly learn and retain routine tasks and processes.
• Possess strong organizational skills, attention to detail, business correspondence proficiency, and self-management capabilities.
• Perform the essential functions of the role satisfactorily; reasonable accommodation will be provided for employees with disabilities upon request.
• Accept and adapt to additional responsibilities or changes to assigned duties as determined by DirectViz Solutions (DVS).
  
  

If you thrive on solving complex problems and building meaningful connections, we'd love to hear from you. Join our team and make an impact today!



DirectViz Solutions, LLC (DVS) is an equal opportunity employer who prohibits discrimination and harassment against any employee or applicant for employment based on race, , sex (including pregnancy), age, gender identity, creed, religion, national origin, sexual orientation, marital status, genetic information, disability, political affiliation, protected veteran status, or any other status protected by federal, state or local law.

DVS has a zero-tolerance policy for harassment, threats, coercion, discrimination, and intimidation. Employees may file a complaint or exercise any right protected by Executive Order 11246, Section 503 of the Rehabilitation Act of 1973, as amended, Section 4212 of the Vietnam Era Veterans Readjustment Assistance Act of 1974, or the Veterans Employment Opportunities Act of 1998.