Incident Handler (DCO)

Job Locations US-AZ-Fort Huachuca
Job Post Information* : Posted Date 4 weeks ago(11/12/2021 8:00 PM)
Information Technology
Location : Location
US-AZ-Fort Huachuca
Clearance Requirement
Top Secret
Job Requires Relocation


*** This position is contingent upon contract award ***


SOS International, LLC (SOSi) is currently seeking an Incident Handler (DCO) at Fort Huachuca, AZ in support of a large, mission-critical IT services and support program with continuous (24x7) operations.


  • Responsible for leading security event monitoring and correlation within a tiered Security Operations Center.
  • Proven experience and ability to leverage CND analyst toolsets to detect and respond to IT security incidents.
  • Ability to implement standard procedures for incident response interfacing with Information Security Officer and IT staff.
  • Conducts research and document threats and their behavior to include monitoring external CSIRTS/CERTs.
  • Provide recommendations to threat mitigation strategies.
  • Employ effective web, email, and telephonic communications to clearly manage security incident response procedures.
  • Perform routine event reporting over time including trend reporting and analysis.
  • Experience required in security or network technology (Unix/Windows OS, Cisco/Juniper Routing-Switching) within a hands-on design/Implementation/Administration role.
  • Demonstrates in-depth knowledge of TCP-IP protocol implementations for all common network services in addition to demonstrated capability to perform network packet analysis and anomaly detection.
  • Professionally certified, within a CND discipline, as Technical Level III as defined by DODI 8570 is a requirement.
  • Supports cyber security compliance program based on DFAR, NIST SP 800-171, and Cybersecurity Maturity Model Certification (CMMC) Program.
  • Monitor unified view of cyber risk and vulnerabilities across the US Army RCC-C through risk-focused tools, controls, and procedures.
  • Confers with and advises subordinates on administrative policies and procedures and resolving incident response problems, priorities, and methods.
  • Prepares activity and progress reports relating to Incident Response
  • Develops solutions to complex problems that require the regular use of ingenuity and creativity
  • Conducts root cause analysis to identify, diagnose, and resolve incidence response activities
  • Creates and maintains comprehensive documentation for all implemented Incident Response activities
  • Maintains current knowledge of relevant technologies as assigned.
  • Participates in special projects as required.


  • Active in scope Top Secret (TS) with eligibility for Sensitive Compartmented Information (SCI) clearance
  • Bachelor’s degree in Information Technology, or relevant discipline; Additional years of experience may be substituted in lieu of education
  • Cybersecurity Service Provider (CSSP) – CSSP-IR Certification
  • An IAT II certification (CCNA-Security, CND, CySA+, GICSP, GSEC, Security+ CE, or SSCP) is required
  • Five years in CSSP technology or related field
  • GIAC Certified Forensic analyst (GCFA)
  • Knowledgeable in the mission and operational requirements of the U.S. Army
  • Demonstrated understanding of U.S. Army IT operational and technical requirements
  • Must be willing to work overtime, after hours, holidays, and weekends, as necessary

Preferred Qualifications

  • Master’s degree in Network Management, Telecommunications, Cybersecurity, National Security Strategy, or a related field
  • ITIL v4 certification
  • PMP Certification
  • Fluency in a foreign language is desirable, but not required

Working Conditions

  • Working conditions are normal for an office environment.
  • Fast paced, deadline-oriented environment.
  • May require periods of non-traditional working hours including consecutive nights or weekends (if applicable)


SOSi is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. SOSi takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed