Agile Defense · 19 hours ago
Cyber Security Incident Handler - Associate
Fort Huachuca, AZ
Full-time
Onsite
New Grad, Entry Level
0+ years expAgile Defense is a company focused on adaptive innovation to support national missions through advanced technologies. They are seeking a motivated Associate Incident Handler to join their 24x7 security operations team, responsible for monitoring security alerts, performing initial event triage, and supporting incident response activities.
Information ServicesInformation TechnologySoftware
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Continuously monitor the security alert queue from SIEM, EDR, and other security tools, performing initial analysis to classify and prioritize events according to established procedures
Execute initial response steps based on documented playbooks for common security events. Accurately escalate qualified incidents to intermediate and senior handlers when necessary
Meticulously document all analysis and actions taken in the incident management system, ensuring a clear and concise record of the initial response effort
Adhere strictly to standard operating procedures (SOPs) for incident handling, containment, and reporting
Assist senior team members in their investigation of more complex incidents by gathering data, running pre-defined queries, and performing assigned tasks
Qualification
Required
Must be able to obtain and maintain a Secret security clearance
Candidates must possess one of the following certifications prior to start date: CompTia Security+, Certified Ethical Hacker (CEH), CYSA+
0-2 years of experience in IT, cybersecurity, or a related technical role. Internships or academic projects in cybersecurity are highly valued
An associate's degree in cyber security or related field can replace the experience requirements
Foundational understanding of cybersecurity principles (e.g., CIA Triad), common network protocols (TCP/IP), and operating systems (Windows/Linux)
Familiarity with the purpose of security tools such as SIEM and Endpoint Detection and Response (EDR) platforms
Strong eagerness to learn, detail-oriented, with developing analytical and problem-solving abilities
Good written and verbal communication skills, with the ability to clearly document actions and escalate issues
Ability to work effectively in a structured, 24x7 shift-based operational environment and follow defined procedures meticulously
Preferred
Familiarity with U.S. military policies, procedures, and organizational structures
Foundational understanding of cybersecurity controls and the importance of adhering to security policies in a professional environment
Basic experience reviewing network activity logs and an understanding of common network protocols (e.g., DNS, HTTP, SMB)
Familiarity with reviewing security events from standard endpoint platforms (e.g., antivirus, host firewalls)
Exposure to or academic experience with some of the following tools: A SIEM platform (e.g., Splunk, Kibana, Sentinel), MDE EDR platform and or KQL, ServiceNow or another ticketing system, Linux Command Line
Company
Agile Defense
Agile Defense is an information technology company located in Reston. It is a sub-organization of Agile-BOT.
1001-5000 employees
Funding
Current Stage
Late StageTotal Funding
unknown2022-11-16Acquired
Leadership Team
Rick Wagner
Chief Executive Officer
B
Bill Luebke
Chief Financial Officer
Recent News
2025-12-18
Company data provided by crunchbase