Digital Forensics Analyst
AIS (Applied Information Sciences), Alexandria, Virginia, us, 22350
Overview
Why AIS? When you join AIS, you’re joining a mission-driven team that’s passionate about making a difference. You’ll work on projects that matter, alongside industry-leading experts, in an environment that fosters innovation, driving client success, and empowering our team to make a lasting impact. As an employee-owned company, we value collaboration, inclusivity, continuous growth, and shared success. What we offer includes employee ownership, continuous learning, an inclusive culture, and mission-driven work that engages in projects making a meaningful difference for our clients and communities.
What are we looking for? At AIS, we’re looking for more than just skills — we’re looking for driven individuals who are passionate about making a difference, eager to grow, and aligned with our core principles.
What you will be doing This position is contingent upon contract award. We are currently pursuing a proposal and are seeking qualified candidates to include in our submission and identify candidates for future hiring needs on the program once awarded. At AIS, we are dedicated to providing our employees with diverse opportunities to grow their careers while supporting a variety of impactful projects. For this position, we are seeking a talented individual to join AIS as a Senior Security Engineer.
Key Responsibilities
Digital Forensic Analysis
Conduct forensic examinations on Windows, Linux, and MacOS systems.
Perform digital media acquisition, including disk imaging, preservation, and chain-of-custody documentation.
Execute mobile device acquisition and analysis, including iOS and Android platforms.
Perform malware analysis to determine behavior, indicators of compromise (IOCs), and impact.
Cloud & Virtual Environment Forensics
Investigate virtualized environments, including Virtual Machines and associated logs/artifacts.
Perform cloud-based forensic analysis using:
Microsoft 365
Azure
AWS
Analyze cloud-native logs such as CloudTrail, IAM logs, and other platform security telemetry.
Threat Hunting & Investigative Activities
Utilize EDR, SIEM, and full packet capture tools to examine endpoint behavior, network activity, and anomalous patterns.
Conduct proactive threat hunting to identify previously undetected malicious activity.
Correlate forensic data with threat intelligence to support broader investigations.
Tools, Documentation & Reporting
Leverage industry-standard forensic tools, including EnCase and SANS methodologies.
Generate detailed forensic reports for technical stakeholders, legal teams, and leadership.
Maintain strict adherence to evidence handling, analysis integrity, and investigative best practices.
Required For This Opportunity
Minimum of 5 years of experience conducting or supporting digital forensic investigations, including:
Windows, Linux, and MacOS forensic analysis
Disk imaging and media preservation
Mobile device forensic acquisition and analysis
Malware analysis
Experience conducting forensic investigations in M365, Azure, and AWS environments.
Ability to analyze virtualized systems and cloud-native telemetry (CloudTrail, IAM logs).
Extensive experience using:
Endpoint Detection & Response (EDR)
Security Information & Event Management (SIEM)
Full packet capture platforms
Strong analytical, documentation, and evidence-handling skills.
Clearance: Secret
Certifications
SANS GIAC
GCIH – Incident Handler
GCFA – Forensic Analyst
GCFE – Forensic Examiner
GREM – Malware Reverse Engineering
GISF – Information Security Fundamentals
GXPN – Exploit Research & Advanced Pen Testing
GCTI – Cyber Threat Intelligence
GOSI – Open-Source Intelligence
EnCase Certifications (EnCE, CFSR, ENCEP)
Nice To Have Skills
Experience working in federal, law enforcement, or regulated environments.
Background in threat intelligence and advanced incident response.
Familiarity with scripting or automation (Python, PowerShell) for forensic workflows.
Compensation The targeted base salary range for this role is $101,000-$152,000 per year. This range is provided as a guideline; final offer will reflect factors including skillset, experience, education, certifications, and location. We value transparency and are happy to discuss your qualifications during the interview process.
Applied Information Sciences does not discriminate on the basis of race, national origin, religion, color, gender, sexual orientation, age, disability, protected veteran status, or any other basis. Employment decisions are based solely on qualifications, merit, and business needs.
#J-18808-Ljbffr
Why AIS? When you join AIS, you’re joining a mission-driven team that’s passionate about making a difference. You’ll work on projects that matter, alongside industry-leading experts, in an environment that fosters innovation, driving client success, and empowering our team to make a lasting impact. As an employee-owned company, we value collaboration, inclusivity, continuous growth, and shared success. What we offer includes employee ownership, continuous learning, an inclusive culture, and mission-driven work that engages in projects making a meaningful difference for our clients and communities.
What are we looking for? At AIS, we’re looking for more than just skills — we’re looking for driven individuals who are passionate about making a difference, eager to grow, and aligned with our core principles.
What you will be doing This position is contingent upon contract award. We are currently pursuing a proposal and are seeking qualified candidates to include in our submission and identify candidates for future hiring needs on the program once awarded. At AIS, we are dedicated to providing our employees with diverse opportunities to grow their careers while supporting a variety of impactful projects. For this position, we are seeking a talented individual to join AIS as a Senior Security Engineer.
Key Responsibilities
Digital Forensic Analysis
Conduct forensic examinations on Windows, Linux, and MacOS systems.
Perform digital media acquisition, including disk imaging, preservation, and chain-of-custody documentation.
Execute mobile device acquisition and analysis, including iOS and Android platforms.
Perform malware analysis to determine behavior, indicators of compromise (IOCs), and impact.
Cloud & Virtual Environment Forensics
Investigate virtualized environments, including Virtual Machines and associated logs/artifacts.
Perform cloud-based forensic analysis using:
Microsoft 365
Azure
AWS
Analyze cloud-native logs such as CloudTrail, IAM logs, and other platform security telemetry.
Threat Hunting & Investigative Activities
Utilize EDR, SIEM, and full packet capture tools to examine endpoint behavior, network activity, and anomalous patterns.
Conduct proactive threat hunting to identify previously undetected malicious activity.
Correlate forensic data with threat intelligence to support broader investigations.
Tools, Documentation & Reporting
Leverage industry-standard forensic tools, including EnCase and SANS methodologies.
Generate detailed forensic reports for technical stakeholders, legal teams, and leadership.
Maintain strict adherence to evidence handling, analysis integrity, and investigative best practices.
Required For This Opportunity
Minimum of 5 years of experience conducting or supporting digital forensic investigations, including:
Windows, Linux, and MacOS forensic analysis
Disk imaging and media preservation
Mobile device forensic acquisition and analysis
Malware analysis
Experience conducting forensic investigations in M365, Azure, and AWS environments.
Ability to analyze virtualized systems and cloud-native telemetry (CloudTrail, IAM logs).
Extensive experience using:
Endpoint Detection & Response (EDR)
Security Information & Event Management (SIEM)
Full packet capture platforms
Strong analytical, documentation, and evidence-handling skills.
Clearance: Secret
Certifications
SANS GIAC
GCIH – Incident Handler
GCFA – Forensic Analyst
GCFE – Forensic Examiner
GREM – Malware Reverse Engineering
GISF – Information Security Fundamentals
GXPN – Exploit Research & Advanced Pen Testing
GCTI – Cyber Threat Intelligence
GOSI – Open-Source Intelligence
EnCase Certifications (EnCE, CFSR, ENCEP)
Nice To Have Skills
Experience working in federal, law enforcement, or regulated environments.
Background in threat intelligence and advanced incident response.
Familiarity with scripting or automation (Python, PowerShell) for forensic workflows.
Compensation The targeted base salary range for this role is $101,000-$152,000 per year. This range is provided as a guideline; final offer will reflect factors including skillset, experience, education, certifications, and location. We value transparency and are happy to discuss your qualifications during the interview process.
Applied Information Sciences does not discriminate on the basis of race, national origin, religion, color, gender, sexual orientation, age, disability, protected veteran status, or any other basis. Employment decisions are based solely on qualifications, merit, and business needs.
#J-18808-Ljbffr