SOC Engineer Tier 1

Why AIS?

When you join AIS, you’re joining a mission‑driven team that’s passionate about making a difference. You’ll work on projects that matter, alongside industry‑leading experts, in an environment that fosters innovation, drives client success, and empowers our team to make a lasting impact. As an employee‑owned company, we value collaboration, inclusivity, continuous growth, and shared success.

• Employee Ownership:
  Your contributions directly impact the company’s success, and you share in its achievements.
• Continuous Learning:
  Access to resources, training, and mentorship to support your professional growth.
• Inclusive Culture: A workplace where diversity is celebrated, and everyone’s voice is valued.
• Mission‑Driven Work:
  Engage in projects that make a meaningful difference for our clients and communities.

This position is contingent upon contract award. We are currently pursuing a proposal and are seeking qualified candidates to include in our submission and identify candidates for future hiring needs on the program once awarded.

• Applies advanced network security, cryptography, vulnerability assessment, regulatory compliance, and access/governance principles.
• Conducts security assessments, handles incidents, implements policies, configures advanced security settings, and manages security devices.
• Produces thorough assessments, clear documentation, improves practices, and works independently within project scope.
• Participates in team projects, shares knowledge, coordinates with other teams, and mentors junior staff.
• Advises internal teams, optimizes processes, evaluates technologies, and coordinates vendor support.

• Support the unique needs of our client as a SOC Engineer Tier 1/2 by using cutting‑edge cloud technologies to ensure secure operations.
• Ensure large‑scale Azure and M365 environments are secure and that security events are quickly identified and resolved.
• Build comprehensive security alerts, monitoring tools, and dashboards to gauge the operational security of system components.
• Implement innovation to improve the efficiency of Azure security‑related activities.
• Serve as point of escalation for challenging and complex security issue resolution.

• Review the environment scoping information and inventory to ensure a deep understanding of the organization’s business, applications, and technical solutions.
• Be well versed in the areas of focus on the security roadmap and understand how they will be implemented and impact the work that the Security Operations Center staff will have to take up.
• Provide the SOC with an understanding of the mapping between IT & organization security and how it relates to the responsibilities and tasking that the SOC has.
• Ensure that the SOC team is focusing on education based on preventive maintenance and roadmap capabilities.
• Participate in audit reviews to ensure that gaps in coverage are being addressed by the SOC team.
• Support the creation of reporting templates, explain how they are used and generated, and the expectation regarding their cadence.
• Create a process where reports are reviewed and feedback loops provide the ability to improve them.
• Specialize in SIEM configuration and maintenance.
• Responsible for building the security architecture and systems.
• Work with development operations teams to ensure that systems are up to date.
• Document requirements, procedures, and protocols to ensure that other users have the right resources.
• Work with customers on complex operational issues.

Must be in the DC Metropolitan area as positions will be 100% onsite.

TS/SCI with CI Polygraph is required.

• 3+ years of experience in security engineering to operate M365 and Azure platforms.
• Security+ certification.
• Experience in Azure and M365 environments.
• Good experience in a variety of SOC engineering/administration tools.
• Handles daily alerts, incidents; monitors, tracks, analyzes, and records.
• Works with other IT professionals to resolve fast‑moving vulnerabilities such as spam, virus, spyware,…