Cyber Security Consultant

Cyber Security Professionals – RFQ PCS ACIC Project)

Azooa Pty Ltd is preparing a response to the
Australian Criminal Intelligence Commission (ACIC)
under
RFQ PCS P25/171 Cyber Security Services)
.

We're inviting
Expressions of Interest (EOI)
from experienced
cyber security professionals
for multiple positions supporting ACIC's mission-critical cyber operations.

If you hold an
NV1 clearance (or higher)
and are passionate about protecting national systems, this is your opportunity to contribute to one of Australia's most important cyber programs.

Project Overview

Client:
Australian Criminal Intelligence Commission (ACIC)

Location:
Canberra, ACT (Hybrid considered)

Start Date:
December 2025

Contract Term:
3 years + 2 × 12-month extensions

Security:
AGSVA NV1 + ACIC Organisational Suitability Assessment (OSA)

The ACIC requires ongoing cyber capability in alignment with the
Protective Security Policy Framework (PSPF)
and
Australian Signals Directorate's Information Security Manual (ISM)
.

Available Role Categories

Governance, Risk & Compliance (GRC)

Roles:
Cyber GRC Specialist, Information Security Risk Assessor, IRAP Assessor, Cyber Policy & Compliance Advisor

What you'll do:

Develop and deliver ICT security policies and standards

Conduct Threat and Security Risk Assessments

Perform ISM, PSPF, and Essential Eight compliance assessments

Support IRAP and audit activities

You'll bring:

Experience in cyber governance or compliance within government

Strong knowledge of PSPF, ISM, and ASD Essential Eight

IRAP certification (preferred)

Excellent communication and stakeholder engagement skills

Security Testing & Assurance

Roles:
Penetration Tester / Ethical Hacker, Red Team Operator, Vulnerability Management Engineer, Cyber Assurance Analyst

What you'll do:

Conduct penetration testing (closed-box, open-box, double-blind)

Run Red and Purple Team exercises

Execute phishing and social engineering campaigns

Manage Tenable vulnerability management solution

You'll bring:

OSCP, CREST, or equivalent certification

Strong testing and vulnerability management background

Experience with Tenable, Burp Suite, and Metasploit

NV1 clearance and OSA eligibility

Security Advisory & Consulting

Roles:
Cyber Security Architect, Cloud Security Consultant, ICT Security Strategy Advisor

What you'll do:

Conduct ICT and cloud security architecture reviews

Assess AWS/Azure cloud environments for compliance

Develop ICT Security Strategies aligned with PSPF and ISM

Provide advisory support to ACIC stakeholders

You'll bring:

Deep knowledge of PSPF, ISM, and Essential Eight

Certifications such as CISSP, CCSP, SABSA, or AWS/Azure Security

Experience in enterprise or cloud security architecture

NV1 clearance and OSA screening

Incident Preparedness & Response

Roles:
Incident Response Analyst, Threat Hunter, Digital Forensics Specialist

What you'll do:

Conduct proactive threat hunting and forensics investigations

Develop and maintain incident response playbooks

Run cyber incident tabletop exercises

Collaborate with ACIC teams for detection and containment

You'll bring:

SOC, DFIR, or threat intelligence experience

GCFA, GCIH, CHFI, or equivalent certification

Strong knowledge of MITRE ATT&CK and forensic tools

NV1 clearance and OSA compliance

Security Writing & Training

Roles:
Cybersecurity Technical Writer, Awareness Trainer, Documentation Specialist

What you'll do:

Develop cyber awareness and training content

Prepare System Security Plans (SSP), Incident Response Plans (IRP), and Configuration Management Plans (CMP)

Translate technical cyber concepts into accessible materials

Support ACIC's internal cyber awareness programs

You'll bring:

Experience in cyber documentation or communications

Understanding of PSPF, ISM, and Essential Eight

Strong writing and editing skills

NV1 clearance and OSA eligibility

Clearance and Screening Requirements

All personnel must:

Hold or obtain
AGSVA NV1 clearance (minimum)

Pass
ACIC Organisational Suitability Assessment (OSA)
, which includes:

• Character and background screening

• Psychological assessment

Sign ACIC confidentiality agreements prior to engagement

Store or process no Buyer Data outside ACIC environments

Ideal Candidates Will Have

Proven experience in government or secure environments

Knowledge of PSPF, ISM, and ASD Essential Eight

Relevant certifications (IRAP, OSCP, CISSP, CCSP, GCFA, etc.)

Excellent problem-solving and analytical skills

Collaborative mindset and professional communication skills

Ability to work under security and confidentiality constraints

Working Arrangements

Canberra-based, hybrid work arrangements may be approved

Engagements may vary by project and deliverable scope

All work to comply with ACIC data sovereignty and security policies

Why Join This Project

This is a unique opportunity to contribute to
national cyber resilience
within one of Australia's most critical security agencies.

You'll help ACIC strengthen its defensive capabilities, protect high-value data, and enhance operational security across its networks and platforms.

Work alongside highly skilled cyber professionals and play a key role in Australia's national intelligence ecosystem.

How to Apply (LinkedIn Easy Apply)

To express interest:

Click
Easy Apply
on LinkedIn

Attach your
tailored resume
highlighting your relevant experience

Alternatively, you may email your EOI directly to:

About Azooa

Azooa Pty Ltd partners with Australian Government agencies to deliver cyber, ICT, and professional services through trusted, cleared specialists.

We focus on connecting the right experts to complex government programs, ensuring security, integrity, and delivery excellence.

By joining this ACIC submission, you'll be part of a professional network committed to national security outcomes and long-term capability building.