Cyber Security Professionals – RFQ PCS ACIC Project)
Azooa Pty Ltd is preparing a response to the
Australian Criminal Intelligence Commission (ACIC)
under
RFQ PCS P25/171 Cyber Security Services)
.
We're inviting
Expressions of Interest (EOI)
from experienced
cyber security professionals
for multiple positions supporting ACIC's mission-critical cyber operations.
If you hold an
NV1 clearance (or higher)
and are passionate about protecting national systems, this is your opportunity to contribute to one of Australia's most important cyber programs.
Project Overview
Client:
Australian Criminal Intelligence Commission (ACIC)
Location:
Canberra, ACT (Hybrid considered)
Start Date:
December 2025
Contract Term:
3 years + 2 × 12-month extensions
Security:
AGSVA NV1 + ACIC Organisational Suitability Assessment (OSA)
The ACIC requires ongoing cyber capability in alignment with the
Protective Security Policy Framework (PSPF)
and
Australian Signals Directorate's Information Security Manual (ISM)
.
Available Role Categories
Governance, Risk & Compliance (GRC)
Roles:
Cyber GRC Specialist, Information Security Risk Assessor, IRAP Assessor, Cyber Policy & Compliance Advisor
What you'll do:
Develop and deliver ICT security policies and standards
Conduct Threat and Security Risk Assessments
Perform ISM, PSPF, and Essential Eight compliance assessments
Support IRAP and audit activities
You'll bring:
Experience in cyber governance or compliance within government
Strong knowledge of PSPF, ISM, and ASD Essential Eight
IRAP certification (preferred)
Excellent communication and stakeholder engagement skills
Security Testing & Assurance
Roles:
Penetration Tester / Ethical Hacker, Red Team Operator, Vulnerability Management Engineer, Cyber Assurance Analyst
What you'll do:
Conduct penetration testing (closed-box, open-box, double-blind)
Run Red and Purple Team exercises
Execute phishing and social engineering campaigns
Manage Tenable vulnerability management solution
You'll bring:
OSCP, CREST, or equivalent certification
Strong testing and vulnerability management background
Experience with Tenable, Burp Suite, and Metasploit
NV1 clearance and OSA eligibility
Security Advisory & Consulting
Roles:
Cyber Security Architect, Cloud Security Consultant, ICT Security Strategy Advisor
What you'll do:
Conduct ICT and cloud security architecture reviews
Assess AWS/Azure cloud environments for compliance
Develop ICT Security Strategies aligned with PSPF and ISM
Provide advisory support to ACIC stakeholders
You'll bring:
Deep knowledge of PSPF, ISM, and Essential Eight
Certifications such as CISSP, CCSP, SABSA, or AWS/Azure Security
Experience in enterprise or cloud security architecture
NV1 clearance and OSA screening
Incident Preparedness & Response
Roles:
Incident Response Analyst, Threat Hunter, Digital Forensics Specialist
What you'll do:
Conduct proactive threat hunting and forensics investigations
Develop and maintain incident response playbooks
Run cyber incident tabletop exercises
Collaborate with ACIC teams for detection and containment
You'll bring:
SOC, DFIR, or threat intelligence experience
GCFA, GCIH, CHFI, or equivalent certification
Strong knowledge of MITRE ATT&CK and forensic tools
NV1 clearance and OSA compliance
Security Writing & Training
Roles:
Cybersecurity Technical Writer, Awareness Trainer, Documentation Specialist
What you'll do:
Develop cyber awareness and training content
Prepare System Security Plans (SSP), Incident Response Plans (IRP), and Configuration Management Plans (CMP)
Translate technical cyber concepts into accessible materials
Support ACIC's internal cyber awareness programs
You'll bring:
Experience in cyber documentation or communications
Understanding of PSPF, ISM, and Essential Eight
Strong writing and editing skills
NV1 clearance and OSA eligibility
Clearance and Screening Requirements
All personnel must:
Hold or obtain
AGSVA NV1 clearance (minimum)
Pass
ACIC Organisational Suitability Assessment (OSA)
, which includes:
• Character and background screening
• Psychological assessment
Sign ACIC confidentiality agreements prior to engagement
Store or process no Buyer Data outside ACIC environments
Ideal Candidates Will Have
Proven experience in government or secure environments
Knowledge of PSPF, ISM, and ASD Essential Eight
Relevant certifications (IRAP, OSCP, CISSP, CCSP, GCFA, etc.)
Excellent problem-solving and analytical skills
Collaborative mindset and professional communication skills
Ability to work under security and confidentiality constraints
Working Arrangements
Canberra-based, hybrid work arrangements may be approved
Engagements may vary by project and deliverable scope
All work to comply with ACIC data sovereignty and security policies
Why Join This Project
This is a unique opportunity to contribute to
national cyber resilience
within one of Australia's most critical security agencies.
You'll help ACIC strengthen its defensive capabilities, protect high-value data, and enhance operational security across its networks and platforms.
Work alongside highly skilled cyber professionals and play a key role in Australia's national intelligence ecosystem.
How to Apply (LinkedIn Easy Apply)
To express interest:
Click
Easy Apply
on LinkedIn
Attach your
tailored resume
highlighting your relevant experience
Alternatively, you may email your EOI directly to:
About Azooa
Azooa Pty Ltd partners with Australian Government agencies to deliver cyber, ICT, and professional services through trusted, cleared specialists.
We focus on connecting the right experts to complex government programs, ensuring security, integrity, and delivery excellence.
By joining this ACIC submission, you'll be part of a professional network committed to national security outcomes and long-term capability building.