Did you know?

The mission of the Australian Federal Police is to provide dynamic and effective law enforcement to the people of Australia. It provides policing throughout Australia in relation to the prevention and detection of crimes against the Commonwealth, its laws and integrity, and community police services to the Community of the ACT.

Working for the AFP provides you with a diverse and rewarding career. Whether you immerse yourself in a position on the frontline, or provide critical operational or professional support, the work you do makes a big impact on the people of Australia.

We recognise your contribution to our workforce and offer generous remuneration and conditions including:

• Six weeks (30 days) of paid annual leave per year + additional paid Christmas stand down
• 4 extra days of mandatory rest leave per year
• 18 days of paid personal leave per year
• Generous superannuation of 15.4%
• 18 weeks paid Parental Leave for Primary Caregiver (and 11 weeks for Secondary Caregiver) + additional unpaid leave entitlements for up until 24 months from the child’s date of birth or placement
• Generous salaries and incremental salary progression governed by the AFP Enterprise Agreement
• Flexible and hybrid working arrangement that provides work/life balance
• Health & wellbeing services – with a focus on early intervention, education and prevention
• Access to ongoing training and professional development opportunities

What is the role?

The Chief Information Officer (CIO) Command is a trusted frontline partner that enables policing through problem solving and technical expertise and excellence. The CIO Command provides corporate application, ICT end to end solutions, advice, cyber security and infrastructure that underpin AFP activities. The CIO Command aims to be a highly collaborative, innovative, reliable and trusted enabler for all Commands across the AFP. The products and services delivered are user focused, secure and fit for purpose, while supported by a highly skilled, agile and resilient workforce.

The CIO Command comprises of four branches; Technology Strategy and Data, Enterprise and Policing Systems, Chief Technology Officer and Cyber Security and Risk. The Cyber Security and Risk branch currently has the following vacancies:

• Adversary Emulation Specialist
• Cyber Security Architect
• Cyber Risk and Certification Analyst
• Cyber Security Systems Specialist

Although specific skill sets for the above positions are required, the process may also be used to create a merit pool for future opportunities in the branch.

Technical Specialists provide expert consultancy within their area of specialism. They develop and promote technical solutions which support the business requirements of the AFP, within their area of expertise. As a member of Cyber Security and Risk branch you will ensure the achievement of outcomes are in accordance with the regulatory framework, the AFP Code of Conduct and the AFP Governance Instruments. A Technical Specialist role does not hold any leadership or financial delegation. We strongly believe in investing in our employees training and development opportunities and will support you to develop your technical capabilities.

What will you do?

As an Adversary Emulation Specialist you will:

• Plan, coordinate and lead enterprise complex penetration testing and adversary emulation activities in both domestic and international settings
• Ensure appropriate standards (industry, national and international) and regulatory requirements are met during engagements
• Provide expert advice and reporting on cyber security vulnerabilities in the AFP environment
• Build and maintain key relationships and professional networks with internal and external partners and stakeholders
• Develop and conduct briefings on technical cyber security matters to technical and non-technical audiences
• Drive improvements and decision-making on frameworks, tooling, methods and techniques used in Adversary Emulation and Red-Team Operations.

As a Cyber Security Architect you will:

• Design optimal security solutions for large and complex transformation programs
• Provide guidance to project teams and system owners to achieve necessary endorsement and approvals
• Provide expert cyber technical security advice to other AFP business units
• Build and sustain strong relationships with a range of stakeholders including other teams, peers and colleagues across AFP and other organisations
• Ensure that appropriate action is taken to anticipate, communicate, investigate and resolve problems in systems and services

As a Cyber Risk and Certification Analyst you will:

• Conduct cybersecurity risk assessments and develop system security plans in alignment with the ISM and PSPF.
• Perform certification and accreditation activities for government systems, ensuring compliance with agency requirements.
• Analyse vulnerabilities, threats, and security controls to determine residual risk against protective security obligations.
• Develop and maintain accreditation documentation, including risk assessments, security plans, and compliance evidence.
• Support audits, IRAP assessments, and security reviews to validate compliance with government security frameworks.

As a Cyber Security Systems Specialist you will:

• Deliver hands-on technical expertise across a range of cyber security platforms, ensuring secure and resilient enterprise systems.
• Support the implementation and operation of the AFP Secure Service Edge (SSE) solution, working closely with security architects and infrastructure teams.
• Lead the integration and operationalisation of security technologies, ensuring alignment with architectural standards and business requirements.
• Provide technical leadership in Enterprise Security solutions, including identity systems, cloud and Operating Systems, ensuring security systems are deployed effectively, securely and meet business expectations.

In addition to their primary accountabilities, these roles will cultivate technical excellence across Cyber Security and Risk branch and will offer guidance and support to foster skills enhancement and professional growth for staff within the branch.

Essential Requirements

• You must be an Australian Citizen at the time of application.
• An AFP Negative Vetting 1 (SECRET) security clearance or the ability to obtain one.
• Relevant qualification or extensive experience and knowledge in area of expertise.
• Contemporary knowledge and experience relevant to the role.
• Minimum of 5 years (TSF1), 7 years (TSF2), 10 years (TSF3) and 15 years (TSF4) experience in a like or related field.

Desirable Requirements

• Tertiary qualifications in relevant field/s.
• Industry certifications in area of expertise.
• Demonstrated experience delivering secure technology outcomes in complex environments, including cloud, hybrid, or operational ecosystems.
• Strong communication and stakeholder engagement skills, with the ability to translate technical concepts for non-technical audiences.

Additional Information

• National or International travel may be required (international travel is subject to AFP medical clearance)
• There is a preference for these roles to be based in Canberra, however remote working arrangements or the opportunity to work from another AFP office in Australia will be considered.
• This role is an AFP Technical Specialist Bands 1-4.
• This advertisement is to create a merit list for future ongoing or non-ongoing vacancies arising over the next 12 months.

Commitment to Diversity & Inclusion

At the AFP we value the different perspectives, approaches and lived experiences of our people, and recognise that our collective intelligence and diversity is what makes us stronger. As such, we encourage applications from people from all walks of life, including people from culturally and linguistically diverse backgrounds, First Nations people, women, the LGBTQIA+ community and people with disability.

Contacts and Closing Information

Contact Officer: CSR Recruitment,

Contact Officer Email: [email protected]

Applications Close: 11:59pm (AEDT) 12/11/2025