Associate Cybersecurity Consultant

Position:  Associate Cybersecurity Consultant x 2

Datacom Location:  Melbourne and Adelaide preferred but open to other cities across Australia.

Security Requirements: Australian citizens with Baseline security clearances or higher only (NV1 or NV2 preferred).

Full Time, Permanent Position.

Our Why 

Datacom works with organisations and communities across Australia and New Zealand to make a difference in people’s lives and help them to use the power of tech to innovate and grow. 

About the Role (Your Why)

The Datacom Associate Cybersecurity Consultant is an entry level professional role for cybersecurity (but previous IT experience is still essential, this is NOT an entry-level role into IT in general) designed to support the delivery of cybersecurity advisory services across client engagements.

Working under the guidance of Datacom’s experienced consultants, this role provides hands on exposure to Governance, Risk and Compliance (GRC) activities. The Associate Consultant assists with assessments, documentation, and other tasks while developing foundational consulting, communication, and cybersecurity skills.

This position is ideal for graduates or early career professionals seeking structured development into a full Cybersecurity Consultant role.

Due to the nature of our client, you must be an Australian Citizen and have an active Baseline Security clearance or higher (NV1, NV2) to be successful in your application for this role.

What You’ll Do   

• Security Consulting: Support Datacom consultants and clients by gathering requirements, documenting findings and preparing draft security deliverables such as the supporting documentation required to attain an Authority to Operate. Follow established methodologies, templates and frameworks, while working under the guidance of senior team members.
• Stakeholder Collaboration: Participate in client meetings and workshops alongside Datacom consultants. Coordinate with internal and external stakeholders to keep tasks moving across projects and BAU activities.
• Project Delivery: Support the planning and delivery of cybersecurity engagements. Maintain accurate project documentation, task tracking and internal evidence repositories, and promptly escalate risks or issues.
• Continuous Improvement: Actively develop cybersecurity knowledge through training and mentoring.
• Communication and Reporting: Contribute to clear reports, registers and presentations. Summarise technical information for technical and non‑technical audiences, ensuring quality through peer review.
• Risk Assessments: Assist with security risk assessments and gap analyses, including control reviews and business impact discussions. Help prepare risk artefacts such as risk registers, treatment plans and summary reports.
• Compliance and Audit: Support compliance activities against frameworks such as ASD/ACSC ISM, ASD/ACSC Essential Eight, ISO 27001, ISO 42001 and NIST CSF. Collect and organise audit evidence, assist with control mapping, and maintain compliance tracking documentation..
• Policy Development: Help draft and update security policies, plans, standards and procedures using approved templates, ensuring alignment to relevant frameworks and effective version control.
• Typical tasks: spreadsheet work, document drafting, control reviews and stakeholder coordination.

What You’ll Bring

• Foundational understanding of cybersecurity principles and threat landscapes will be helpful.
• Familiarity with cybersecurity frameworks (ISO 27001, NIST, ISM, PSPF, E8).
• Basic understanding of networking concepts, operating systems, and cloud environments.
• Knowledge of common cyber risks including phishing, malware, credential compromise, and misconfiguration.
• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field or equivalent work experience in a relevant discipline can be advantageous but not mandatory.
• Entry Level security certifications such as Certificate IV Cybersecurity, CompTIA Security+, Microsoft SC-900 and AWS Cloud Practitioner, are highly valued.
• While not mandatory, any awareness of the following will be useful, while experience will be highly regarded:

o Awareness of Australian cybersecurity regulatory environments.

o Basic understanding of privacy obligations and data protection principles.

o Awareness of secure handling of sensitive information.

o Understanding of professional conduct expectations in client environments.

o Awareness of the importance of ethical behaviour and confidentiality.

• Strong interpersonal skills to work collaboratively within teams and a sense of urgency when dealing with time sensitive matters. Willingness to learn and accept feedback.

Why Join Us Here at Datacom? 

Datacom is one of Australia and New Zealand’s largest suppliers of Information Technology professional services. We have managed to maintain a dynamic, agile, small business feel that is often diluted in larger organisations of our size. It's our people that give Datacom its unique culture and energy that you can feel from the moment you meet with us. 

We care about our people and provide a range of perks such as social events, chill-out spaces, remote working, flexi-hours and professional development courses to name a few. You’ll have the opportunity to learn, develop your career, connect and bring your true self to work. You will be recognised and valued for your contributions and be able to do your work in a collegial, flat-structured environment. 

We operate at the forefront of technology to help Australia and New Zealand’s largest enterprise organisations explore possibilities and solve their greatest challenges, so you will never run out of interesting new challenges and opportunities. 

We want Datacom to be an inclusive and welcoming workplace for everyone and take pride in the steps we have taken and continue to take to make our environment fun and friendly, and our people feel supported.