The Digital Transformation Agency (DTA) seeks a qualified supplier to conduct a comprehensive accessibility audit of the BuyICT digital platform, built on ServiceNow. The audit will focus on the newly designed navigation and information architecture, covering both logged-out (public-facing) and logged-in (authenticated user) experiences. The objective is to confirm compliance with the Web Content Accessibility Guidelines (WCAG) 2.2 and relevant criteria of the Digital Service Standard, with a target of achieving at least Level AA compliance.

The supplier will evaluate accessibility across the redesigned BuyICT experience, providing a detailed report with prioritised findings, issue severity, and actionable remediation recommendations. The work includes supporting the drafting of an accessibility statement, conducting a structured re-test to confirm remediation, and offering technical advice where required. Suppliers must demonstrate experience auditing government services, strong knowledge of WCAG 2.2 and related Australian Government standards, and the ability to provide practical remediation guidance.

The scope of the audit includes desktop and responsive views, approximately 12 logged-out templates, 7 logged-in templates, and 6 key user journeys for authenticated users. Testing is expected to combine automated and manual methods, including screen reader testing, keyboard navigation, forms testing, and colour contrast analysis, with optional testing by users with disabilities. Out of scope are multimedia content, downloadable assets (e.g. PDFs, Word, Excel), embedded third-party services, non-test environments, content accuracy or legal compliance, and purely aesthetic branding elements unless they directly affect accessibility.

Deliverables will include an Initial Audit Report (executive summary, detailed findings, WCAG mapping, severity ratings, and remediation advice), a re-test report validating fixes, and optional support for drafting a compliant accessibility statement. Remediation support via Q&A with the development team will also be required.

Suppliers must ensure all personnel hold a current Baseline Security Clearance or higher. All activities must be undertaken in accordance with the Australian Government Information Security Manual (ISM), with data handled and stored within Australia unless otherwise approved in writing. Audit work will be conducted remotely, with suppliers required to use their own secure computing environment, licensed automated testing tools, screen readers, and any assistive technology hardware required. No DTA systems, software, or equipment will be provided or installed.

The engagement will be managed through weekly Microsoft Teams meetings to review status, risks, and deliverables, with additional meetings scheduled as required.

Estimated start date: Wednesday, 15 October 2025

Initial contract duration: 6 Months

Extension term: Not applicable

Working arrangements: Remote

Industry briefing: No