Job Description

Title:

Security Controller

Reports to:

Head of Security

Work Arrangement:

On-site, Hammersmith, London

Company Overview

Metrea is a defence company dedicated to translating commercial innovation into solutions for the hardest problems in national security. With deep mission expertise, Metrea focuses on delivering effects-as-a-service across Aerospace, Electromagnetic & Cyber, Digital & Synthetic domains via its capability groups. Metrea also consists of six support groups (Operations, People, Finance, Legal, Strategy and Solutions) that guide the development of specific capabilities that Metrea's files (product, projects, programs etc) leverage to achieve their targets.

Group Overview

Metrea Management

is our global shared service providing support for the Capabilities in areas such as People, Finance, Legal, Strategy and Information Technology.

Position Summary

The CSC is responsible to the Head of Security (HoS) and Board of Directors for the strategic development of an effective security culture and the day-to-day management and delivery of security policy, procedures, risk assessment, management and general security processes.

Role and Responsibilities

The Capability Security Controller (CSC) is responsible to the Head of Security (HoS) and the Board of Directors for the strategic development, implementation, and continuous improvement of the company's physical and procedural security posture. This includes ensuring compliance with Facility Security Clearance (FSC) requirements and national security obligations.

Key Responsibilities:

1. Security Awareness

Develop, promote, and embed an effective physical security culture across the organisation.


Act as a primary security advisor to senior leadership, providing risk-based recommendations and updates on threat landscapes.

2. FSC Accreditation & Compliance

Assist with the process for initial Facility Security Clearance (FSC) accreditation and manage ongoing compliance reviews.


Ensure all policies, procedures, and physical controls meet FSC and contractual security requirements.


Maintain up-to-date and accurate documentation such as Information Protection Zone (IPZ) materials, FSC instructions, and display posters.

3. Incident Management and Threat Response

Act as the designated Incident Response Manager for security-related events, ensuring prompt and effective resolution.


Monitor threat intelligence sources and coordinate appropriate mitigations and alerts.


Report all security breaches or incidents to the appropriate Contracting Authorities and regulatory bodies, in accordance with legal and contractual requirements.

4. Liaison and Governance

Represent the company during external audits, inspections, and FSC-related engagements.


Collaborate with internal stakeholders, including Facilities, IT, Legal, and HR, to ensure security is embedded across operations.

5. Training and Awareness

Deliver onboarding and ongoing security awareness training programmes that meet regulatory and company standards.


Ensure all employees understand their security responsibilities and have access to up-to-date guidance.


Ensure all employees and their visitors adhere to the company Security Framework.

6. Audit and Continuous Improvement

Plan and conduct internal security audits and reviews in line with FSC requirements and internal governance.


Review findings from audits, investigations, and near-miss events, implementing corrective and preventive actions as necessary.


Monitor and track the effectiveness of security controls, recommending enhancements as needed.

Skills and Experience

Exceptional Communication and Influence:

Communicates clearly and persuasively, both verbally and in writing, with the ability to brief and influence Board-level executives and senior stakeholders across government, defence, and industry.

Security Communication Expertise:

Effectively conveys complex technical and non-technical security information, risk assessments, and intelligence to a wide range of audiences, tailoring content and tone to suit context and stakeholder needs.

Knowledge of UK Security Standards and Frameworks:

Demonstrates in-depth understanding of key UK Government and MOD security requirements, including:

JSP 440

(Defence Manual of Security)

Security Policy Framework (SPF)

ISO/IEC 27001

(Information Security Management Systems)

Cyber Essentials / Cyber Essentials Plus

FSC accreditation processes

Strategic Challenge Mindset:

Confident in challenging assumptions and traditional ways of working to drive innovation and ensure security best practices remain aligned with evolving threats and business priorities.

Collaborative Stakeholder Engagement:

Builds strong relationships across internal teams and external agencies (e.g., ISAC, MOD, NCSC), promoting a culture of shared responsibility for security.

Project and Operational Delivery:

Skilled in planning and managing security projects, including facility adaptations, audits, and risk mitigation plans, ensuring delivery within time, cost, and compliance parameters.

Continuous Learning and Innovation:

Keeps abreast of emerging security threats, technologies, and regulatory developments in the UK national security landscape, contributing to ongoing personal and organisational development.

Additional Eligibility Qualifications

ISAC Security Controller induction Brief. Relevant NPSA Briefings and Courses. Suitable Document Verification Course ; DISA Membership.

Our Firmware

Metrea's single core value, "rooted in humility," is supported by four key attributes: entrepreneurial, systematic, discerning, and over-deliver. These attributes, combined, form our Teammate Firmware, our culture. We explore these attributes during the hiring process when we grow our teams and continually support the growth of our culture. We are a hyper-collaborative, dynamically hierarchical organization united by a passion for what we do, how we do it, who we do it with, and who we do it for.

Benefits

MAM UK

Private Medical Insurance


Subsided gym membership / plans through Wellhub


Electric Car scheme


Cycle to work scheme


Salary sacrificed pension scheme


Free lunch on office days


Enhanced Parental Leave

Right to Work

The employee will have the legal right to work in the United Kingdom and will be able to produce right to work documentation, must hold, or be eligible to obtain UK Security Clearance.

Equal Opportunities Statement

Metrea Management Limited (MAM) is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or other characteristics protected by law.

Position Type and Expected Hours of Work

This is a full-time position with typical working hours of Monday through Friday, 9:00 a.m. to 6:00 p.m. Hours and work shifts may change in accordance with department and business needs. available, as business needs require.

Work Location

Hammersmith, London

Work Environment (please verify the below information)

This job operates in an office setting

Travel

May require National and International travel.