Job Specifications
Title: Security Controller
Reports to: Head of Security
Work Arrangement: On-site, Hammersmith, London
Company Overview
Metrea is a defence company dedicated to translating commercial innovation into solutions for the hardest problems in national security. With deep mission expertise, Metrea focuses on delivering effects-as-a-service across Aerospace, Electromagnetic & Cyber, Digital & Synthetic domains via its capability groups. Metrea also consists of six support groups (Operations, People, Finance, Legal, Strategy and Solutions) that guide the development of specific capabilities that Metrea's files (product, projects, programs etc) leverage to achieve their targets.
Group Overview
Metrea Management is our global shared service providing support for the Capabilities in areas such as People, Finance, Legal, Strategy and Information Technology.
Position Summary
The CSC is responsible to the Head of Security (HoS) and Board of Directors for the strategic development of an effective security culture and the day-to-day management and delivery of security policy, procedures, risk assessment, management and general security processes.
Role And Responsibilities
The Capability Security Controller (CSC) is responsible to the Head of Security (HoS) and the Board of Directors for the strategic development, implementation, and continuous improvement of the company’s physical and procedural security posture. This includes ensuring compliance with Facility Security Clearance (FSC) requirements and national security obligations.
Key Responsibilities
Security Awareness
Develop, promote, and embed an effective physical security culture across the organisation.
Act as a primary security advisor to senior leadership, providing risk-based recommendations and updates on threat landscapes.
FSC Accreditation & Compliance
Assist with the process for initial Facility Security Clearance (FSC) accreditation and manage ongoing compliance reviews.
Ensure all policies, procedures, and physical controls meet FSC and contractual security requirements.
Maintain up-to-date and accurate documentation such as Information Protection Zone (IPZ) materials, FSC instructions, and display posters.
Incident Management and Threat Response
Act as the designated Incident Response Manager for security-related events, ensuring prompt and effective resolution.
Monitor threat intelligence sources and coordinate appropriate mitigations and alerts.
Report all security breaches or incidents to the appropriate Contracting Authorities and regulatory bodies, in accordance with legal and contractual requirements.
Liaison and Governance
Represent the company during external audits, inspections, and FSC-related engagements.
Collaborate with internal stakeholders, including Facilities, IT, Legal, and HR, to ensure security is embedded across operations.
Training and Awareness
Deliver onboarding and ongoing security awareness training programmes that meet regulatory and company standards.
Ensure all employees understand their security responsibilities and have access to up-to-date guidance.
Ensure all employees and their visitors adhere to the company Security Framework.
Audit and Continuous Improvement
Plan and conduct internal security audits and reviews in line with FSC requirements and internal governance.
Review findings from audits, investigations, and near-miss events, implementing corrective and preventive actions as necessary.
Monitor and track the effectiveness of security controls, recommending enhancements as needed.
Skills And Experience
Exceptional Communication and Influence:
Communicates clearly and persuasively, both verbally and in writing, with the ability to brief and influence Board-level executives and senior stakeholders across government, defence, and industry.
Security Communication Expertise
Effectively conveys complex technical and non-technical security information, risk assessments, and intelligence to a wide range of audiences, tailoring content and tone to suit context and stakeholder needs.
Knowledge Of UK Security Standards And Frameworks
Demonstrates in-depth understanding of key UK Government and MOD security requirements, including:
JSP 440 (Defence Manual of Security)
Security Policy Framework (SPF)
ISO/IEC 27001 (Information Security Management Systems)
Cyber Essentials / Cyber Essentials Plus
FSC accreditation processes
Strategic Challenge Mindset
Confident in challenging assumptions and traditional ways of working to drive innovation and ensure security best practices remain aligned with evolving threats and business priorities.
Collaborative Stakeholder Engagement
Builds strong relationships across internal teams and external agencies (e.g., ISAC, MOD, NCSC), promoting a culture of shared responsibility for security.
Project And Operational Delivery
Skilled in planning and managing security projects, including facility adaptations, audits, and risk mitigation plans, ensuring del
About the Company
Metrea, formerly Meta Aerospace, offers a deep stack of defense capabilities and services for our customers and partners, allowing them to anticipate, secure, and defend their interests in a rapidly changing problem space. We architect cutting-edge solutions across a wide variety of missions from ISR services, to multi-mission electromagnetic technologies, to simulations applications.
Know more