Security Controller

Employer: Raytheon
Location: Manchester
Requisition ID 79286BR

About the role:

The role, whilst embedded in the Raytheon UK Cyber Innovation Centre 2 (CIC2), will report directly to the Group Security Manager. The incumbent will be responsible for all aspects of Protective Security including personal,physical and documentary security requirements, processes and controls to ensure that Raytheon UK and its partners adhere to policies and procedures required of the Programme.

Main Duties:
Provide security subject matter expertise at the CIC 2

Manage all aspects of site protective security at the CIC 2 including the protection of Protectively Marked Information (PMI) and security risk management

Manage CIC 2 personnel clearance information and on boarding and off boarding activities

Manage security training and awareness and encourage a security culture within the CIC 2.

Report and investigate security breaches, contraventions and incidents.

Liaise with customer accreditation authority via the Security Working Group.

Ensure the Programme meets HMG customer compliance requirements

Job Summary
As a member of the Raytheon UK Security Team, the Security Controller supports and enables operations at the CIC 2 y providing security expertise and advice, managing security programmes at the site and by providing assurance that the protective security controls are fit for purpose and meet customer and HMG requirements. He or she will be responsible for advising Programme leadership regarding all aspects of protective security at the CIC 2 and will undertake specific security administration activities to collect and analyse the information required to enforce security controls within the CIC 2 managed service to meet the requirements outlined in the Information Security Management System (ISMS) for the CIC 2 services.

Key Responsibilities
The Security Controller’s specific roles and responsibilities include the following:
• Ensures security procedures are adhered to by employees and 3rd parties working with HMG Protectively Marked Information (PMI);
• Administers and assists in the provision of Training, Education and Awareness for those people working with HMG Protectively Marked information (PMI);
• Reports and investigates security breaches, contraventions and incidents;
• Provides advice and guidance on the requirements of the Official Secrets Act and the Cabinet Office’s Security Policy Framework;
• Assists in initial and then regular reviews of project specific Security Aspect Letters (SAL) to ensure appropriateness of information classifications and the controls we have in place;
• Release guidance and information to sub-contractors to allow them to support us in delivering projects;
• Audit our sub-contractors and suppliers systems, processes, people and policies where we require them to hold data on our behalf
• Maintains a record of all protectively marked contracts (received and let), in liaison with the Contracts function;
• Ensure that 3rd parties engaged have the requisite vetting to allow them access to assets we hold
• Acts as the main point of contact for all matters relating to Vetting/Clearances above BPSS, engaging HMG agencies to ensure our staff and suppliers are appropriately cleared to ‘go to work’;
• Provides guidance to Line Managers, HR, and individuals on Vetting Clearance levels; and aftercare processes where there are changes in circumstances
• Undertake routine classified material audits and musters
• Develop a communication strategy to improve security awareness for the programme;
• To act as the programme focal point for crisis management
• Collection and submission of security metrics for analysis, for inclusion in the CIC 2 monthly security report.
• Attendance at the Customer SWG and actions on behalf of the security team. Supporting the Information Assurance Working Group (IAWG), duties include organising meetings, documenting and publishing minutes, and communicating IAWG updates.
• Supporting the Risk & Accreditation Manager as directed, specifically in the area of risk register management and reporting, and accreditation tracking. Performing security remediation activities as required

Other Desirable Skills and Experience:

• Working knowledge of the ISO27001:2013 standard.
• Understanding the processes of personnel security, including onboarding, offboarding and vetting
• Knowledge of the HMG security policies and guidance (e.g. Security Policy Framework (SPF), Information Assurance Standards and Good Practice Guide

Knowledge & experience:

Trained, or willing to undertake training in, and with demonstrable understanding in the following areas: -
• HMG Security Policy Framework;
• HMG Security Controller Roles & Responsibilities;
• HMG Vetting Procedures;
• Relevant specialist courses as and when identified with you as relevant to this position;
• Support and administration of processes required when working with HMG Protectively Marked information at all levels;
• Experience of dealing with internal and external functions and 3rd parties in conducting security vetting of staff;
• Dealing with stakeholders successfully across all levels of a business;
• Working with Government Agencies to ensure the security of information;
• Audit of process and controls of live projects;
• Comprehensive experience of working with HMG information assets in a secure environment in similar or previous military role


• Able respond to intruder alarm call-out (Manchester location), on an as-required basis;
• Must be able to obtain Security Clearance or ideally a current holder