cover image
Correla

Correla

www.correla.com

2 Jobs

298 Employees

About the Company

We help customers navigate the complexities of the energy market while creating cost efficiencies that guide the way forward to a net-zero future.

We do this through our fully adaptable SaaS products, comprehensive managed services and unrivalled energy industry knowledge. Our combination of technology, people and process is powering change, allowing us to deliver solutions for customers where data drives decisions.

SaaS Products

Our innovative SaaS products help you navigate the complexities of the energy market, simplifying the process of interpreting, moving and visualising data.

Our expertise allows us to quickly identify challenges and where our technology can help. We’re powering change in the energy market, overcoming complex problems, adding value to your business and looking forward to a more sustainable future.

Managed Services

We are trusted by the biggest names in the energy industry to deliver exceptional customer experiences, managing mission-critical platforms and services.

We support businesses with both internal and external operations, freeing up resource to focus on innovation, delivery and growth. As a valuable extension to your in-house teams, our technology, people and products are powering change by minimising cost, managing industry interactions and streamlining processes.

Listed Jobs

Company background Company brand
Company Name
Correla
Job Title
Internal Audit Specialist
Job Description
Job title: Internal Audit Specialist Role Summary: Provides third‑line assurance across key business functions, supporting the Internal Audit Manager and delivering audit evidence, findings, and reports to the Audit and Risk Committee. Delivers audit project advisory, drives compliance assessments for internal and external certifications, and participates in continuous improvement of audit policies and procedures. Expactations: * Minimum 2 years of internal audit experience plus a recognised audit qualification (CIA, ACA/ACCA, ISO Lead Auditor, CISA, or equivalent). * Demonstrated ability to scope, plan, execute, and report on audits in a complex business environment. * Strong understanding of risk and control frameworks and their application. Key Responsibilities: 1. Conduct internal audit engagements: scoping, planning, interviewing personnel, testing controls, performing root‑cause analysis, and compiling evidence‑based assessments. 2. Draft clear, concise audit reports and present findings to management and the Audit and Risk Committee. 3. Advise on effective risk and control methods for audit projects and business units. 4. Review and obtain assurance on internal and external assessments, including ISO and other certifications. 5. Support the Quality Assurance and Improvement Programme (QAIP) by reviewing and enhancing audit procedures and processes. 6. Collaborate with cross‑functional teams and maintain professional audit standards and documentation. Required Skills: * In‑depth internal audit methodology and audit software proficiency. * Strong analytical, problem‑solving, and root‑cause investigation abilities. * Effective written and verbal communication skills for report drafting and stakeholder engagement. * Ability to work independently while collaborating with audit team members. * Detail‑oriented, with strong organisational and time‑management skills. Required Education & Certifications: * Bachelor’s degree in Accounting, Finance, Business or a related discipline. * Professional audit qualification: Certified Internal Auditor (CIA), ASA/ACCA, Certified Information Systems Auditor (CISA), ISO Lead Auditor, or comparable certification.
Solihull, United kingdom
Hybrid
16-03-2026
Company background Company brand
Company Name
Correla
Job Title
Vulnerability Management Lead
Job Description
Job title: Vulnerability Management Lead Role Summary: Lead the design, operation, and continuous improvement of the vulnerability management program across infrastructure, applications, and cloud environments, ensuring alignment with industry standards and regulatory expectations. Expectations: - Own and administer the vulnerability management platform, ensuring comprehensive scan coverage and accurate reporting. - Maintain and evolve vulnerability management policies, processes, SLAs, and reporting to meet NIST, ISO 27001, CIS Controls, and regulatory requirements. - Plan, execute, validate, and analyze vulnerability scans, prioritising remediation based on risk impact. - Deliver regular dashboards and detailed reports to technical teams and leadership, highlighting trends, key risks, and remediation progress. - Coordinate remediation activities with internal teams and third‑party suppliers, manage timelines, and drive escalation of high‑risk issues. - Drive automation and integration with ITSM/reporting tools, and support broader security awareness initiatives. Key Responsibilities: 1. Operate and tune enterprise vulnerability scanning tools across on‑premise, cloud, and application assets. 2. Define, document, and enforce vulnerability management policies, procedures, and SLAs. 3. Conduct vulnerability assessment cycles, validate findings, quantify risk, and produce actionable remediation plans. 4. Develop and maintain dashboards, KPI metrics, and trend analyses for stakeholders. 5. Lead cross‑functional remediation coordination, including vendor and supplier engagement. 6. Implement automation scripts (PowerShell, Python, APIs) to streamline scanning, reporting, and remediation workflows. 7. Evaluate and recommend new tools, techniques, and vendor solutions to improve program effectiveness. Required Skills: - Deep knowledge of vulnerability management concepts, scanning methodologies, and remediation processes. - Proficiency with enterprise vulnerability tools and experience translating scan data into actionable insights. - Strong understanding of security frameworks: NIST, ISO 27001, CIS Controls. - Excellent stakeholder management, communication, and business‑technical translation skills. - Experience working with third‑party suppliers and managed service providers for patching and remediation integration. - Analytical, organizational, and reporting capabilities with meticulous attention to detail. - Familiarity with automation and scripting (PowerShell, Python, APIs) for process improvement. Required Education & Certifications: - Minimum of Security+ or equivalent security credentials. - CySA+ and knowledge of CVE/CVSS fundamentals are desirable. - Relevant industry certifications or equivalent experience.
Solihull, United kingdom
Hybrid
Senior
16-03-2026