Correla are looking for a Lead Security Architect to join our Information Security team.
Salary: circa £90,000 (advertised salary achievable for a candidate fulfilling all role criteria)
Job Type: Permanent
About us
In March 2021, Correla was created, as an independently owned business to bring in private investment to fuel innovation in the centre of the energy market and beyond.
Correla is derived from correlation, because we’re all about exploring and enhancing relationships between data, people, and processes. Our SaaS products and Managed Service solutions combine to power industry innovation, simplify an increasingly complex market, and deliver cost and operational efficiencies.
Our goal is to support industry transformation, to move to a net-zero future and to positively impact the end-consumer.
About the Role
Ongoing development and maintenance of a comprehensive security architecture framework (aka the existing UCF - Unified Control Framework), ensuring this aligns with wider organisational objectives.
To carry responsibility for the evaluation and enhancement for the security posture of systems and applications, ensuring they are scalable, reliable, and resilient.
Provision of advisory support to Correla business units and technical teams on security best practices, including the translation of complex technical concepts into accessible information for non-technical stakeholders.
To promote and foster a security-conscious culture across the wider business, aligned with adopted standards and frameworks.
Ensure adherence to industry security standards such as ISO 27001, NIST, NIS & NCSC, ensuring the implementation of robust security policies, procedures, and guidelines to support organisational compliance through our ISMS (Information Security Management System).
Risk Assessment & Mitigation: Through engagement and collaboration with both CyberOperations and the wider business, you will attain and utilise a detailed understanding of relevant threat modelling and vulnerability assessments to identify and prioritise security risks through both InfoSec and Corporate risk registers
About You
- Able to evidence significant, first-hand experience of working within Information Security / Cyber Security field, in a security architecture or consultancy capacity
- Evidence of security based qualifications is preferred, such as: Security+, CEH, CISSP, CISM or another applicable certification in the Information Security field. (MS Azure, AWS or Google recognised platform security qualifications also preferential).
- Frameworks & Standards: Comprehensive knowledge of regulatory and compliance frameworks including ISO 27001, NIST, NIS, NCSC, CyberEssentials Plus and PCI D
- The ideal candidate will have experience in the management of Infosec Repositories systems and tools
- Able to evidence 'big picture' thinking, with demonstrable experience of aligning security initiatives with wider corporate objectives
What we offer
- Locate for your day
- Uncapped annual leave
- 6-12% Pension Contribution
- Private Healthcare
- 26 weeks’ full pay equal parent leave
- Wellbeing Services
- And more!
At Correla, we are committed to working towards being a more diverse and inclusive workplace where our people can truly be themselves. We recognise the benefits of having talented people from a range of backgrounds and cultures who bring different perspectives, life experiences and diversity of thinking.
Our aim is to attract and retain the very best diverse talent to help create an exciting, innovative, and successful business that enables us to deliver an exceptional experience for our customers. We would therefore like to encourage applications from people with varied skillsets and experience and from different backgrounds and sectors to help shape our future.
Correla is an Equal Opportunities Employer. We believe in equality of opportunity regardless of race or racial group, ancestry, place of origin, ethnicity, sex, sexual orientation, gender identity, gender expression, gender re-assignment, age, record of offences, marital/civil partnership status, family status, pregnancy, maternity and paternity, religion/belief or disability. We promise that your opportunity for employment with us depends solely on your qualifications and relevant experience.