Iso27001 Program Manager

**About the team**:
The Information Security team consists of various competencies (Risk, Internal Audit, Cyber Defence, Continuous Improvement) with strong internal relationships, communications and camaraderie. In our team everyone contributes and we always offer each other support to ensure the overall success of the business. We believe everyone in the team is unique and offers their own experience and knowledge, and we collectively use this diversity to leverage each person's strengths and skills, which have been at the core of our success.

**The role in a nutshell**:
Luno currently maintains an ISO27001 certification. As an ISO27001 Program Manager, you will be responsible for evolving Luno's ISMS and being the champion for the ISO27001 program which includes control evaluation, stakeholder engagements, auditor engagements and recommending remedial steps to any non-conformities identified to ensure the continuous improvement of the ISMS.

**Your mission will be**:

- Updating and maintaining the ISMS in accordance with the ISO27001 standard alongside the Information Security Officer
- Be responsible for ISO27001 certifications/annual audit engagements with external certification bodies
- Carrying out or supporting Information Security management system reviews/audits which may include:

- ISO27001 control and compliance audits
- Auditing of controls implemented/recommended by the Information Security Team and ensure monitoring and compliance
- Create and manage yearly ISO27001 control reviews
- Assist the Information Security Officer and Risk Manager with the risk management framework of the company to drive remedial actions relating to ISO27001 requirements.
- Document, update, maintain and communicate changes to company policies with regards to the ISO27001 program and its Statement of Applicability.
- Assist the information security team in assessments against processes, policies and workflows in accordance with the company risk management framework.
- Enhance existing methodology material.
- Provide training to individuals or stakeholders where required or relevant.
- Reporting progress and outcomes of audits/reviews to the Information Security Officer
- Keeping up to date with best practices relating to ISO27001.

**A little about you**:

- ISO/IEC 27001 Lead Implementer or Auditor Certification
- CISSP Certification
- At least 2 years of ISO/IEC 27001 audit or implementation experience.
- A proven track record and understanding of the ISO27001 Standard

**Life at Luno**:

- Forward-thinking and ambitious team that values diversity, hard work, and the continuous quest for excellence.
- Remote but reachable work policy gives you the freedom to choose between working from home or the office.
- Improve body and mind, with excellent private medical insurance.
- Free training courses on Udemy and CodeAcademy.
- 0 fees with Luno from the day you start.
- Generous maternity / paternity and even paw-ternity for your furry friend.
- Annual Inspiration Day.
- A collaborative, friendly work community, with regular social events and virtual cooking, dancing, drawing and house planting classes hosted by our Lunauts.
- Free lunch and snacks.
- Free access to Headspace - a full library of guided meditations, sleep stories, and music.

**About us**:
Luno makes it simple to buy, store and explore crypto. More than 10 million people have chosen to invest in crypto with Luno using our platform, which is available on Apple, Android and as a desktop experience. We've enabled over $52bn of transactions and we securely store over $1bn for our customers around the world.

Our mission is to put the power of crypto in everyone's hands because we believe that giving people access to a robust and fair financial system is a basic human right. We are with customers at every step of their investment journey with clear, jargon-free information and an easy-to-use app experience that helps people get started from as little as $10.

In order to make crypto accessible to everyone, everywhere, we're on the ground in more than 40 markets across North America, Africa, Asia and Europe. We are registered with all local financial intelligence authorities and proud of our strong AML measures and world-leading compliance teams. All the crypto we store for our customers is regularly verified by independent auditors. Luno is the trusted guide that will bring crypto to over 1 billion people by 2030.