Policy & Compliance Analyst - Cybersecurity

Overview

Harnessing the strength in our diversity and industry-leading talent of 40,000+ employees across more than 240+ global locations, we develop, design, and manufacture innovative products with an eye toward the circular economy. At Berry Global, we believe in the extraordinary power of people and their unique talents, experiences, and perspectives that help shape a shared future of innovation, inspiration, and influence. Every employee at Berry Global has the opportunity to make their mark on our company and the world around us. Together, we champion a people-first culture that cultivates individual growth, diversity, and collaboration, unleashing our collective strengths to forge a path to greater success for our company, people, and planet. For more information, visit our website, or connect with us on LinkedIn.

About Us: At Berry Global, we are dedicated to providing secure and innovative solutions in the cybersecurity landscape. We strive to protect our clients' data and systems, ensuring compliance with industry standards and regulations.

Job Overview: We are seeking a highly motivated and detail-oriented Policy & Compliance Analyst to join our cybersecurity team. The successful candidate will play a key role in maintaining and enhancing our ISO 27001 compliance framework. This position involves developing, implementing, and monitoring policies, procedures, and controls to ensure compliance with ISO 27001 standards.

Responsibilities

· Develop, implement, and maintain policies and procedures in alignment with ISO 27001 standards.

· Conduct regular audits and assessments to ensure ongoing compliance with ISO 27001 requirements.

· Collaborate with cross-functional teams to identify and mitigate compliance risks.

· Provide guidance and support to internal teams on ISO 27001 compliance matters.

· Monitor changes in regulatory requirements and update policies and procedures accordingly.

· Prepare and present reports on compliance status and findings to senior management.

· Facilitate training and awareness programs on ISO 27001 compliance for staff.

· Assist in the preparation and management of external audits and certification processes.

· Keep abreast of industry best practices and emerging trends in information security and compliance.

Qualifications

· Bachelor's degree in Information Security, Cybersecurity, Business Administration, or a related field.

· At least 5 years of experience in a policy and compliance role, preferably within a cybersecurity context.

· In-depth knowledge of ISO 27001 standards and implementation.

· Strong analytical and problem-solving skills.

· Excellent communication and interpersonal skills.

· Ability to work independently and collaboratively within a team environment.

· Detail-oriented with a strong focus on accuracy and quality.

· Relevant certifications such as CISM, CISSP, ISO 27001 Lead Implementer, or ISO 27001 Lead Auditor are a plus.