Company Description:
Sutherland is a global leader in business and digital transformation. Over the last 38 years, we have partnered with some of the most respected and future-forward companies to drive revenue growth, boost operational efficiency, and enable innovative business models.
Job Description:
We are seeking a dynamic and experienced Manager – Information Security (Jamaica) to join our Technology Risk Management team. Based in Kingston, this role oversees security operations across Jamaica, with occasional travel to local sites as required.
The successful candidate will safeguard the organization's digital assets and enhance operational resilience by leading proactive risk management and ensuring regulatory compliance, thereby fostering trust with clients and stakeholders. They will lead security assessments, implement compliance initiatives, and facilitate audit engagements to ensure robust risk management across the organization. They will evaluate technical, operational, and procedural controls to ensure alignment with internal policies, client requirements, and applicable regulatory standards.
The role reports directly to the Director – Information Security, Technology Risk Management (Jamaica).
Key Responsibilities
- Risk and Compliance
- Lead comprehensive assessments of security controls to evaluate effectiveness and identify improvement opportunities
- Conduct risk assessments and ensure compliance with ISO 27001, PCI DSS, HIPAA, SSAE 18 / ISAE 3402 SOC2, and customer-specific requirements
- Coordinate and support internal and external audits across Jamaica sites
- Document assessment findings in detail, collect supporting evidence, and track remediation efforts through to resolution
- Monitor emerging threats, vulnerabilities, and regulatory changes to proactively inform and adapt security strategies
- Develop and analyze global security metrics, dashboards, and reporting programs
- Internal Collaboration
- Investigate information security incidents and coordinate containment, analysis, and recovery efforts
- Provide expert consultation to Sales, Business Development, and client teams on MSAs, SOWs, RFPs, and security-related questionnaires
- Promote awareness and adherence to global security policies and initiatives across the organization
- Build and maintain strong cross-functional relationships with teams including Service Delivery, HR, IT, Facilities, and Physical Security
- Client Engagement
- Ensure that new client engagements align with established security standards and control requirements
- Advise business units and stakeholders on security best practices and risk mitigation strategies
- Uphold compliance with policies and manage exception requests in accordance with governance protocols
Qualifications:
Qualifications
- Education: Bachelor’s degree in Cybersecurity or related field (Master’s degree preferred)
- Experience
- Professional Experience: 7–10 years of experience in Cybersecurity, Risk & Compliance, or Audit with proven application of industry-standard security frameworks
- Technical Proficiency: skilled in GRC platforms, vulnerability management, and SecOps
- Operational Exposure: familiarity with multi-site environments and regional landscapes
- Certifications (preferred): CISSP, CISA, CISM, CRISC, PCI-QSA, CGEIT, or CIA (IIA)
Skills & Attributes
- Analytical & Communication
- Excellent analytical and problem-solving skills with strong attention to detail
- Exceptional verbal and written communication abilities, capable of conveying complex concepts clearly
- Collaboration & Leadership
- Proven ability to engage and collaborate with technical and non-technical stakeholders across all organizational levels
- Strong leadership skills with a track record of driving cross-functional initiatives
- Adaptability & Execution
- Highly proactive, adaptable, and self-motivated
- Manages multiple priorities and delivers results under tight deadlines in fast-paced environments
Additional Information:
We are committed to fostering a diverse and inclusive workplace. We encourage candidates of all backgrounds to apply.
All your information will be kept confidential according to EEO guidelines.
As your prospective employer, we need to process your Personal Data as needed to evaluate your qualification for the position you are applying for with Sutherland. During the recruitment process, your Personal Data may be transferred outside of Jamaica and disclosed to third parties in the normal course of the recruitment and/or employment process or as needed to comply with applicable laws. This may include transferring information to our affiliated Companies for purposes connected to your employment with the company or to the management of Sutherland’s business.
