Cyber Security Specialist

Sagard overview: 

Sagard Holdings (“Sagard”) is a multi-strategy alternative asset manager with professionals located in Canada (Montreal, Toronto), the US, Europe and Asia. Since 2016, Sagard has grown exponentially. Assets under management have expanded from US$500M to more than US$27B and Sagard’s team of diverse professionals has grown from 50 to more than 400 team members.

Sagard invests across four asset classes: private equity, credit, real estate, and venture capital. Sagard was founded by Power Corporation of Canada as a complement to its global investment holdings and serves as one of its key strategic priorities with strong, long-term growth objectives. 

Sagard’s entrepreneurial DNA is palpable across our entire team and is a platform built by entrepreneurs, for entrepreneurs. Sagard looks to generate attractive returns by matching investment opportunities with flexible capital solutions and pairing entrepreneurs with teams that have deep industry knowledge. Sagard develops long-term partnerships and empowers the growth of its investments through a unique global network of portfolio companies, limited partners, advisors, and other valued relationships. 

Sagard is a UN PRI signatory and strives to measure and assess the social and economic impact it has on the people and businesses within our network, as well as on our society as a whole. 

More at https://www.sagard.com/ 

Position Overview:

Based in Montreal, Toronto, or New York, and reporting to the Director of Cybersecurity, we are seeking a highly motivated and experienced Cyber Security Specialist to join our growing team. In this critical role, you will play a key part in maturing and enhancing Sagard's cyber security posture. You will be hands-on, driving security initiatives, and providing expert guidance across a range of security domains. This role requires a strong technical foundation combined with excellent communication and collaboration skills.

Responsibilities:

• Provide technical leadership and expertise to advance critical cyber security projects and enhance the overall security program.
• Support and implement security operations and IT cloud service infrastructure projects, focusing on incident response, cyber program development, and security technology modernization.
• Develop, enhance, install, configure, and maintain specialized cyber security and cloud infrastructure solutions (e.g., incident response solutions, infrastructure modernization, vulnerability management, identity and access management).
• Mature and develop security governance standards and supporting processes in cyber risk, including vulnerability management and incident response activities.
• Conduct Third-Party Risk Management evaluations in accordance with defined processes.
• Support and implement Data Loss Prevention policies and technology.
• Support and implement Computer Forensics capabilities for risk mitigation, investigation, and incident response.
• Support IT Operations on cyber-adjacent projects, including PAM and MDM.
• Collaborate effectively with various stakeholders across the organization to promote security awareness and best practices.
• Stay abreast of emerging cyber security threats, vulnerabilities, and industry best practices.

Requirements:

• 5-10+ years of proven experience in a cyber security role, with a strong background in technical security domains.
• In-depth knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO 27001, CIS).
• Hands-on experience with security technologies such as firewalls, intrusion detection/prevention systems, endpoint security solutions, SIEM, and vulnerability scanners.
• Experience with cloud security (eg: AWS, Azure, GCP) and securing cloud-based infrastructure.
• Strong understanding of incident response methodologies and experience in handling security incidents.
• Experience with evaluation of application security and mitigation/correction and best practices around vulnerabilities/threats.
• Experience in scripting
• Experience in developing and implementing security policies, procedures, and standards.
• Excellent communication, interpersonal, and presentation skills with the ability to convey complex technical information to both technical and non-technical audiences.
• Strong analytical and problem-solving skills.
• Relevant industry certifications (e.g., CISSP, CISM, CEH) are highly desirable.
• Ability to work from one of our office locations
• Ability to work in other offices periodically in support of business objectives. This includes requirement to travel < 25%.

What we're looking for 

• Owner mindset, driven to achieve results
• Strong interpersonal, negotiation and other communication skills
• Superior analytical skills, sound judgment and good business sense
• Ability to work across organizational boundaries and investment strategies
• Self-starter, reliable, efficient, proactive, organized, creative and detail oriented

Sagard is an equal opportunity employer, which values diversity in the workplace. We are therefore happy to accommodate any individual. If you require accommodation in order to participate in the hiring process. Please contact the People & Culture team to make your needs known in advance.