Description:
As a Cybersecurity Compliance Analyst for PCL Constructors Inc. in Edmonton, Alberta (Corporate), you'll have the opportunity to play a key role in developing, implementing, and supporting PCL's expanding security program. Reporting to the Cybersecurity Senior Manager, and working with the broader security team, you will lead cybersecurity compliance and governance activities, including framework implementation, policy development, audit support, and security‑related business initiatives.
Why Choose PCL?
Choose a Career With Rewards That Matter. PCL's Total Rewards Are Designed To Support Your Growth, Well-being And Future Success -- Because When You Succeed, We All Do. Our Offerings Could Include
- Employee ownership opportunities that build long-term value
- Annual discretionary performance bonuses
- RRSP, TFSA, Pension Contribution Options
- Flexible medical, dental and vision benefits
- Prescription drug coverage and virtual care services
- Life, AD&D and disability insurance
- Paid parental leave and family care support
- Health and lifestyle spending account options
- Mental health and wellness support, including Employee Assistance Programs
- Career growth pathways, leadership development and mentorship programs
- Access to world-class training through PCL's College of Construction and professional development courses
- Ongoing opportunities to learn new skills, explore different roles and grow your career across sectors and regions
Here's how a Cybersecurity Compliance Analyst for PCL Constructors Inc. within Edmonton NAHQ contributes to our team:
Responsibilities
- Lead cybersecurity compliance activities across regulatory, contractual, and client‑driven requirements.
- Interpret and operationalize frameworks such as CSF, CMMC, and CPCSC, translating requirements into clear, actionable controls.
- Own policy, standard, and procedure development, ensuring alignment with technical reality and business operations.
- Partner with IT, cybersecurity, legal, and business teams to implement and sustain compliance controls.
- Manage audit and assessment activities, including evidence collection, responses, and remediation tracking.
- Use Microsoft compliance tooling, including Microsoft Purview, to support data governance, risk management, and reporting.
- Communicate compliance posture, risks, and gaps clearly to technical and non‑technical stakeholders.
Qualifications
- 6+ years of cybersecurity compliance, governance, or risk experience; certifications or advanced education are an asset.
- Deep practical knowledge of CMMC and CPCSC, including assessment expectations and ongoing compliance requirements.
- Experience supporting compliance programs in construction, infrastructure, engineering, or other operationally complex environments.
- Experience working with government clients or regulated programs is a strong asset.
- Hands‑on experience with Microsoft compliance and risk tools, including Purview, M365 compliance features, and audit reporting.
- Proven ability to produce clear, concise written material that translates technical standards into business‑focused language.
- Strong understanding of security governance, risk management, and control frameworks.