BURNCO Rock Products Ltd

www.burnco.com

1 Job

598 Employees

About the Company

BURNCO Rock Products Ltd is a fourth generation family business established in Calgary in 1912 by James F. Burns.

Today, BURNCO is a 113 years old, fourth generation aggregate construction materials company with nearly 80 locations in Alberta, British Columbia, Saskatchewan, Colorado and Texas. A family business head quartered in Calgary, BURNCO produces high quality aggregates, paving asphalt and ready-mix concrete.

SAFETY | TEAMWORK | CLARITY

Listed Jobs

Company Name: BURNCO Rock Products Ltd
Job Title: Manager, Cybersecurity
Job Description: **Job Title:** Manager, Cybersecurity **Role Summary:** Lead the security transformation of a mid-size organization, owning the cybersecurity strategy and roadmap. Drive implementation of the CIS 18 Controls, oversee SOC and GRC functions, and act as incident commander. Collaborate with internal IT and external partners to embed a security‑first culture across the enterprise. **Expactations:** - Deliver a proactive security posture aligned with business objectives. - Mentor and develop the SOC and GRC teams. - Serve as technical architect for all security initiatives. - Maintain and communicate risk registers, security policies, and compliance status to senior leadership. **Key Responsibilities:** - Develop and execute a comprehensive cybersecurity roadmap. - Direct SOC operations and govern GRC activities, including performance evaluation and professional development. - Architect security solutions for infrastructure modernization (legacy retirement, identity management). - Champion the adoption of CIS 18 Controls, transitioning from reactive to proactive security. - Manage relationships with security vendors and 24/7 monitoring partners. - Lead incident response as the incident commander, coordinating technical actions and executive communications. **Required Skills:** - 7+ years in cybersecurity with 5+ in leadership roles. - Hands‑on expertise in Azure cloud security, identity management, and vulnerability assessment (e.g., Qualys, CrowdStrike, Cisco Umbrella, Abnormal, M365 MDO). - Strong understanding of CIS Framework implementation and risk register management. - Business acumen: build ROI‑based security cases for CIO and stakeholders. - Excellent written and verbal communication; ability to translate technical risk into clear business insights. **Required Education & Certifications:** - Bachelor’s degree in Computer Science, Information Security, or related field. - Relevant certifications (e.g., CISSP, CISM, CSX‑Security, Microsoft Certified: Azure Security Engineer).