The Director of Cybersecurity will lead API's global cyber defense program, managing security operations, threat detection, incident response, and cloud security across AWS and Azure.
Overview
The Director of Cybersecurity will lead API’s global cyber defense program, reporting to the SVP and CISO. This leader is accountable for security operations, threat detection, and incident response — and for building resilient defenses across API’s applications, infrastructure, networks, and cloud environments.
A critical focus is cloud security. The Director will manage API’s security posture in AWS and Azure, embed security into product development, and lead the SOC MSSP partnership. This role requires deep technical expertise, executive-level communication, and the ability to translate threat intelligence into action.
Key Responsibilities
Technical Skills
Leadership & Competencies
Education & Certifications
Compensation:
$170,000 - $190,000 USD, Commensurate with experience.
The Director of Cybersecurity will lead API’s global cyber defense program, reporting to the SVP and CISO. This leader is accountable for security operations, threat detection, and incident response — and for building resilient defenses across API’s applications, infrastructure, networks, and cloud environments.
A critical focus is cloud security. The Director will manage API’s security posture in AWS and Azure, embed security into product development, and lead the SOC MSSP partnership. This role requires deep technical expertise, executive-level communication, and the ability to translate threat intelligence into action.
Key Responsibilities
- Cyber Defense & Threat Intelligence: Own API’s cyber defense strategy across threat intelligence, detection, incident response, and product fraud and abuse. Translate adversarial research into actionable controls, detection rules, and response procedures.
- SOC Operations: Lead and manage the SOC MSSP, ensuring 24x7x365 monitoring, investigation, and response. Set performance standards, drive operational accountability, and continuously improve SOC effectiveness.
- Cloud Security: Manage API’s cloud security posture across AWS and Azure, applying defense-in-depth best practices to protect cloud-native and hybrid environments.
- Security Engineering Partnership: Partner with engineering to embed security into product development from the ground up — ensuring secure-by-default practices across cloud-hosted workloads and applications.
- Incident Response: Lead containment, recovery, and postmortem activities for security incidents. Establish measurable benchmarks to track program maturity and drive continuous improvement.
- Frameworks & Architecture: Apply NIST, MITRE ATT&CK, and the Cyber Kill Chain to guide security architecture, detection strategy, and response procedures. Maintain current security architecture diagrams and documentation.
- Metrics & Reporting: Develop and maintain scorecards that measure SOC effectiveness and organizational risk. Report regularly to security and business leadership with clear, actionable insights.
- Automation & Innovation: Identify and implement automation technologies to improve threat detection, prevention, and response at scale.
- Team Development: Empower and develop SOC analysts and team members, fostering a culture of accountability, continuous learning, and strong cybersecurity practice.
- SOC performance metrics demonstrate measurable improvements in mean time to detect (MTTD) and mean time to respond (MTTR).
- Cloud security posture scores improve consistently in AWS and Azure environments.
- Security is embedded into the product development lifecycle with no critical vulnerabilities at release.
- Incident response playbooks are documented, tested, and continuously refined.
- High team engagement and development of SOC analyst capabilities.
- Security risks are communicated clearly to executive leadership with actionable recommendations.
- 7–10+ years of progressive cybersecurity experience, with demonstrated leadership in security operations, threat detection, and incident response.
- Proven track record managing a SOC or MSSP relationship, including 24x7 operational oversight and performance management.
- Hands-on experience with AWS and Azure, including cloud security posture management and securing cloud-native and hybrid environments.
- Strong background in threat intelligence and adversarial techniques, applying frameworks such as NIST, MITRE ATT&CK, and the Cyber Kill Chain.
- Experience developing security metrics and scorecards for both operational teams and executive leadership.
- Proven ability to lead incident response from containment through postmortem, with measurable program improvement benchmarks.
- Background in security engineering and architecture — particularly designing defensible systems — is a plus.
Technical Skills
- Working knowledge of CASB, SASE, firewalls, VPN, IDS, endpoint security, DLP, EDR/AV, and SIEM.
- Strong experience with Microsoft O365 security capabilities and administration.
- Familiarity with automation technologies supporting threat detection, prevention, and response.
Leadership & Competencies
- Proven ability to lead, develop, and motivate technical teams including SOC analysts.
- Communicates effectively at staff and executive levels — translating complex security risks into clear business context.
- Balances security requirements with business operations and innovation, building credibility across technology and business units.
- Organized, efficient self-starter capable of managing multiple priorities with minimal supervision.
Education & Certifications
- Bachelor’s degree in Cybersecurity, Computer Science, MIS, or equivalent experience; Master’s degree desirable.
- Preferred certifications (not required): GSEC, GCIA, GCIH, GCFE, GCFA, CISSP, CISM, or CISA.
Compensation:
$170,000 - $190,000 USD, Commensurate with experience.
Similar Jobs
Fintech • Financial Services
This role involves designing, implementing, and managing cryptographic solutions, including PKI and HSM, ensuring security compliance and operational effectiveness.
Top Skills:
HsmPkiPowershellPythonTlsX.509
Digital Media • Fintech • Information Technology • Machine Learning • Financial Services • Cybersecurity • Automation
The Cybersecurity Risk Director leads risk management strategies, oversees cybersecurity frameworks, advises business leaders, and ensures compliance with regulations in enterprise environments.
Top Skills:
Cloud TechnologiesCybersecurityDevsecopsIso 27001Nist Cybersecurity Framework
Security • Cybersecurity
The Regional Director will lead and develop sales teams, manage client relationships, and drive revenue growth in cybersecurity solutions.
Top Skills:
ConsultingCybersecurityHardwarePerformance ManagementSales ProcessServicesSoftware
What you need to know about the NYC Tech Scene
As the undisputed financial capital of the world, New York City is an epicenter of startup funding activity. The city has a thriving fintech scene and is a major player in verticals ranging from AI to biotech, cybersecurity and digital media. It also has universities like NYU, Columbia and Cornell Tech attracting students and researchers from across the globe, providing the ecosystem with a constant influx of world-class talent. And its East Coast location and three international airports make it a perfect spot for European companies establishing a foothold in the United States.
Key Facts About NYC Tech
- Number of Tech Workers: 549,200; 6% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Capgemini, Bloomberg, IBM, Spotify
- Key Industries: Artificial intelligence, Fintech
- Funding Landscape: $25.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Greycroft, Thrive Capital, Union Square Ventures, FirstMark Capital, Tiger Global Management, Tribeca Venture Partners, Insight Partners, Two Sigma Ventures
- Research Centers and Universities: Columbia University, New York University, Fordham University, CUNY, AI Now Institute, Flatiron Institute, C.N. Yang Institute for Theoretical Physics, NASA Space Radiation Laboratory
