APi Group
Cyber Defense Team Lead at APi Group.
This role is a key leadership position within our global Cyber Defense Operations function, leading the North American cyber defense team and providing day‑to‑day guidance, technical oversight, and clear direction across incident response, security operations, and analyst development.
Base Pay Range $127,000.00/yr - $191,000.00/yr
What You Will Do
Team Leadership and People Management.
Lead and manage North America Cyber Defense analysts, coach, hold regular 1:1s and performance reviews, and foster a collaborative team that delivers consistent results.
Incident Response Leadership.
Serve as Lead Responder for security incidents, conduct post‑incident reviews, coordinate with IT, Legal, Audit, and DPO as required, and oversee the on‑call schedule.
Security Operations and Technical Oversight.
Act as the technical escalation point, guide complex investigations, and partner with our global MSSP to improve alerting, tuning, and automation.
Metrics, Reporting and Briefing.
Own North America’s contribution to the global Monthly Security Operations Brief and work with international counterparts for a consistent view.
NIST Cybersecurity Framework Progress.
Support delivery of the organization’s NIST CSF targets, track actions, and coordinate remediation work.
Business Collaboration.
Work with UK and France colleagues, build relationships with engineering, IT, HR, Legal, Audit, and other stakeholders, and represent North America in global discussions.
Required Skills and Experience
Previous experience as a Cyber Security Analyst or within an MSSP.
Strong incident response background with sound judgment under pressure.
Proven ability to mentor junior analysts in investigations.
Clear written and verbal communication for both technical and non‑technical audiences.
Experience with the Azure security stack (Defender, Sentinel, Purview) or comparable AWS, SIEM, or SOAR technologies.
Ability to work effectively with an MSSP and drive tuning, quality, and workflow improvements.
Strong analytical skills and ability to produce actionable, insight‑driven recommendations.
Highly Advantageous
Experience with Azure Security, Microsoft Sentinel, or the broader Microsoft Defender ecosystem.
Knowledge of Entra ID, Purview, or related cloud security tools.
Familiarity with KQL or equivalent query languages (Splunk, Elastic).
Relevant certifications (AZ‑500, SC‑200, GCIH, GCIA, GCED, AWS Security credentials).
Experience in improving incident response, automation, or detection engineering.
Personal Attributes
Calm and composed under pressure, making evidence‑based decisions.
Independent thinker with good judgment, knowing when to seek input.
Clear communicator, distilling complex issues into concise actions.
Pragmatic, outcome‑focused, and building trust across technical and non‑technical teams.
Benefits and Compensation This role is based out of our New Brighton office. The pay range is $127,000 - $191,000, depending on skills, experience, and knowledge. The position is eligible for annual bonus and profit sharing based on company performance, plus benefits supporting overall well‑being.
Comprehensive insurance coverage: medical, dental, vision, and more.
Access to corporate fitness center.
Wellness program.
401(k) with employer match.
Discounted company stock (Employee Stock Purchase Plan).
Profit sharing.
Generous paid time off.
Growth opportunities through company‑sponsored leadership development courses and training.
EEO Statement APi Group is an equal opportunity employer. We are committed to creating an inclusive environment for all employees and applicants. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
This position is not eligible for sponsorship.
All offers of employment are expressly contingent upon the satisfactory completion, in accordance with Company policy, of a pre‑employment drug screening and background check.
#J-18808-Ljbffr
This role is a key leadership position within our global Cyber Defense Operations function, leading the North American cyber defense team and providing day‑to‑day guidance, technical oversight, and clear direction across incident response, security operations, and analyst development.
Base Pay Range $127,000.00/yr - $191,000.00/yr
What You Will Do
Team Leadership and People Management.
Lead and manage North America Cyber Defense analysts, coach, hold regular 1:1s and performance reviews, and foster a collaborative team that delivers consistent results.
Incident Response Leadership.
Serve as Lead Responder for security incidents, conduct post‑incident reviews, coordinate with IT, Legal, Audit, and DPO as required, and oversee the on‑call schedule.
Security Operations and Technical Oversight.
Act as the technical escalation point, guide complex investigations, and partner with our global MSSP to improve alerting, tuning, and automation.
Metrics, Reporting and Briefing.
Own North America’s contribution to the global Monthly Security Operations Brief and work with international counterparts for a consistent view.
NIST Cybersecurity Framework Progress.
Support delivery of the organization’s NIST CSF targets, track actions, and coordinate remediation work.
Business Collaboration.
Work with UK and France colleagues, build relationships with engineering, IT, HR, Legal, Audit, and other stakeholders, and represent North America in global discussions.
Required Skills and Experience
Previous experience as a Cyber Security Analyst or within an MSSP.
Strong incident response background with sound judgment under pressure.
Proven ability to mentor junior analysts in investigations.
Clear written and verbal communication for both technical and non‑technical audiences.
Experience with the Azure security stack (Defender, Sentinel, Purview) or comparable AWS, SIEM, or SOAR technologies.
Ability to work effectively with an MSSP and drive tuning, quality, and workflow improvements.
Strong analytical skills and ability to produce actionable, insight‑driven recommendations.
Highly Advantageous
Experience with Azure Security, Microsoft Sentinel, or the broader Microsoft Defender ecosystem.
Knowledge of Entra ID, Purview, or related cloud security tools.
Familiarity with KQL or equivalent query languages (Splunk, Elastic).
Relevant certifications (AZ‑500, SC‑200, GCIH, GCIA, GCED, AWS Security credentials).
Experience in improving incident response, automation, or detection engineering.
Personal Attributes
Calm and composed under pressure, making evidence‑based decisions.
Independent thinker with good judgment, knowing when to seek input.
Clear communicator, distilling complex issues into concise actions.
Pragmatic, outcome‑focused, and building trust across technical and non‑technical teams.
Benefits and Compensation This role is based out of our New Brighton office. The pay range is $127,000 - $191,000, depending on skills, experience, and knowledge. The position is eligible for annual bonus and profit sharing based on company performance, plus benefits supporting overall well‑being.
Comprehensive insurance coverage: medical, dental, vision, and more.
Access to corporate fitness center.
Wellness program.
401(k) with employer match.
Discounted company stock (Employee Stock Purchase Plan).
Profit sharing.
Generous paid time off.
Growth opportunities through company‑sponsored leadership development courses and training.
EEO Statement APi Group is an equal opportunity employer. We are committed to creating an inclusive environment for all employees and applicants. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
This position is not eligible for sponsorship.
All offers of employment are expressly contingent upon the satisfactory completion, in accordance with Company policy, of a pre‑employment drug screening and background check.
#J-18808-Ljbffr