Director, Cybersecurity
Listed on 2026-06-26
-
IT/Tech
Cybersecurity
Who We Are
Accommodations Plus International (API) is a technology and services company focused on driving innovation across the travel and transportation industry. We partner with organizations in the airline, cruise, and rail sectors to deliver solutions that improve layover operations, enhance customer experience, and support long‑term growth. Our mission is to make layovers simpler and more efficient for crew members—and we bring that to life through deep industry expertise and a practical, results‑driven approach.
Today, API’s platform powers over 18 million crew room nights each year for 100+ airlines and travel operators worldwide. Our Global Reach ensures that airline crews are rested, transported, and connected so global aviation runs on time. At API, we’re building a culture rooted in succeeding and thriving together. It’s a place where people are encouraged to take ownership, develop their skills, and contribute to work that matters.
If you’re looking to grow your career in a company that values steady progress, real impact, and long‑term development, we’d like to meet you!
The Director of Cybersecurity will lead API’s global cyber defense program, reporting to the SVP and CISO. This leader is accountable for security operations, threat detection, and incident response — and for building resilient defenses across API’s applications, infrastructure, networks, and cloud environments. A critical focus is cloud security. The Director will manage API’s security posture in AWS and Azure, embed security into product development, and lead the SOC MSSP partnership.
This role requires deep technical expertise, executive‑level communication, and the ability to translate threat intelligence into action.
- Cyber Defense & Threat Intelligence:
Own API’s cyber defense strategy across threat intelligence, detection, incident response, and product fraud and abuse. Translate adversarial research into actionable controls, detection rules, and response procedures. - SOC Operations:
Lead and manage the SOC MSSP, ensuring 24x7x365 monitoring, investigation, and response. Set performance standards, drive operational accountability, and continuously improve SOC effectiveness. - Cloud Security:
Manage API’s cloud security posture across AWS and Azure, applying defense‑in‑depth best practices to protect cloud‑native and hybrid environments. - Security Engineering Partnership:
Partner with engineering to embed security into product development from the ground up — ensuring secure‑by‑default practices across cloud‑hosted workloads and applications. - Incident Response:
Lead containment, recovery, and postmortem activities for security incidents. Establish measurable benchmarks to track program maturity and drive continuous improvement. - Frameworks & Architecture:
Apply NIST, MITRE ATT&CK, and the Cyber Kill Chain to guide security architecture, detection strategy, and response procedures. Maintain current security architecture diagrams and documentation. - Metrics & Reporting:
Develop and maintain scorecards that measure SOC effectiveness and organizational risk. Report regularly to security and business leadership with clear, actionable insights. - Automation & Innovation:
Identify and implement automation technologies to improve threat detection, prevention, and response at scale. - Team Development:
Empower and develop SOC analysts and team members, fostering a culture of accountability, continuous learning, and strong cybersecurity practice.
- SOC performance metrics demonstrate measurable improvements in mean time to detect (MTTD) and mean time to respond (MTTR).
- Cloud security posture scores improve consistently in AWS and Azure environments.
- Security is embedded into the product development lifecycle with no critical vulnerabilities at release.
- Incident response playbooks are documented, tested, and continuously refined.
- High team engagement and development of SOC analyst capabilities.
- Security risks are communicated clearly to executive leadership with actionable recommendations.
- 7–10+ years of progressive cybersecurity experience, with demonstrated…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).