Team Lead

APN Consulting, Inc. is a progressive IT staffing and services company offering innovative business solutions to improve client business outcomes. We focus on high impact technology solutions in ServiceNow, Fullstack, Cloud & Data, and AI / ML. Due to our globally expanding service offerings we are seeking top-talent to join our teams and grow with us.

Direct Client Requirement

Role: Manager, Cloud Defense

Location:

Type: Full Time

Work hours:

Summary of Position

Key leadership role within the Cloud Security team, this role focuses on managing and directing security monitoring, threat detection, and incident response operations across multi-cloud environments. The Manager of Cloud Defense will lead a team of cloud security analysts and engineers responsible for leveraging Microsoft Sentinel, Wiz platform, Crowdstrike and other cloud-native security tools to protect the organization's cloud infrastructure and workloads. This role demands strong leadership capabilities, deep technical understanding of cloud security operations, and the ability to build and scale a high-performing cloud defense program across AWS, Azure, and GCP environments.

Essential Duties and Responsibilities

• Lead, mentor, and develop a team of cloud security analysts and engineers focused on threat detection, incident response, and security monitoring.
• Oversee the operation and optimization of Microsoft Sentinel, Wiz platforms, and CrowdStrike, and Defender for Cloud ensuring effective security monitoring and posture management across multi-cloud environments.
• Establish and maintain comprehensive security metrics, KPIs, dashboards, and executive reporting using tools such as Power BI, Azure Workbooks, Grafana, and custom visualization platforms.
• Collaborate with cloud architecture, DevOps, application security, and infrastructure teams to identify and address security gaps and drive automated remediation efforts.
• Develop and maintain cloud security monitoring playbooks, runbooks, and standard operating procedures.
• Manage incident response activities for cloud security events, coordinating cross-functional teams and ensuring timely resolution with automated playbook execution.
• Drive continuous improvement initiatives to enhance detection capabilities, reduce mean time to detect (MTTD) and mean time to respond (MTTR).

Qualifications Expected for Position

• 8+ years of experience in security or DevSecOps with a focus on automation, incident response, or cloud security.
• 5+ years hands-on technical experience with cloud security monitoring, Microsoft Sentinel, and multi-cloud environments (AWS, Azure, GCP).
• 3+ years of experience implementing security automation using serverless technologies (Azure Functions, AWS Lambda, Azure Logic Apps, Step Functions).
• Proven experience implementing and managing cloud security operations programs at enterprise scale.
• Strong understanding of cloud security principles, cloud-native security services, and modern attack techniques targeting cloud infrastructure.
• Demonstrated ability to build, lead, and develop high-performing technical teams.

Preferred Qualifications

• Deep expertise with Microsoft Sentinel including analytics rules, workbooks, playbooks, and threat hunting capabilities.
• Hands-on experience with Wiz platform for cloud security posture management, workload protection and vulnerability management.
• Experience with cloud-native security tools (AWS GuardDuty, Security Hub, Azure Defender for Cloud, GCP Security Command Center).
• Proficiency with KQL (Kusto Query Language) for detection engineering and threat analysis.
• Proficiency with Policy as Code, Infrastructure as Code for automation deployment (Terraform, ARM Templates, Bicep, CloudFormation).
• Strong scripting and programming skills (Python, PowerShell, Bash) for security automation and orchestration.
• Strong knowledge of cloud identity threats, container security, and Infrastructure as Code security.
• Excellent communication and presentation skills with ability to effectively engage with technical and non-technical stakeholders at all levels.
• Proven ability to manage multiple priorities and drive results in a fast-paced environment.

We are committed to fostering a diverse, inclusive, and equitable workplace where individuals from all backgrounds feel valued and empowered to contribute their unique perspectives. We strongly encourage applications from candidates of all genders, races, ethnicities, abilities, and experiences to join our team and help us build a culture of belonging.