Cyber MSFT Threat Protection Director
About the role
The Cybersecurity Director will lead complex, high-impact engagements focusing on Microsoft Threat Protection. This role involves strategic advising to executive stakeholders, technical leadership, client relationship management, and practice development.
Responsibilities
- Lead the delivery of Microsoft Threat Protection solutions, including Microsoft Defender for Endpoint, Identity, Office 365, Cloud Apps, and Microsoft Sentinel.
- Manage large-scale security assessments, maturity roadmaps, and regulatory compliance engagements.
- Design and implement enterprise-wide detection and response strategies aligned with Zero Trust and MITRE ATT&CK frameworks.
- Oversee threat modeling, red/purple team exercises, and advanced threat hunting initiatives.
- Manage and mentor multidisciplinary teams across multiple client engagements.
- Drive business development efforts, including proposal development, client presentations, and thought leadership.
- Stay current on emerging threats, vulnerabilities, and Microsoft security innovations to inform client strategies.
Requirements
- Bachelor’s degree in Cybersecurity, Information Systems, or a related field.
- Relevant certifications such as SC-200, AZ-500, CISSP, CISM, GIAC, or related certification is required.
- 10+ years of experience in cybersecurity, with a focus on threat detection, response, and security operations.
- Prior experience leading sales activities for threat protection professional services, in excess of $3M a year.
- Deep expertise in Microsoft security technologies, including: Microsoft Defender suite (Endpoint, Identity, Office 365, Cloud Apps), Microsoft Sentinel (SIEM/SOAR), and KQL, PowerShell, or other scripting languages for automation and threat hunting.
- Proven ability to lead client engagements and manage cross-functional teams.
- Familiarity with Microsoft Copilot for Security and AI-driven threat detection.
- Strong executive presence and ability to communicate complex technical concepts to non-technical stakeholders.
- Demonstrated success in practice development and client relationship management.
- Strong project management skills and the ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment.
- Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.
Qualifications
- Strong understanding of threat intelligence, adversary tactics, and incident response frameworks.
- Proven ability to lead client engagements and manage cross-functional teams.
- Familiarity with Microsoft Copilot for Security and AI-driven threat detection.
- Strong executive presence and ability to communicate complex technical concepts to non-technical stakeholders.
- Demonstrated success in practice development and client relationship management.
- Strong project management skills and the ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment.
- Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.
Skills
- Technical leadership and client relationship management skills.
- Strategic advisory and practice development expertise.
- Threat detection, response, and security operations experience.
- Microsoft security technologies proficiency.
- Communication and presentation skills.
- Project management and team leadership abilities.
Benefits
At Grant Thornton, the Cybersecurity Director benefits from a comprehensive package that includes:
- Medical, dental, and vision insurance.
- Employee Assistance Program.
- Minimum of 72 hours of paid sick leave.
- Discretionary, annual bonus based on individual and firm performance.
Pay
The base salary range for this position is between $217,580 and $271,975. Placement within the pay range is at Grant Thornton’s discretion, and it is based on multiple factors, including but not limited to, job-related knowledge/skills, experience, business needs, progression within the role, geographic location, and internal equity.
Schedule
This position requires in-person attendance at least three days per week, either at a GT office or client site. Consistent with the firm's hybrid work model, this position will require in-person attendance at least three days per week, either at a GT office or client site.