Jobs · Information Technology · North Carolina

Cyber MSFT Threat Protection Director

Grant Thornton (US) · Charlotte, NC · 1 wk ago
HybridInformation Technology$218k–$272k/yrFull-time

About the role

Lead complex, high-impact engagements in Microsoft Threat Protection, advising CISOs and security leaders on threat detection, incident response, and security operations transformation.

Responsibilities

  • Deliver Microsoft Threat Protection solutions, including Microsoft Defender for Endpoint, Identity, Office 365, Cloud Apps, and Microsoft Sentinel.
  • Manage large-scale security assessments, maturity roadmaps, and regulatory compliance engagements.
  • Design and implement enterprise-wide detection and response strategies aligned with Zero Trust and MITRE ATT&CK frameworks.
  • Oversee threat modeling, red/purple team exercises, and advanced threat hunting initiatives.
  • Lead and mentor multidisciplinary teams across multiple client engagements.
  • Drive business development efforts, including proposal development, client presentations, and thought leadership.
  • Stay current on emerging threats, vulnerabilities, and Microsoft security innovations to inform client strategies.

Requirements

  • Bachelor’s degree in Cybersecurity, Information Systems, or a related field.
  • Relevant certifications such as SC-200, AZ-500, CISSP, CISM, GIAC, or related certification is required.
  • 10+ years of experience in cybersecurity, with a focus on threat detection, response, and security operations.
  • Prior experience leading sales activities for threat protection professional services, in excess of $3M a year.
  • Deep expertise in Microsoft security technologies, including: Microsoft Defender suite (Endpoint, Identity, Office 365, Cloud Apps), Microsoft Sentinel (SIEM/SOAR).
  • Strong understanding of threat intelligence, adversary tactics, and incident response frameworks.
  • Experience with KQL, PowerShell, or other scripting languages for automation and threat hunting.
  • Proven ability to lead client engagements and manage cross-functional teams.
  • Familiarity with Microsoft Copilot for Security and AI-driven threat detection.
  • Strong executive presence and ability to communicate complex technical concepts to non-technical stakeholders.
  • Demonstrated success in practice development and client relationship management.
  • Strong project management skills and the ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment.
  • Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.

Qualifications

  • Bachelor’s degree in Cybersecurity, Information Systems, or a related field.
  • Relevant certifications such as SC-200, AZ-500, CISSP, CISM, GIAC, or related certification is required.
  • 10+ years of experience in cybersecurity, with a focus on threat detection, response, and security operations.
  • Prior experience leading sales activities for threat protection professional services, in excess of $3M a year.
  • Deep expertise in Microsoft security technologies, including: Microsoft Defender suite (Endpoint, Identity, Office 365, Cloud Apps), Microsoft Sentinel (SIEM/SOAR).
  • Strong understanding of threat intelligence, adversary tactics, and incident response frameworks.
  • Experience with KQL, PowerShell, or other scripting languages for automation and threat hunting.
  • Proven ability to lead client engagements and manage cross-functional teams.
  • Familiarity with Microsoft Copilot for Security and AI-driven threat detection.
  • Strong executive presence and ability to communicate complex technical concepts to non-technical stakeholders.
  • Demonstrated success in practice development and client relationship management.
  • Strong project management skills and the ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment.
  • Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.

Skills

  • Technical leadership and client relationship management.
  • Strategic advisory and practice development.
  • Threat detection, incident response, and security operations.
  • Microsoft security technologies, including: Microsoft Defender suite (Endpoint, Identity, Office 365, Cloud Apps), Microsoft Sentinel (SIEM/SOAR).
  • Threat intelligence, adversary tactics, and incident response frameworks.
  • KQL, PowerShell, or other scripting languages for automation and threat hunting.
  • Zero Trust and MITRE ATT&CK frameworks.
  • Red/purple team exercises and advanced threat hunting.
  • Large-scale security assessments, maturity roadmaps, and regulatory compliance engagements.
  • Leading and mentoring multidisciplinary teams.
  • Business development efforts, including proposal development, client presentations, and thought leadership.
  • Emerging threats, vulnerabilities, and Microsoft security innovations.

Benefits

Base salary range: $217,580 - $271,975. Placement within the pay range is at Grant Thornton’s discretion, based on multiple factors including but not limited to, job-related knowledge/skills, experience, business needs, progression within the role, geographic location, and internal equity.

Pay

The base salary range for this position is between $217,580 and $271,975. Placement within the pay range is at Grant Thornton’s discretion, and it is based on multiple factors, including but not limited to, job-related knowledge/skills, experience, business needs, progression within the role, geographic location, and internal equity.

Schedule

This position requires in-person attendance at least three days per week, either at a GT office or client site. Consistent with the firm's hybrid work model, this position will require in-person attendance at least three days per week, either at a GT office or client site.

Company Overview

At Grant Thornton, we believe in making business more personal and building trust into every result – for our clients and you. Here, we go beyond your expectations of a career in professional services by offering a career path with more: more opportunity, more flexibility, and more support. It’s what makes us different, and we think being different makes us better. In the U.S., Grant Thornton delivers professional services through two specialized entities: Grant Thornton LLP, a licensed, certified public accounting (CPA) firm that provides audit and assurance services ― and Grant Thornton Advisors LLC (not a licensed CPA firm), which exclusively provides non-ats offerings, including tax and advisory services. In 2025, Grant Thornton formed a multinational, multidisciplinary platform with Grant Thornton Ireland. The platform offers a premier Trans-Atlantic advisory and tax practice, as well as independent American and Irish audit practices. With $2.7 billion in revenues and more than 50 offices spanning the U.S., Ireland and other territories, the platform delivers a singular client experience that includes enhanced solutions and capabilities, backed by powerful technologies and a roster of 12,000 quality-driven professionals enjoying exceptional career-growth opportunities and a distinctive cross-border culture. Grant Thornton is part of the Grant Thornton International Limited network, which provides access to its member firms in more than 150 global markets.

About the Team

The team you’re about to join is ready to help you thrive. Here’s how: Whether it's your work location, weekly schedule, or flex time off, we empower you with the options to work the way that it best serves your clients and your life. Consistent with the firm's hybrid work model, this position will require in-person attendance at least three days per week, either at a GT office or client site. Here, you are supported to prioritize your overall well-being through work-life integration options that work best for you and those in your household. We understand that your needs, responsibilities and experiences are different — and we think that’s a good thing. That’s why we support you with personalized and comprehensive benefits that recognize and empower all the identities, roles and aspirations that make you, well, you. See how at www.gt.com/careers. Benefits: We understand that your needs, responsibilities and experiences are different, and we think that’s a good thing. That’s why we support you with personalized and comprehensive benefits that recognize and empower all the identities, roles and aspirations that make you, well, you. For an overview of our benefit offerings, please visit: https://www.grantthornton.com/careers/rewards-and-benefits.

Similar jobs