Cyber MSFT Threat Protection Director
About the role
Lead complex, high-impact engagements that help clients proactively defend against advanced cyber threats. Serve as a strategic advisor to executive stakeholders, guiding them through the design, implementation, and optimization of Microsoft’s threat protection ecosystem.
Responsibilities
- Leading the delivery of Microsoft Threat Protection solutions, including Microsoft Defender for Endpoint, Identity, Office 365, Cloud Apps, and Microsoft Sentinel.
- Serving as a strategic advisor to executive stakeholders, guiding them through the design, implementation, and optimization of Microsoft’s threat protection ecosystem.
- Designing and implementing enterprise-wide detection and response strategies aligned with Zero Trust and MITRE ATT&CK frameworks.
- Managing large-scale security assessments, maturity roadmaps, and regulatory compliance engagements.
- Leading and mentoring multidisciplinary teams across multiple client engagements.
- Driving business development efforts, including proposal development, client presentations, and thought leadership.
- Staying current on emerging threats, vulnerabilities, and Microsoft security innovations to inform client strategies.
Requirements
- Bachelor’s degree in Cybersecurity, Information Systems, or a related field.
- Relevant certifications such as SC-200, AZ-500, CISSP, CISM, GIAC, or related certification is required.
- 10+ years of experience in cybersecurity, with a focus on threat detection, response, and security operations.
- Prior experience leading sales activities for threat protection professional services, in excess of $3M a year.
- Deep expertise in Microsoft security technologies, including: Microsoft Defender suite (Endpoint, Identity, Office 365, Cloud Apps), Microsoft Sentinel (SIEM/SOAR).
- Strong understanding of threat intelligence, adversary tactics, and incident response frameworks.
- Experience with KQL, PowerShell, or other scripting languages for automation and threat hunting.
- Proven ability to lead client engagements and manage cross-functional teams.
- Familiarity with Microsoft Copilot for Security and AI-driven threat detection.
- Strong executive presence and ability to communicate complex technical concepts to non-technical stakeholders.
- Demonstrated success in practice development and client relationship management.
- Strong project management skills and the ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment.
- Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.
Qualifications
- Bachelor’s degree in Cybersecurity, Information Systems, or a related field.
- Relevant certifications such as SC-200, AZ-500, CISSP, CISM, GIAC, or related certification is required.
- 10+ years of experience in cybersecurity, with a focus on threat detection, response, and security operations.
- Prior experience leading sales activities for threat protection professional services, in excess of $3M a year.
- Deep expertise in Microsoft security technologies, including: Microsoft Defender suite (Endpoint, Identity, Office 365, Cloud Apps), Microsoft Sentinel (SIEM/SOAR).
- Strong understanding of threat intelligence, adversary tactics, and incident response frameworks.
- Experience with KQL, PowerShell, or other scripting languages for automation and threat hunting.
- Proven ability to lead client engagements and manage cross-functional teams.
- Familiarity with Microsoft Copilot for Security and AI-driven threat detection.
- Strong executive presence and ability to communicate complex technical concepts to non-technical stakeholders.
- Demonstrated success in practice development and client relationship management.
- Strong project management skills and the ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment.
- Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.
Skills
- Technical leadership and client relationship management skills.
- Strategic advising and practice development abilities.
- Threat detection, response, and security operations expertise.
- Microsoft security technologies proficiency.
- Threat intelligence and incident response frameworks understanding.
- Automation and threat hunting experience.
- Executive presence and communication skills.
- Client service and relationship management skills.
- Project management and multitasking abilities.
Benefits
The base salary range for this position is between $217,580 and $271,975. Placement within the pay range is at Grant Thornton’s discretion, and it is based on multiple factors, including but not limited to, job-related knowledge/skills, experience, business needs, progression within the role, geographic location, and internal equity. At Grant Thornton, compensation decisions are dependent upon the facts and circumstances of each position and candidate.
Pay
The base salary range for this position is between $217,580 and $271,975. Placement within the pay range is at Grant Thornton’s discretion, and it is based on multiple factors, including but not limited to, job-related knowledge/skills, experience, business needs, progression within the role, geographic location, and internal equity. At Grant Thornton, compensation decisions are dependent upon the facts and circumstances of each position and candidate.
Schedule
This position requires in-person attendance at least three days per week, either at a GT office or client site. Consistent with the firm's hybrid work model, this position will require in-person attendance at least three days per week, either at a GT office or client site.