Cyber Threat Protection Manager

Grant Thornton’s Cybersecurity practice is rapidly growing, and we are seeking a Cyber Threat Protection Manager to join our team. This role is ideal for a cybersecurity professional with hands-on experience in Microsoft threat protection technologies and a strong understanding of threat detection and response strategies. You will work with clients to design and implement proactive defense mechanisms, leveraging Microsoft’s security ecosystem to protect against evolving cyber threats.

From day one, you’ll be empowered by the greater Risk team to help clients make the moves that will help them achieve their vision and help you achieve more, confidently. 

Your day-to-day may include:

• Deliver Microsoft Threat Protection solutions, including:
  • Microsoft Defender for Endpoint, Identity, Office 365, and Cloud Apps
  • Microsoft Sentinel (SIEM/SOAR)
• Conduct threat modeling, detection engineering, and incident response planning.
• Support the development of detection and response strategies aligned with Zero Trust and MITRE ATT&CK frameworks.
• Collaborate with client stakeholders to assess current security posture and develop future-state roadmaps.
• Provide technical guidance and training to client teams on Microsoft security tools.
• Stay current on emerging threats, vulnerabilities, and Microsoft security innovations.
• Support practice development and sales activities including assisting with  client proposal development, and 
• Leading and mentoring multidisciplinary teams on client engagements.

You have the following technical skills and qualifications:

• Bachelor’s degree in Cybersecurity, Information Systems, or a related field.
• Relevant certifications such as SC-200, AZ-500, CISSP, GIAC or related certification required.
• 5+ years of experience in cybersecurity, with a focus on threat detection, response, or security operations.
• Hands-on experience with Microsoft Defender suite and Microsoft Sentinel.
• Strong understanding of threat intelligence, adversary tactics, and incident response frameworks.
• Familiarity with scripting languages such as KQL or PowerShell.
• Strong communication skills and ability to translate technical concepts for business stakeholders.
• Experience in project management and cross-functional team collaboration.
• Familiarity with Microsoft Copilot for Security and AI-driven threat detection.
• Ability to contribute to proposal development and client presentations.
• Can travel as needed

The base salary range for this position in Chicago, IL only is between $144,000 and $216,000.

The base salary range for this position in New York, NY only is between $155,500 and $233,300.

#LI-LG1

At Grant Thornton, we believe in making business more personal and building trust into every result – for our clients and you. Here, we go beyond your expectations of a career in professional services by offering a career path with more: more opportunity, more flexibility, and more support. It’s what makes us different, and we think being different makes us better. 

In the U.S., Grant Thornton delivers professional services through two specialized entities: Grant Thornton LLP, a licensed, certified public accounting (CPA) firm that provides audit and assurance services ― and Grant Thornton Advisors LLC (not a licensed CPA firm), which exclusively provides non-attest offerings, including tax and advisory services.

In 2025, Grant Thornton formed a multinational, multidisciplinary platform with Grant Thornton Ireland. The platform offers a premier Trans-Atlantic advisory and tax practice, as well as independent American and Irish audit practices. With $2.7 billion in revenues and more than 50 offices spanning the U.S., Ireland and other territories, the platform delivers a singular client experience that includes enhanced solutions and capabilities, backed by powerful technologies and a roster of 12,000 quality-driven professionals enjoying exceptional career-growth opportunities and a distinctive cross-border culture.

Grant Thornton is part of the Grant Thornton International Limited network, which provides access to its member firms in more than 150 global markets.