As a Cyber Defense Manager, you will get the opportunity to grow and contribute to our clients' business needs by applying a collection of information and cybersecurity capabilities, including security and privacy, strategy, governance, IT risk, security testing, technology implementation/operations, cybercrime and breach response for the Cybersecurity & Privacy Practice – all with the resources, environment, and support to help you excel. From day one, you’ll be empowered by the greater Risk team to help clients make the moves that will help them achieve their vision and help you achieve more, confidently. Your day-to-day may include: + Lead cyber defense engagements focused on adversary behaviors, detection coverage, and safeguard effectiveness across complex enterprise environments. + Apply expert knowledge of MITRE ATT&CK to map threat scenarios, identify defensive gaps, and design measurable, threat-informed detection strategies. + Engineer, tune, and validate detections across SIEM, EDR, NDR, and log-centric platforms to ensure high-fidelity coverage against real-world TTPs. + Assess and strengthen network and system safeguards, including segmentation, hardening, logging architectures, and control configurations. + Conduct threat-informed assessments, purple team exercises, and defensive readiness evaluations. + Communicate defensive findings, tradeoffs, and recommendations clearly to both technical teams and executive stakeholders. + Guide clients through building resilient defense programs, including detection maturity, operational readiness, and continuous improvement. + Mentor analysts and contribute to the development of detection playbooks, methodologies, and defensive frameworks. + Develop and manage client relationships with the intention to exceed client expectations. + Adhere to the highest degree of professional standards and strict client confidentiality. + Participate in professional development activities and training sessions on regular basis. + Other duties as assigned. You have the following technical skills and qualifications: + Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field is required + Minimum 5 years of related cybersecurity experience in a similar consulting practice or function + CISSP, CISM, GIAC (e.g., GSEC, GCIH, GISP, etc.), cloud security (e.g., AZ-500, AWS Certified Security, Google Cloud Professional Architect / Security Engineer) or other related certifications required + Strong command of MITRE ATT&CK and adversary tradecraft, with the ability to translate behaviors into actionable detections and safeguards. + Deep experience with network defense, system hardening, logging pipelines, and security control implementation + Proven ability to articulate complex defensive issues to both technical and non-technical audiences with clarity and precision + Strong project management skills and the ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment. + Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships + Strong professional verbal and written skill + Leading and managing one or more of the overarching areas below: + Assessing cybersecurity programs and capabilities against industry leading frameworks (e.g., NIST CSF, CRI Profile) and compliance and regulatory requirements. + Working knowledge of cybersecurity industry leading practices and frameworks, such as NIST CSF, CRI Profile, ISO 27001/2, NYS DFS 500, PCI-DSS, CIS Controls, CIS Benchmarks. + Excellent analytical, organizational and project management skills + Can travel as needed The base salary range for this position in Chicago, IL only is between $144,000 and $216,000. The base salary range for this position in New York, NY only is between $155,500 and $233,300. #LI-LG1 About Us At Grant Thornton, we believe in making business more personal and building trust into every result – for our clients and you. Here, we go beyond your expectations of a career in professional services by offering a career path with more: more opportunity, more flexibility, and more support. It’s what makes us different, and we think being different makes us better. In the U.S., Grant Thornton delivers professional services through two specialized entities: Grant Thornton LLP, a licensed, certified public accounting (CPA) firm that provides audit and assurance services ― and Grant Thornton Advisors LLC (not a licensed CPA firm), which exclusively provides non-attest offerings, including tax and advisory services. In 2025, Grant Thornton formed a multinational, multidisciplinary platform with Grant Thornton Ireland. The platform offers a premier Trans-Atlantic advisory and tax practice, as well as independent American and Irish audit practices. With $2.7 billion in revenues and more than 50 offices spanning the U.S., Ireland and other territories, the platform delivers a singular client experience that includes enhanced solutions and capabilities, backed by powerful technologies and a roster of 12,000 quality-driven professionals enjoying exceptional career-growth opportunities and a distinctive cross-border culture. Grant Thornton is part of the Grant Thornton International Limited network, which provides access to its member firms in more than 150 global markets. About the Team The team you’re about to join is ready to help you thrive. Here’s how: • Whether it’s your work location, weekly schedule or unlimited flex time off, we empower you with the options to work in the way that best serves your clients and your life. • Here, you are supported to prioritize your overall well-being through work-life integration options that work best for you and those in your household. • We understand that your needs, responsibilities and experiences are different — and we think that’s a good thing. That’s why we support you with personalized and comprehensive benefits that recognize and empower all the identities, roles and aspirations that make you, well, you. See how at www.gt.com/careers • When it comes to inclusion, we are committed to doing more than checking boxes. Explore all the ways we’re taking action for diversity, equity & inclusion at www.gt.com/careers Here’s what you can expect next: If you apply and are selected to interview, a Grant Thornton team member will reach out to you to schedule a time to connect. We encourage you to also check out other roles that may be a good fit for you or get to know us a little bit better at www.gt.com/careers. Benefits: We understand that your needs, responsibilities and experiences are different, and we think that’s a good thing. That’s why we support you with personalized and comprehensive benefits that recognize and empower all the identities, roles and aspirations that make you, well, you. For an overview of our benefit offerings, please visit: https://www.grantthornton.com/careers/rewards-and-benefits + Benefits for internship positions: Grant Thornton interns are eligible to participate in the firm’s medical, dental and vision insurance programs and the firm’s employee assistance program. Interns also receive a minimum of 72 hours of paid sick leave, and are paid for firm holidays that fall within their internship period. + Benefits for seasonal employee positions: Grant Thornton seasonal employees are eligible to participate in the firm’s medical, dental and vision insurance programs and the firm’s employee assistance program. Seasonal employees may also be eligible to participate in the firm’s 401(k) savings plan and employee retirement plan in accordance with applicable plan terms and eligibility requirements. Seasonal employees receive a minimum of 72 hours of paid sick leave. Grant Thornton employees may be eligible for a discretionary, annual bonus based on individual and firm performance, subject to the terms, conditions and eligibility criteria of the applicable bonus plan or program. Interns and seasonal employees are not eligible for bonus compensation. Additional Details: It is the policy of Grant Thornton to promote equal employment opportunities. All personnel decisions (including, but not limited to, recruiting, hiring, training, working conditions, promotion, transfer, compensation, benefits, evaluations, and termination) are made without regard to race, color, religion, national origin, sex, age, marital or civil union status, pregnancy or pregnancy-related condition, sexual orientation, gender identity or expression, citizenship status, veteran status, disability, handicap, genetic predisposition or any other characteristic protected by applicable federal, state, or local law. Consistent with the Americans with Disabilities Act (ADA) and applicable state and local laws, it is the policy of Grant Thornton LLP to provide reasonable accommodation when requested by a qualified applicant or employee with a disability, unless such accommodation would cause an undue hardship. The policy regarding requests for reasonable accommodation applies to all aspects of employment, including the application process. To make an accommodation request, please contact HRHelp@us.gt.com. For Los Angeles Applicants only: We will consider for employment all qualified Applicants, including those with Criminal Histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance. For Massachusetts Applicants only: It is unlawful in Massachusetts to require or administer a lie detector test as condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Gran Thornton does not require or administer lie detector tests as a condition of employments or continued employment.