Grant Thornton LLP (US)

Director, Cyber Risk Operations (Global ROC)

Reposted 8 Days Ago

Be an Early Applicant

44 Locations

In-Office

188K-359K Annually

Senior level

Professional Services • Financial Services

The Role

The Director of Cyber Risk Operations will design and lead a global Cyber Risk Operations Center, managing technology and infrastructure risk while collaborating with various stakeholders.

Summary Generated by Built In

Grant Thornton is seeking a Director of Cyber Risk Operations to join the team. Approved office locations can be found below.

We are seeking a Director of Cyber Risk Operations to design, build, and lead a global Cyber Risk Operations Center (ROC). This role will own the continuous identification, assessment, prioritization, and management of technology and infrastructure risk across the enterprise.

The ideal candidate brings deep hands-on technical expertise, strong risk judgment, and the ability to operationalize cyber risk at scale—translating technical exposures into actionable, business-aligned risk insights. This leader will work closely with infrastructure, cloud, engineering, IAM, compliance, and third-party stakeholders globally.

Key Responsibilities

Cyber Risk Operations & Strategy

Design and stand up a global Cyber Risk Operations Center (ROC), including operating model, workflows, tooling integration, metrics, and governance.
Define and operationalize a consistent framework for identifying, prioritizing, tracking, and remediating cyber and infrastructure risk.
Partner with security architecture, infrastructure, cloud, and application teams to embed risk management into day-to-day operations.

Technology & Infrastructure Risk Management

Own enterprise technology risk visibility across on-prem, cloud, hybrid, and SaaS environments.
Lead risk assessment and exception management processes, including risk acceptance, compensating controls, and executive-level risk reporting.
Drive secure configuration assessment and risk management aligned to industry standards (CIS, NIST, Microsoft benchmarks, etc.).

Cloud Exposure & Attack Surface Management

Oversee cloud security posture, exposure management, and attack path analysis across Azure and multi-cloud environments.
Leverage tools such as Wiz, Azure Security Center / Defender, and related platforms to identify toxic combinations, misconfigurations, and high-risk attack paths.
Partner with cloud engineering teams to prioritize remediation based on risk and business impact.

Vulnerability & Endpoint Risk

Lead vulnerability management and endpoint exposure programs using tools such as Qualys and CrowdStrike.
Ensure risk-based prioritization of vulnerabilities beyond CVSS, incorporating exploitability, asset criticality, and exposure.

Identity & Access Risk

Oversee identity-related risk management, including privileged access, misconfigurations, and conditional access gaps using Microsoft Entra ID and related tooling.
Partner with IAM teams to reduce identity-driven attack paths and enforce least privilege at scale.

Third-Party Risk Management

Own the cyber risk aspects of third-party and supply chain risk, including technology assessments, ongoing monitoring, and issue remediation.
Integrate third-party risk insights into enterprise risk reporting and decision-making.

Leadership & Stakeholder Engagement

Build and lead a high-performing, globally distributed team of cyber risk professionals.
Communicate complex technical risk clearly to executives, auditors, and non-technical stakeholders.
Provide regular risk posture updates to senior leadership, including trends, systemic issues, and material risks.

Required Qualifications

12+ years of experience in cybersecurity, infrastructure security, or technology risk, with 5+ years in senior leadership roles.
Deep technical background in enterprise infrastructure, cloud platforms (especially Azure), identity systems, and security architecture.
Hands-on experience with tools such as Qualys, CrowdStrike, Wiz, Azure Security/Defender, and Microsoft Entra ID.
Proven experience building or scaling cyber risk, vulnerability management, or exposure management programs.
Strong understanding of cyber risk frameworks (NIST CSF, NIST 800-53, ISO 27001, CIS).
Demonstrated ability to translate technical findings into business-relevant risk decisions.

Preferred Qualifications

Experience standing up a centralized risk operations or exposure management function.
Background in highly regulated or global enterprise environments.
Familiarity with SOC 2, cloud compliance, and audit-driven risk management.
Relevant certifications (CISSP, CISM, CCSP, CRISC, or equivalent).

The base salary range for this position in the firm’s Chicago, IL, Downers Grove, IL, Cleveland, OH, Minneapolis, MN, Reno, NV, Denver, CO and Baltimore, MD offices only is between $187,500 and $312,500 per year.

The base salary range for this position in the firm’s Washington, DC, Boston, MA, Bellevue, WA, Los Angeles, CA, Newport Beach, CA San Diego, CA, Edison, NJ, and New York, NY, and Melville, NY offices only is between $202,500 and $337,500 per year.

The base salary range for this position in the firm’s San Francisco, CA and San Jose, CA offices only is between $215,625 and $359,375.

About UsAt Grant Thornton, we believe in making business more personal and building trust into every result – for our clients and you. Here, we go beyond your expectations of a career in professional services by offering a career path with more: more opportunity, more flexibility, and more support. It’s what makes us different, and we think being different makes us better.

In the U.S., Grant Thornton delivers professional services through two specialized entities: Grant Thornton LLP, a licensed, certified public accounting (CPA) firm that provides audit and assurance services ― and Grant Thornton Advisors LLC (not a licensed CPA firm), which exclusively provides non-attest offerings, including tax and advisory services.

In 2025, Grant Thornton formed a multinational, multidisciplinary platform with Grant Thornton Ireland. The platform offers a premier Trans-Atlantic advisory and tax practice, as well as independent American and Irish audit practices. With $2.7 billion in revenues and more than 50 offices spanning the U.S., Ireland and other territories, the platform delivers a singular client experience that includes enhanced solutions and capabilities, backed by powerful technologies and a roster of 12,000 quality-driven professionals enjoying exceptional career-growth opportunities and a distinctive cross-border culture.

Grant Thornton is part of the Grant Thornton International Limited network, which provides access to its member firms in more than 150 global markets. About the TeamThe team you’re about to join is ready to help you thrive. Here’s how:

• Whether it's your work location, weekly schedule, or flex time off, we empower you with the options to work the way that it best serves your clients and your life. Consistent with the firm's hybrid work model, this position will require in-person attendance at least three days per week, either at a GT office or client site.

• Here, you are supported to prioritize your overall well-being through work-life integration options that work best for you and those in your household.

• We understand that your needs, responsibilities and experiences are different — and we think that’s a good thing. That’s why we support you with personalized and comprehensive benefits that recognize and empower all the identities, roles and aspirations that make you, well, you. See how at www.gt.com/careers

• When it comes to inclusion, we are committed to doing more than checking boxes. Explore all the ways we’re taking action for diversity, equity & inclusion at www.gt.com/careers

Here’s what you can expect next:

If you apply and are selected to interview, a Grant Thornton team member will reach out to you to schedule a time to connect. We encourage you to also check out other roles that may be a good fit for you or get to know us a little bit better at www.gt.com/careers.

Benefits:

We understand that your needs, responsibilities and experiences are different, and we think that’s a good thing. That’s why we support you with personalized and comprehensive benefits that recognize and empower all the identities, roles and aspirations that make you, well, you. For an overview of our benefit offerings, please visit: https://www.grantthornton.com/careers/rewards-and-benefits

Benefits for internship positions: Grant Thornton interns are eligible to participate in the firm’s medical, dental and vision insurance programs and the firm’s employee assistance program. Interns also receive a minimum of 72 hours of paid sick leave and are paid for firm holidays that fall within their internship period.

Benefits for seasonal employee positions: Grant Thornton seasonal employees are eligible to participate in the firm’s medical, dental and vision insurance programs and the firm’s employee assistance program. Seasonal employees may also be eligible to participate in the firm’s 401(k) savings plan and employee retirement plan in accordance with applicable plan terms and eligibility requirements. Seasonal employees receive a minimum of 72 hours of paid sick leave.

Grant Thornton employees may be eligible for a discretionary, annual bonus based on individual and firm performance, subject to the terms, conditions and eligibility criteria of the applicable bonus plan or program. Interns and seasonal employees are not eligible for bonus compensation.

Additional Details:

It is the policy of Grant Thornton to promote equal employment opportunities. All personnel decisions (including, but not limited to, recruiting, hiring, training, working conditions, promotion, transfer, compensation, benefits, evaluations, and termination) are made without regard to race, color, religion, national origin, sex, age, marital or civil union status, pregnancy or pregnancy-related condition, sexual orientation, gender identity or expression, citizenship status, veteran status, disability, handicap, genetic predisposition or any other characteristic protected by applicable federal, state, or local law.

Consistent with the Americans with Disabilities Act (ADA) and applicable state and local laws, it is the policy of Grant Thornton to provide reasonable accommodation when requested by a qualified applicant or employee with a disability, unless such accommodation would cause an undue hardship. The policy regarding requests for reasonable accommodation applies to all aspects of employment, including the application process. To make an accommodation request, please contact [email protected].

For Los Angeles Applicants only: We will consider for employment all qualified Applicants, including those with Criminal Histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance.

For Massachusetts Applicants only: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Grant Thornton does not require or administer lie detector tests as a condition of employment or continued employment.

Top Skills

Azure Security Center

Crowdstrike

Microsoft Entra Id

Qualys

Wiz

View all jobs at Grant Thornton LLP (US)

View Grant Thornton LLP (US) Profile

Report Job

Am I A Good Fit?

beta

Get Personalized Job Insights.

Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company

HQ: Chicago, IL

13,711 Employees

Year Founded: 1924

What We Do

Forget what you think you know about professional services. We go beyond what’s expected and help others do the same. Grant Thornton is the U.S. member firm of Grant Thornton International Ltd, one of the world’s leading independent audit, tax and advisory firms. That means our network has more than 60,000 professionals in more than 135 countries who are ready to help public and private organizations of all sizes take on today’s challenges. But what sets us apart isn’t just what we do – it’s how we do it. Here, we believe in making business more personal and building trust into every result. We’re collaborators – obsessed with quality and ready for anything – who understand the value of strong relationships. It’s how we challenge the expectations of business and empower our people and clients to do it, too. One thing we won’t do? Grant Thornton LLP will never request money or any form of payment for services via social media. Please report any concerns at 1-800-810-3503. "Grant Thornton” refers to Grant Thornton LLP, the U.S. member firm of Grant Thornton International Ltd (GTIL). GTIL and the member firms are not a worldwide partnership. Services are delivered by the member firms. GTIL and its member firms are not agents of, and do not obligate, one another and are not liable for one another’s acts or omissions. Please see grantthornton.com for further details.