Principal Compliance Technical Program Manager
 Microsoft | |
 United States, Texas, Irving | |
| 7000 State Highway 161 (Show on map) | |
 Oct 01, 2024 | |
|
OverviewSecurityrepresentsthe most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms,devices,and clouds in our customers' heterogeneous environments, as well as ensuring the security of our own internal estate. Security and privacy have never been more top of mind than it is today. Governments around the world are passing new legislations and enforcement of new tech regulations are increasing at a fast pace.Are you interested in cybersecurity and privacy compliance? Do you have experience in leading complex and cross-functional programs that ensure compliance with global cybersecurity and privacy regulations? If so, we have an exciting opportunity for you! TheMicrosoft Security Compliance Program teameducates andempowers the Microsoft Security organization tomeet these regulations and build customer trust.The Compliance Programteamensuresthat Security products and servicescomply withMicrosoft cybersecurity and privacy requirements while alsoleading efforts to deliverenterprise-widecutting-edgecompliance solutions. We arelooking for an experienced Principal Compliance TechnicalProgram Manager tohelp grow and managethis team.This role provides you with the leadership opportunity to effect change that will havemarket-wide impacts. Asthe manager of a team of Compliance Technical Program Managers, you will beaccountable for establishing a new Compliance program for the Security Division The candidate could have an engineering or compliance background, understanding of engineering best practices, and experience in raising the quality of existing solutions. This candidateneedsto havedemonstratedwritten and verbal communication, an understanding for technology, experience providing guidance and direction to technical audiences, ability to drive towards the "big picture" while managing details, and the ability to build relationships with key partners.
ResponsibilitiesManage a team of subject matter experts (SME) in cybersecurity, privacy, and regulatory compliance to support our engineering partnersvia a hub and spoke modelto deliver world-classtrustedsecurity products and services. Embrace a "compliance by design" mindset; proactively identify systemic gaps that should be integrated into program design and elevate them to the appropriate owners. Prevent local/one-off solutioning whenever possible. Understand the business priorities and strategies when it comes to training and education ofsecuritypoliciesandengineering practices to enabledurable customertrust. Work with security teams to help them navigate and meet regulatory requirements, ensuring the organization achieves and maintains necessary certifications ((e.g., such as ISO/IEC 27x, FedRAMP, SOC, PCI DSS, HIPPA) Provide guidance and support to internal teams on compliance-related matters, including policy development, risk management, and incident response. Coordinate response and evidence gathering in response to external auditors and regulators to facilitate compliance assessments and certifications. Lead cross-functional teams to address compliance-related issues and drive continuous improvement in the organization's compliance posture. Stay up to date with the latest regulatory changes and industry best practices and ensure the compliance program is continuously updated to reflect these changes. Conduct regular assessments to ensure compliance with relevant regulations and standards. Accountable for delivery of measurement frameworks,processes,and maturity models to both understand and improve the bar of technical compliance across the portfolio that meets needs of the rhythm of business with exec leadership. Monitor and report on the effectiveness of the compliance program, identifying areas for improvement and implementing corrective actions as needed. Serve as a subject matter expert on compliance and regulatory matters, providing strategic advice and guidance to senior leadership. Coordinate with other privacy, compliance, and risk management leaders in the company to ensureMicrosoft Security'sprograms are alignedand partner closely withgovernance owners, including Privacy Regulatory Affairs and Corporate External Legal Affairs Front Line. | |