Senior Technical Program Manager - Compliance

Share job

Microsoft is built on trust and Azure is committed to being the most trusted cloud for its customers. As Azure expands services, certifications, and regions for its global customers, we require increased support for our customer certification efforts.

The Azure Compliance team is seeking an enthusiastic and dedicated Compliance Senior Technical Program Manager to support Azure’s compliance audits. The Compliance Senior Technical Program Manager will work with multiple stakeholders within Azure as well as our external customers to understand compliance requirements and operationalize solutions to scale and maintain certifications and all regulatory requirements that applies to Azure. The role will be supporting audit engagements (including scoping, evidence gathering, etc.) across multiple Microsoft Online Service’s offerings.

Our Azure Security and Compliance team manages the external audits that Azure maintains. We partner with engineering, security teams, and external auditors to ensure that our extensive certification portfolio can be leveraged by customers to build the most secure and compliant systems on Azure. We are a passionate group with a true customer-first mindset, enabling customers to effectively and securely leverage the many benefits of Azure Cloud. Come join our team and help our customers with their digital transformation efforts!

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Required Qualifications:

• Bachelor's Degree AND experience in engineering, product/technical program management, data analysis, or product development
  
  • OR equivalent experience
• Experience supporting compliance audits (e.g., System and Organization Controls 2 (SOC 2), Payment Card Industry (PCI), International Standards Organization (ISO), Health Information Trust Alliance (HITRUST), Federal Risk and Authorization Management Program (Fed RAMP))

Other Requirements:

• Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

Preferred Qualifications:

• In-depth experience managing cross-functional and/or cross-team projects.
• In-depth experienced with financial standards/regulations
• Proficient in reading and/or writing code (e.g., sample documentation, product demos).
• Demonstrated experience with security control frameworks e.g., SOC 2, PCI, ISO, NIST (National Institute of Standards and Technology), COSO (Committee of Sponsoring Organizations of the Treadway Commission), COBIT (Control Objectives for Information Technology).
• Proficient experience in end to end audit/certification lifecycle.
• Technical security and network background.
• CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor), and/or CISM (Certified Information Security Manager) certification preferred, but not required.

#azurecorejobs

• Support, scale, and execute Azure external assessment/audit projects.
• Demonstrated project management experience in medium-large scale projects.
• Enthusiasm, integrity, ingenuity, results-driven, self-motivated, and resourceful.
• Working in a fast-paced environment and able to manage multiple, disparate activities at once.
• Collaborate with team members to devise strategies and processes around various compliance programs.
• Provide requirements for building tools and processes needed to develop a scalable and efficient compliance program.
• Create and manage effective action plans in response to audit findings.
• Review and audit Azure’s procedures, practices, and documents to identify potential vulnerabilities or risks.
• Engage with customer and partner teams for ad hoc compliance support.
• Embody our Culture and Values.