Job Description

This includes building a scalable, accurate and complete system of asset inventory, engineering requirements and system health. These systems and processes will touch every team and will be used not only to keep the cloud running securely, but to demonstrate this through evidence. We are replacing traditional IT processes and systems with their hyper-scale equivalents, as well as architecting our security and compliance processes so that they are consumable by our customers. The ideal candidate will be an experienced PM with proven compliance, security, communication, and project management skills in a fast paced and agile environment. We are looking for someone who has the technical depth required to effectively communicate with SMEs from Compliance, Security, Engineering, Operations, Support, and other disciplines. We are looking for someone to drive engagement with external customers and vendors, regulators, assessors, and Microsoft personnel to demonstrate that O365 meets confidentiality, privacy, and security requirements primarily focused on the European region. You will work across a hyper scale cloud environment including products and services such as Outlook, OneDrive, and Office Online.

Responsibilities

• Represent Microsoft’s controls over regulatory requirements to external vendors, assessors, and external customers.
• Ensure successful preparation, execution and close out of O365 audits.
• Work across multiple technologies and teams to implement engineering guidance and monitoring.
• Drive communication and project management across our cloud environments.
• Assist in audit activities where required to ensure successful preparation, execution and close out of audits.
• Represent Microsoft’s controls over regulatory requirements to external vendors, assessors, and external customers.
• Liaise with internal engineering groups to optimize execution for meeting compliance requirements.

Required Knowledge, Skills, and Abilities

• Experience with cloud environments
• Familiarity with security and compliance in cloud computing environments
• Demonstrated ability to lead projects and work independently
• Experience with a variety of information technology implementations
• Experience conducting audits
• Strong technical problem-solving and analytical skills with ability to interview engineers on technical subject matter
• Familiarity with ISO 27001, SOC 1 and 2, FedRAMP, or other compliance related certifications
• Experience working across geographies
• Direct experience with security, compliance and regulatory frameworks- including PCI DSS, ISO 27001, SSAE/SOC 1 and 2, FedRAMP, Privacy, NIST certification and accreditation processes
• Experience with IT operations techniques and diverse IT architectures; specific knowledge of hyper-scale cloud products is a plus
• CISA, CISSP, ISO 27001 or other compliance related certifications are a plus
• Strong technical problem-solving and analytical skills with ability to interview engineers on technical subject matter
• Ability to collaborate with partners, deliver cross-group projects, and drive change
• Strong written/oral communication and ability to clearly articulate ideas for executive level consumption.