Risk Manager, Data Protection & Resilency Manager at Microsoft
Risk Manager, Data Protection & Resilency Manager Details
March 11, 2019, 7:12 p.m.
Business Programs & Operations
Governance (IPG) team Services' Information Protection
Microsoft Services' Information Protection and Governance (IPG) team is seeking a Data Protection (DP) and Resilency Manager to contribute to the success of Services' DP initiatives. IPG defines processes for customers' data protection including privacy, security, governance, risk and compliance solutions, and provides guidance and oversight across the Microsoft Services and Customer Support Services division. The successful candidate will proactively drive risk management and compliance objectives as a key partner and trusted advisor to Microsoft Services and Customer Support Services planning teams, ensuring future state processes and programs have privacy and security included by design. Key to this role will be building effective working relationships across the business, proactively driving the adoption of key policies and standards relevant to the business. Also important will be close coordination with regional IPG DP and Privacy Managers to see that relevant regional business and
• Own DP and Resilency compliance end-to-end for specific planning and process teams in the Microsoft Services and Customer Support Services divisons • Lead functional virtual teams across planning and delivery to incorporate DP and Resilency requirements and best practices and to ensure consistency • Ensure that teams who are developing new or different ways to engage with customers or provide customer support are building in the right DP and Resilency features and checkpoints. • Forge strong partnerships with your specific planning and process teams, in order to proactively review business strategies
• Understanding of enterprise compliance governance and oversight processes (information security standards, laws and regulations, privacy and security, risk management, control protocols, methodologies, and practices) with at least 5 years' hands-on work in a fast-paced and matrixed environment with experience in privacy, security, or compliance disciplines • Familiarity with control frameworks and regulatory/compliance requirements such as ISO27001, HIPAA, FISMA/FedRamp, EU Data Protection Directive, etc. • Excellent written and verbal communication skills with the ability to tailor communications