Organization Summary:
If you love the pursuit of excellence and are inspired by the challenges that come through driving innovations that impact how the world lives, works and plays, then we invite you to learn more about Microsoft Business Operations (MBO) and the value we deliver across Microsoft and to our customers and partners. Microsoft Business Operations is uniquely positioned within the company, supporting nearly every product Microsoft offers by launching, transacting, and protecting our business operations. This is done across an ecosystem of upstream and downstream dependencies. We offer unique opportunities to work on interesting global efforts in an environment that appreciates diversity, focuses on talent development, and recognizes and rewards great work.
Position Description:
The Microsoft Business Operations Governance Risk and Compliance (GRC) Team is looking for an experienced Director of Risk Management Operations . As the leader of this critical function, you will manage, coach, and care for a talented global team that supports effective and efficient risk management and compliance across Microsoft’s end to end processes. You will own the definition, design, and realization of the capabilities and services required to help ensure risks are mitigated, compliance is managed, and stakeholder trust is protected and preserved.
As leader of the MBO GRC Team, you will manage a service that provides expertise, support, and monitoring of risk and compliance-related matters to MBO’s organizations (1st Lines of Defense). You will also be required to manage stakeholder relationships with various Microsoft teams including Finance, Engineering, Legal, Global Compliance, and others as well as collaborations with internal and external audit (3rd Lines of Defense). You will lead the achievement of the Risk, Compliance, Protection at Scale vision which is to ensure Microsoft’s end to end business processes are proactively risk managed and continuously compliant by implementing mechanisms to anticipate risk and protect the ecosystem, controlling end to end processes, and implementing “compliant by design.”
You must be someone who is constantly looking to protect the company, while also embracing opportunities to innovate (e.g., leverage technologies to enhance controls through automation and machine learning), improve processes, and meet business objectives and strategies. Data, facts, and analysis are foundational components of your compliance and risk management approaches. You should be comfortable prospering in a dynamic and diverse international matrix organization and capable of providing strategic direction across various teams. You love the challenge of solving big, bold problems. You have deep experience in enterprise risk management (ERM), financial and operational controls, privacy, business continuity management (BCM), governance. You must have strong written and oral communication skills to engage will individuals at all levels of the organization including leadership teams and executives. You may have previously worked in a technology company or accounting/consultancy firm. You are a strategic thinker with the ability to connect the dots and you have an ability to go immediately to ground level details if necessary.
Responsibilities
Responsibilities:
Lead, manage, and maintain MBO’s Governance, Risk, and Compliance programs.
Define, design, enhance, and realize the Risk, Compliance, Protection at Scale vision for MBO.
Lead, manage, coach, and care for a talented global team.
Establish and maintain governance through executive forums and lead cross-functional teams through various strategic initiatives while helping to ensure effective compliance and risk management.
Approach compliance and risk management with a growth mindset and innovate using technologies (machine learning, AI, automation, etc.) to enhance the effectiveness and efficiency of controls (KRIs, detective monitoring, predictive modeling, other).
Leverage risk and compliance frameworks (e.g., COSO, ISO), standards, & principles and implement control solutions that support modern-driven (e.g., cloud technologies) changes to processes, infrastructure, and environment.
Partner with key business stakeholders to drive the adoption, design, implementation, operation, and remediation of control activities and other supporting requirements like policies, standards, processes, system configurations & reporting and compliance auditing.
Lead MBO’s privacy program and work closely with partners (other privacy teams, legal, etc.) on meeting privacy requirements. Develop, implement, and maintain privacy and data protection policies and standard operating procedures for GDPR and other emerging domestic and global privacy laws.
Lead MBO’s business continuity management (BCM) program.
Lead MBO’s user access management program.
Manage relationships with internal and external auditors and support audit activities.
Collaborate and partner with various Microsoft teams including Finance, Engineering, Legal, and Global Compliance.
Establish and maintain programs for identifying, assessing, and managing risk across MBO’s processes by providing thought leadership, oversight, and coordination with other risk management activities across the company.
Remain current on the changing industry and regulatory environments and understand the impacts to our efforts.
Analyze information and leverage data to proactively identify risks, trends, and process improvements.
Support reporting on risk topics to management.
Participate in risk and other management forums and contribute to continuous improvement of risk and project / program management practices.
Participate in and execute special projects for the organization as required.
The role is based in Redmond and may require some travel to connect with field and global team members.
Qualifications
Basic Qualifications:
10 years' minimum experience in Governance, Risk Management, Compliance, Regulatory, Audit, Accounting, or Finance
A minimum of a Bachelor's degree in Risk Management, Business, Operations, Accounting, Finance, or a related field, or equivalent alternative education, skills, and/or practical experience is required.
Preferred Qualifications:
Master's degree
Privacy and business continuity management experience
Experience in a technology company
Strong process and project management capabilities
Previous work experience and proven output in legal and regulatory compliance related risks is strongly desired (anti-corruption, channel / partner compliance, trade, tax, revenue assurance)
#MBO
#EPIC
#CSEO
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form at https://careers.microsoft.com/us/en/accommodationrequest .
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.