Senior Compliance Incident Manager

The Microsoft Procurement mission is to deliver business value through proactive global solutions that are innovative, compliant and cost effective.  Procurement is a global team of 215+ employees across 30 countries supporting 100+ geographies and facilitating billions in annual purchases worldwide. Microsoft Procurement fosters a culture of innovation, operations excellence and provides career growth opportunities with a rewarding and flexible work environment so you can better integrate professional and personal life.  This position will be part of the Responsible Procurement & Compliance (RP&C) organization and focuses on incident management. 

We are seeking a highly skilled and motivated Senior Compliance Incident Manager to join our team.  This role will be responsible for building and executing a strategy to consolidate various non-compliance and incident management intake tools and processes in place today into a consistent experience.  This individual will be responsible for triaging all incoming incidents, identifying gaps early in the engagement process and requesting appropriate resources to fill those gaps as necessary.  Oversee all supplier incidents to closure.  

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees, we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.  

This position is a hybrid role, requiring three days per week in office. 

Responsibilities

• Supplier Incident Management: Lead and manage incident response across RP&C. Manage the implementation of incident management frameworks and procedures. Oversee escalations, supporting incident response teams, ensuring timely responses, directing issues to the appropriate SME teams, monitoring progress to resolution, and raising matters to leadership, when necessary, especially in cases of urgent and sensitive nature. Elevates findings appropriately to address and mitigate issues. Use judgement to uplevel sensitivity so that others can help in remediation. 
• Supplier Non-Compliance Management: Manage supplier non-compliance incidents with the Supplier Code of Conduct as well as reported supplier grievances and aligned to Supplier Security and Privacy Assurance (SSPA) compliance levers.  

• Intake consolidation: Design and implement a strategy to consolidate various non-compliance and incident management intake tools and processes in place today into a consistent experience.  

• Data Analytics: Develop and maintain dashboards and reports to track key performance indicators (KPIs) and support decision-making.  Leads data quality efforts to ensure timely and consistent access to data sources. 

• Stakeholder Collaboration: Work closely with internal stakeholders, including Legal, Security, Privacy, and others, to address and resolve emerging issues, focusing on a One Microsoft, one team environment. Provide regular updates and reports to leaders/management on the status of incident management efforts. 

• Continuous Improvement: Drive continuous improvement in incident management processes including development of guidelines, models, and preferred practices to enable teams to avoid common patterns of issues. Applies subject matter expertise and lead postmortem and root-cause analyses for complex and/or large-scale incidents. Drives the development of guidance and education that result from resolution of an incident. Ensure operational processes maintain alignment with business objectives. 
• Other: Embody our culture and values.

Qualifications

Required Qualifications 

• Bachelor's Degree in Business, Operations, Finance or related field AND 4+ years work experience in program management, process management, process improvement
  • OR equivalent experience.  

Preferred Qualifications: 

• Security Certifications in any of the following: OSCP, CISSP, SANs Certifications. Or Security Certifications from Microsoft.   
• Privacy Certifications such as, CIPT, CIPP, AIGP from the International Organization of Privacy Professionals (IAPP).
• Proven written, communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and distill and deliver complex, ambiguous information to a variety of audiences including leaders. 
• Proven project management skills, with the ability to manage multiple projects simultaneously and meet deadlines. 
• Adept problem solver with solid judgement; attention to detail without losing sight of broader risk area(s) 
• Highly driven self-starter, with a demonstrated track record of exceeding goals. 
• Ability to persuade, lead and motivate others through indirect influence. 
• A high level of enthusiasm, confidence, creativity, self-motivation, and resourcefulness. 
• Team player, contributor, and thrives in cross-team environments. 
• Flexibility to accommodate non-standard working hours as the job demands. 
• Resilience under stress, coupled with a readiness to occasionally operate beyond standard business hours to assist with incidents. 
• Outstanding interpersonal and communication abilities, conducive to productive collaboration within diverse team structures. 
• Proactive approach in initiating actions and advocating for improvements to establish more streamlined and effective incident management processes. 

Business Program Management IC4 - The typical base pay range for this role across the U.S. is USD $94,600 - $183,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $122,000 - $200,500 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft will accept applications for the role until February 13, 2025

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.  We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.