If you have ever signed into Xbox, Skype, Outlook, Office 365, Azure or Dynamics, the Identity Security Team stands between you and cybercriminals. Billions of users sign into millions of apps every day on Microsoft’s identity platforms – we collaborate across Microsoft and the industry to prevent unauthorized access, account takeover, and fraud. Our adversaries include nation state actors, criminal gangs, and hackers trying to steal from, extort, or otherwise harm our customers. Our team’s efforts protect individuals from these threats, safeguard transactions powering the global digital economy, and support Microsoft’s commitment to defend democracy worldwide.

We build, maintain, and secure cloud services at very large scale worldwide. Securing and ensuring privacy of our customers data is our ongoing mission, and this is reflected every day in the products we develop, our operations, and how we engage with customers and partners.

You will be joining a fast-growing team, giving you an opportunity to shape the future of the Microsoft security and privacy while working closely with software engineers from across Identity to protect our users. We are a mission focused, diverse, collaborative and yes, FUN team of feature designers, data scientists, security program managers and incident responders.

"IdentityJobs"

Responsibilities

In this role, you will support our efforts to set the industry standard on enterprise and consumer privacy. You will make sure our SDL efforts are executed to the highest levels of privacy compliance.

We are seeking highly motivated and passionate technical program managers who are driven to protect the confidentiality of our users’ data.

In this role, your responsibilities will include:

Lead privacy initiatives across the Identity division, like GDPR, Schrems II, and training.

Drive awareness of privacy matters across Identity division.

Conduct technical design & policy reviews to identify & resolve privacy concerns. You will work closely with engineering teams to develop and adopt remediations and solutions.

Mitigate privacy risks ensuring that our data collection, usage, and handling practices are transparent and meet stakeholder requirements.

Efficiency Engineering - Focus on building a process for annual reviews, integrated into planning, with self-service training and guidelines, driven by tools for efficiency.

Discover Common weaknesses - Find points of privacy misses/weakness that are common to multiple teams and suggest central architecture changes.

Raise the bar - Monthly status reports on privacy mitigations, best practices adopted per team as part of the Monthly Service Engineering Review.

Represent the Identity division across Microsoft on privacy issues.

Serve as subject-matter expert supporting service teams in incorporating privacy features, and advising on privacy frameworks and technologies.

Ensuring Microsoft’s compliance with contractual and legal privacy obligations.

Qualifications

Required Qualifications:  

Bachelor’s degree or equivalent experience.

3+ years of experience in governance, regulatory, or compliance in a technical organization.

Preferred Qualifications:

Comfortable explaining complex technical privacy concepts and communicating cyber-risk clearly.

Degree in computer science / engineering, related technical field, or equivalent on-the-job experience.

Experience in:

Identity and access management, authorization, authentication, data protection and encryption

Auditing data classification and access requests

Large-scale web applications and backend services

Solid understanding of privacy legislation globally (e.g. GDPR, CCPA), technical privacy issues such as PII, secure logging, encryption, session management.

Ability to drive good decisions through data with great attention to detail.

Strong communication skills - ability to serve as a security advocate.

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter. 

#MicrosoftATL

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.  We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.