Microsoft’s Cloud business is experiencing explosive growth, and the Capacity, Supply Chain & Provisioning (CSCP) organization is responsible for enabling the infrastructure underlying this growth. Our mission is to deliver the world’s computer with an industry-leading supply chain. CSCP is responsible for strategic sourcing, customer demand forecasting, capacity planning and management, supply chain planning and execution, capacity provisioning, and decommissioning and dispositioning of datacenter assets worldwide.

Microsoft Cloud business is growing at a very fast pace and the supply chain to fulfill capacity needs for capacity hungry Cloud business is getting complex with new scenarios emerging continuously. The need to find solutions leveraging an engineering mindset has never been stronger. We are fulfilling capacity needs from public clouds, sovereign clouds, specialized workloads, each going through high growth. We have a goal to be a Top 25 supply chain in the world in the next 3 years and are looking for people who can get innovative in solution envisioning, have a high bias for action and obsess over customer experience. Microsoft’s CSCP team has an immediate opening for a risk professional within its Supply Chain Risk Management team. This role is critical to managing Supply chain Risk in a digitally transforming business world. The candidate is expected to have a solid foundation in risk management practices, working alongside policy governance framework and integrated controls management professionals across a complex multi-national business. The immediate focus will be on risk program and engaging senior stakeholders and executives regarding their strategic concerns. Our group values strong cross-team communication & collaboration, ability to network and integrate across the Microsoft eco-system to inject value to the company at large, and create meaningful lasting relationships with our business partners, stakeholders, and executive leaders.

As a Senior Supply Chain Risk Manager, you will engage with various stakeholders as a trusted advisor and liaison. You will regularly apply risk and compliance frameworks and principles, to help control the end-to-end processes, anticipate risks, and support compliance by design goals and objectives. Stakeholders include executives leads, process owners, service owners, peers in the internal risk and compliance community, and internal and external audit. The candidate’s success depends on their ability to drive shared understanding and commitment to managing risks and issues across multiple stakeholder groups. Candidate should continuously seek to optimize the risk management process – from identification and intake to register and remediation.

Responsibilities

• Build out a best-in-class enterprise risk framework and engagement model and collaborate with key stakeholders to drive risk-based decision making within the organizations that you support.

• Translate issues and observations into meaningful business risks and work with other risk managers, risk domain owners, and business owners to drive & track remediation.

• Support the development of consistent risk definitions, indicators, and dashboards/scorecards through to tactical actions based on outputs of assessment, reviews, and other current or new intelligence channels.

• Manage integrated risk portfolios across multiple divisions and multiple risk domains individually for that organization up through to broader risk views and discussions with the Executive teams that adds value and enables business decision making for the future

• Assess end-to-end risk register and remediation processes and dependencies for better efficiencies and effectiveness. Recommends process and control improvements (e.g., preventative/detective and automated/manual) to mature the control environment.

• Engage across the broad risk management ecosystem and peer organizations throughout the company to represent CSCP and share best practices and accelerated opportunities to improve and protect the enterprise.

• Aligning current and potential new tooling infrastructure to enable the program while leveraging other centers of excellence at the company - Supporting the implementation of a GRC tool

• Communicates and educates various stakeholder and peer audiences about the program’s risk methodology, processes, and outcomes to ensure better and more consistent conversations and outcomes.

• Defining and maturing scorecards, KPIs, both for team performance/capacity as well as risk and compliance scorecards for the multiple businesses we serve.

Qualifications

Required Qualifications:

• 8-15 years of overall experience in supply chain with 5+ years in risk, including but not limited to; third party risk, financial risk, credit risk, vendor risk, enterprise risk, audit, insurance, and/or compliance management

• Understanding of key governance, risk, and compliance concepts relating to enterprise risk and secure supply chain risk

• Ability to partner with, and influence others, to build consensus with strong analytical skills and a demonstrated aptitude to think creatively

• Ability to effectively prioritize and maintain focus on multiple tasks while working in a team environment with a diverse set of stakeholders

• Excellent written, oral and presentation skills and an ability to synthesize information to assist in making clear, concise recommendations on courses of action or mitigation

• Demonstrates aptitude for identifying and interpreting enterprise risks and mitigating controls including emerging risks, key risks, performance indicators, and root cause analysis

• Ability to work both independently and as part of a team to deliver quality work product in a timely fashion in a fast-paced environment

• Ability to build and maintain effective working relationships at all levels of an organization

• Strong business ethics surrounding access to confidential information.

Preferred Qualifications:

• 5+ years of broad risk management and compliance including senior management roles and engaging with senior leaders to influence results

• Real world implication definitions and application of mitigations - See company/industry trends and provide leadership with business context

• Exceptional program and project management

• Analyze complex problems, think creatively, communicate recommendations, influence change and be able to drive process and structure into an extremely dynamic environment

• Ability to work and create structure in complex and ambiguous situations and respond flexibly in time sensitive situations

• Conflict/Negotiation management - demonstrated influencing skills

• Strong written/oral communication skills required along with desire and ability to communicate with business leaders through all levels of the organization

• High energy and a strong desire to learn

• Ability to motivate self and others, often virtually

• Master's degree in information security, accounting, finance or related business or risk/compliance field strongly preferred.

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.