Risk and Privacy Manager
Redmond , Washington
December 11, 2017
As a part of the Windows Device Group (WDG), the Universal Store (UST) team enables Microsoft’s most business critical needs: electronic monetization of MSFT products and services. Indeed, UST powers all of Microsoft’s key businesses - Azure, Office 365, XBOX, Bing Ads, Windows App Store, to name just a few. Whatever the business Microsoft is in, monetization will be a critical part. With a global presence in over 240 markets, close to 150 million transactions a day, and approximately $75 billion dollars of revenue processed annually, UST services need to be true internet scale and have state of the art availability, reliability and responsiveness. UST is in continuous agile evolution, through a services-oriented engineering model, in which the overall solution consists of well-integrated, but loosely coupled and independent services.

We have a great opportunity for you in the Enterprise Commerce (EC) org., to lead UST’s Commercial Privacy and Risk Compliance program – defining, managing and remediating Commercial Privacy and GTM Risks across the UST org covering a $65B+ revenue ecosystem. This role reports directly to the Director of UST Commercial Compliance. Risk and Compliance includes Privacy, Security and SOX 404 compliance requirements and ensures that UST’s Commercial systems have mitigated compliance risks to an immaterial known impact, where we meet regulatory and statutory rules for Commercial privacy protection. The Lead Privacy Manager is critical in ensuring cross-team coordination, risk knowledge and awareness, and leadership visibility to privacy compliance impact and requirements.

This ideal candidate should have extensive experience delivering and coordinating large enterprise-scale projects using software engineering best practices such as project scheduling, scenario and requirement definition, functional design, resourcing, issue/risk management, cross-division coordination and project and organization change management. In addition, this position requires an individual comfortable serving as the overall advocate for solution design and a leader of the program management discipline.

This position requires a unique blend of privacy compliance, business and technical skills. The ideal candidate should be at home collaborating and coordinating across multiple stakeholder and partner groups, keeping open channels of communication between all of them, managing the engagement of key stakeholders and leading the overall program and project management. Collaboration and expectation setting are key to success, as well as solid project management skills and financial compliance knowledge that will allow for proactive identification of privacy compliance gaps and issues. Risk and issue assessment and management, time and capacity management, and executive and stakeholder communications are also required responsibilities. A deep understanding of Volume Licensing and Commercial program rules is desirable to expedite ramp up time.

Other responsibilities include:

•Risk and Compliance (includes Privacy, Security and Sarbanes Oxley 404 and 302) program oversight and management

•Key point of contact across UST for GTM and Commercial business and Privacy Risk

•Lead vendor team and governance program framework for Privacy, ensuring program objectives are clearly communicated and met across UST Org/Service Lines

•Lead various Privacy audit programs, internal audits and regulatory assessments

•Direct and collaboration with CELA and MSFT Regulatory Affairs to ensure that Privacy policies are defined and operating effectively across the UST Commercial business – including
service and system engineering

•Deep understanding of current global privacy regulation – such as EU and Global localization, data privacy and consumer protection laws

•Critically reviews multiple plans and adjusts as needed. Proactively communicates and addresses necessary priority or capacity trade-offs.

•Implement business controls and quality metrics across the end to end processes as directed to meet operational privacy compliance

•Ensure integrity of processes and data while having an end to end view of VL and GTM Commercial systems

•Understand the various dependencies and relationships across the Volume Licensing and UST’s GTM Commercial ecosystem

•Review audits to ensure data quality – team with internal and external business contacts to proactively respond to data and system interface issues as required

•Analyze, troubleshoot, and proactively challenge existing processes and workflows – suggest and support implementation of necessary changes in order to optimize performance and user experience

•Uses, analyzes and leverages existing data to make / take informed decisions, improve existing processes / systems and simplifies and create strong plans with minimum risk

•Collaborates with stakeholders and partners to proactively collect feedback to drive positive changes in operational compliance processes

•Establishes a strong relationship and becomes a 'trusted advisor' status with key internal/external stakeholders and partners


•Exceptional leadership acumen, with natural drive to lead by example

•Strong executive maturity, integrity and judgment

•Excellent communication skills at all organization levels

•Deep passion for satisfying customer needs and achieving high user and business partner satisfaction, influencing decisions for the right solutions and balancing priorities across customer, business and technical needs

•A proven track record of successful results-oriented, solution and project definition and delivery

•Successful experience leading delivery of business processes and solutions across multiple teams and complex integrated ecosystems and dependencies, comprising an end-to-end compliance solution

•Successful experience identifying scenarios and requirements, and design solutions in a streamlined, agile fashion incorporating quality in use principles

•Able to develop feature roadmaps to enable future business capabilities


•Strong computer science foundation and understanding of engineering processes and development life cycles

•Outstanding problem solving skills and passion to solve hard problems

•Bachelor’s degree in Computer Science, Mathematics, finance/accounting or related sciences required

•12+ years of work experience as a Program, Product, Solution or Project Manager


•Master’s degree in Business, Computer Science, Mathematics, or related sciences preferred

•Prior audit or auditor experience (private or public sector)

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, gender, sexual orientation, gender identity or expression, religion, national origin, marital status, age, disability, veteran status, genetic information, or any other protected status.

A little about us:
Microsoft offers training and employment opportunities to help you turn your military experience and skills into a civilian technology career.

Know someone who would be interested in this job? Share it with your network.