Microsoft Cloud Operations + Innovation (CO+I) is at the forefront of delivering the core infrastructure and foundational technologies for Microsoft's cloud services. Our mission is to empower every person and organization on the planet to achieve more by providing reliable, scalable, and secure cloud infrastructure. CO+I is responsible for designing, building, and operating Microsoft's global datacenters, which are the backbone of our cloud services, including Azure, Office 365, and Xbox Live.
We focus on innovation and operational excellence, ensuring that our datacenters are efficient, sustainable, and resilient. Our team is dedicated to advancing the state of the art in cloud infrastructure, leveraging cutting-edge technologies and best practices to meet the evolving needs of our customers.
Microsoft CO+I Compliance Team plays a crucial role in ensuring that our cloud infrastructure and operations adhere to the highest standards of legal and regulatory requirements. Our team is dedicated to maintaining the integrity, security, and compliance of Microsoft's global datacenters and cloud services.
We focus on developing and implementing comprehensive compliance policies and procedures to prevent unethical, illegal, or improper use of resources. Our responsibilities include safeguarding confidential and sensitive company data, conducting regular audits, and ensuring compliance with industry standards and regulations. By proactively identifying and mitigating risks, we help maintain a secure and compliant environment for our customers and partners.
Responsibilities
Policy Implementation and Monitoring
- Adopt, tailor, and enforce global compliance standards and policies in the APAC region.
- Ensure all operations align with our Construction Governance, ABAC, Human Rights, Financial Compliance, and Third-Party Risk Management commitments.
Regulatory Vigilance
- Stay updated on datacenter, construction, and technology industry best practices and regulatory requirements.
- Incorporate these insights into the compliance framework to ensure datacenter delivery and operations surpass industry standards.
Training and Advocacy
- Design and implement comprehensive training programs to foster a culture of compliance and ethical business practices across the region.
Incident Management
- Serve as the primary contact for all compliance inquiries and issues within the APAC region.
- Triage to appropriate Compliance SMEs where necessary.
Continuous Improvement
- Regularly evaluate the effectiveness of the compliance program.
- Adapt strategies to meet the dynamic landscape of regulations and industry standards.
Assessments/Audits/Certifications
- Conduct routine and complex assessment/audit projects independently, including assessing and reviewing documentation for internal and external teams.
- Track and monitor results, analyze information to identify areas for improvement, and collaborate with teams to remediate gaps.
- Leverage customer feedback to ensure its inclusion in compliance processes.
- Drive efficiency and scalability for programs.
Consult/Advise/Educate
- Collaborate across teams to ensure communication and application of the same regulations and standards.
- Advise on compliance of products, processes, and programs.
- Educate teams on compliance requirements and monitor compliance.
- Translate compliance standards and processes into relatable forms across multiple teams.
Controls
- Define controls by identifying potential failure points.
- Ensure routine and complex issues are fixed during the design process and implement controls.
- Test controls to determine their effectiveness and suggest improvements.
Governance
- Use understanding of policies, laws, and regulations to make judgments that meet business needs.
- Interpret information to protect Microsoft and customers, and move the business forward.
- Identify and escalate non-conformance.
- Set individual program guidelines at an organization level based on corporate policies and guidelines.
Reporting
- Develop and report compliance metrics and audit issues for internal and external reporting.
- Consult on remediation for reports.
Strategies, Processes, and Tools
- Develop strategies and processes around compliance programs independently.
- Anticipate new areas of focus based on the risk environment and ecosystem.
- Provide requirements for building tools and processes needed for market-leading compliance products and programs.
- Run existing tools and provide feedback on improvements.
Qualifications
Required Qualifications
- Bachelor's Degree in Science, Business, Engineering, or related field AND 6+ years experience in business, legal/regulatory, compliance, audit/consulting firm OR equivalent experience.
Additional or preferred qualifications
- Minimum of 5 years of experience with multinational organizations in construction governance, risk management, compliance, internal audit, and/or a similar field.
- Demonstrated experience in building and scaling risk management or compliance programs, ideally within a data center or technology-focused environment.
- Proven capability in developing and overseeing effective compliance programs.
- Proven ability to lead strategic initiatives, engage with senior stakeholders, and drive cross-function collaboration.
- Strong analytical, organizational, and communication skills.
- Relevant Certification (e.g., International Organization for Standardization [ISO] Lead Auditor, International Association of Privacy Professionals [IAPP], Certified Public Accountant [CPA], Certified Information Privacy Professional [CIPP]).
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.