Technical Program Management

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world.

The Identity & Access Management (IAM) Protect team within the CISO organization is looking for a Technical Program Manager with expertise in managing compliance programs related to SOX, IT general controls, and Identity and Access Management (IAM). The ideal candidate should have a solid understanding of industry standards, regulatory requirements, and external audit processes. This role will focus on leading SOX compliance efforts in the IAM space, ensuring controls are designed, implemented, and monitored to meet audit and regulatory expectations. Key responsibilities include collaborating with internal teams, control owners, auditors, and compliance stakeholders to establish effective processes and prepare for successful audits. The candidate should be skilled at managing compliance complexities within a large organization like Microsoft and delivering impactful outcomes through cross-functional collaboration and influence across diverse engineering teams. The ideal candidate is a highly motivated professional passionate about using modern technical solutions to address compliance and risk management challenges. They should excel in cross-functional collaboration, stakeholder alignment, and maintaining up-to-date knowledge of industry trends, regulatory changes, and business needs. Adaptability to organizational and business shifts is crucial for success in this role.

• Plan and manage a comprehensive calendar for all SOX-related activities, including scoping meetings, reviews, walkthroughs, evidence submissions, and audit deadlines to ensure a structured approach, timely execution, and avoidance of delays.
• Facilitate SOX scoping meetings by engaging with Control Owners, Compliance Managers, and Engineering teams to define objectives and align on responsibilities. Evaluate and update control documentation, process flowcharts, and other audit materials. Prepare comprehensive documentation, including mock walkthroughs, to ensure audit readiness.
• Oversee evidence requests through ADO, ensuring timely and accurate submissions by collaborating with Control Owners. Monitor audit deliverables to adhere to SLAs, track progress, and request deadline extensions as needed to meet compliance requirements.
• Monitor audit deliverables to ensure adherence to SLAs, track progress, and request deadline extensions when necessary, maintaining transparency with all stakeholders.
• Conduct periodic reviews of subscriptions, resource groups, and accounts to verify compliance with provisioning standards. Address auditor inquiries related to access reviews and ensured alignment with established policies.