Do you want to be part of a team driving improvements within the Industry Solutions Delivery (ISD) organization resulting in better customer and employee experiences?

The Information Security Architect is part of Delivery Excellence Services (DES) group in the  Industry Solutions Delivery organization. This role is pivotal for executing on the delivery excellence strategy and for successfully driving Modern Delivery and Delivery Maturity. This role will be a key part of the Information Security Function, whose charter is to improve Microsoft Consulting Services’ security, agility, reliability & productivity through a holistic ‘Secure By Default’ enablement ecosystem for teams to consistently plan, build and deliver customer engagements and internal projects Securely.  This role requires a collaborative business leader with strong Information Security management experience on landing Data Security and Privacy practices, understanding of the data regulatory compliance requirements,  consulting services delivery principles, engineering disciplines, and the ability to successfully influence in a highly matrixed environment. The role is responsible for leading the definition of necessary Data Security and Privacy processes and methodology, best practices from the product teams, industry, and for driving improvement initiatives. This role is responsible for influencing the adoption and usage of Data Security and Privacy practices across the Microsoft Consulting Services delivery domains working closely with the Domain Leadership, Domain CTOs, SQA (Services Quality Assurance) and field SMEs (Subject Matter Experts). This role collaborates and maintains partnership with Field SMEs, Domain Management, SAO (Solution Architecture Office), SQA, RolEx (Role Excellence), and Readiness. The key success to this role would be to continuously automate, measure, learn and improve Security, agility, velocity, reliability in MCS delivered solutions to customers.

Industry Solutions Delivery continues to be the key differentiator in accelerating customer’s digital transformation journey, ensuring they get the most out of their technology investments. 

Responsibilities

• Collaborate with stakeholders and peers to define, enhance, and maintain Data Security and Privacy best practices.
• Leverage industry benchmarks to measure and improve existing Data Security and Privacy methodologies, processes, tools, and practices.
• Establish Data Security and Privacy methodologies and tooling implementation plan for the Domains collaborating with key stakeholder groups and ensure they are centrally consolidated in SDMPlus (central process repository where all delivery methodologies are documented with self-serve access to the field) and ServicesCode (centrally managed Microsoft hosted DevOps platforms for ISD generated code/software) as applicable.
• Collaborate with field stakeholders to improve usability and adoption of Data Security and Privacy practices and tools across the Services business.
• Be an evangelist of emerging Data Security and Privacy best practices in services to improve agility and efficiency for the end user personas and for the delivery business.
• Owner of Data Security and Privacy practices and tooling IP and represent Industry Solutions Delivery across various forums within and outside Microsoft.

Qualifications

Key Success Criteria and Competencies required

• Demonstrated ability to manage a broad portfolio of diverse and cross-functional programs, projects and initiatives driving global impact.
• Ability to lead and drive large scale change within a global Professional Services organization
• Prior experience in planning and executing Information Security practices and landing roadmap in a global environment.
• Prior experience in working with cross functional teams, live site reviews, ownership of translating customer and technical requirements into service architecture to meet Quality of Service expectations for end-to-end business services.
• Exposure to enabling and managing cloud services, usage, and optimization as well as automation and development of tools to support Secure DevOps model and improvements based on trends and data analysis.
• Articulate compelling vision develop followership systems thinking.
• Positive disruptor that can view opportunities vs barriers.
• Strong verbal and written communication skills with technical and business leaders at all levels within large enterprises.
• Influencing stakeholders to achieve impact through collaboration, presence, and strong communication skills.
• Demonstrated ability to work effectively in a multi-cultural and global environment spanning multiple time-zones.

Knowledge, Skills and Experience

• Deep and extensive experience in building and landing Information Security practices is required.
• In-depth experience in Azure Services and Cloud-based technologies
• Deep and extensive experience in Security Development Lifecycle, DevSecOps, Whitebox, Blackbox security testing
• Understanding of ISO 27001-2013 requirements and documentations
• Must have a minimum of 5 years of experience developing software for the Microsoft platform using programming languages and development platforms including C/C++, C#, ASP.NET, breadth of knowledge on Azure security stack, emerging technologies like AI/IoT and related security exposures with a grasp on remediation workflows.
• Industry certifications such as CISSP, CISM are considered a plus.
• Strategic thinking with the proven capability to contribute and execute a delivery strategy that resulted in quality delivery outcomes.
• Outstanding interpersonal skills, providing leadership by example, and an inspiring vision for driving future in a matrix environment.
• Ability to develop a strong understanding of the Industry Solutions Delivery organization and operations at all levels.
• Bachelor’s degree or higher qualification in computer science, operations, business administration, or equivalent years of experience
• Exposure to enabling and managing cloud services, usage, and security controls optimizations.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.  We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.