New 
Senior Compliance Incident Manager
 Microsoft | |
 United States, Washington, Redmond | |
 Feb 08, 2025 | |
|
OverviewThe Microsoft Procurement mission is to deliver business value through proactive global solutions that are innovative,compliantand cost effective. Procurement is a global team of 215+ employees across 30 countries supporting 100+ geographies andfacilitatingbillions in annual purchases worldwide. Microsoft Procurement fosters a culture of innovation, operations excellence andprovidescareergrowth opportunities with a rewarding and flexible work environment so you can better integrate professional and personal life. This position will be part of the Responsible Procurement & Compliance (RP&C) organization and focuses on incident management. We are seeking a highly skilled and motivated Senior Compliance Incident Manager to join our team. This role will be responsible for building and executing a strategy to consolidate various non-compliance and incident management intake tools and processes in place today into a consistent experience. This individual will be responsible for triaging all incoming incidents, identifying gaps early in the engagement process and requesting appropriate resources to fill those gaps as necessary. Oversee all supplier incidents to closure. Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees, we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. This position is a hybrid role, requiring three days per week in office.
ResponsibilitiesSupplier Incident Management: Lead and manage incident response across RP&C. Manage the implementation of incident management frameworks and procedures. Oversee escalations, supporting incident response teams, ensuring timely responses, directing issues to the appropriate SME teams, monitoring progress to resolution, and raising matters to leadership, when necessary, especially in cases of urgent and sensitive nature. Elevates findings appropriately to address and mitigate issues. Use judgement to uplevel sensitivity so that others can help in remediation. Supplier Non-Compliance Management: Manage supplier non-compliance incidents with the Supplier Code of Conduct as well as reported supplier grievances and aligned to Supplier Security and Privacy Assurance (SSPA) compliance levers. Intake consolidation:Design and implement a strategy to consolidate various non-compliance and incident management intake tools and processes in place today into a consistent experience. Data Analytics: Develop and maintain dashboards and reports to track key performance indicators (KPIs) and support decision-making. Leads data quality efforts to ensure timely and consistent access to data sources. Stakeholder Collaboration:Work closely with internal stakeholders, including Legal, Security, Privacy, and others, to address and resolve emerging issues, focusing on a One Microsoft, one team environment. Provide regular updates and reports to leaders/management on the status of incident management efforts. Continuous Improvement:Drive continuous improvement in incident management processes including development of guidelines, models, and preferred practices to enable teams to avoid common patterns of issues. Applies subject matter expertise and lead postmortem and root-cause analyses for complex and/or large-scale incidents. Drives the development of guidance and education that result from resolution of an incident. Ensure operational processes maintain alignment with business objectives. Other: Embody our culture and values. | |