Lead Compliance and Risk Specialist, Microsoft 365

Lead Compliance and Risk Specialist, Microsoft 365

Northern Trust is seeking an effective Lead Compliance and Risk Specialist, M365 within the Digital Workplace Technology organization. This role is responsible for the overall compliance posture, documentation, and audit readiness of the Microsoft 365 environment. The ideal candidate will be bring enterprise experience in defining a compliance and risk framework in a globally distributed organization. Candidate will also be 'hands-on' and have relevant understanding of the features and capabilities of the Microsoft 365 estate. This role will also ensure:

• Development and delivery of security, compliance, and risk reporting for the M365 estate
• Integration and alignment of M365 roadmap plans with key security and cyber initiatives
• Working in close partnership with technical teams and enterprise support teams to ensure compliance with the overall Digital Workplace compliance, risk, and security strategy
• Managing the Microsoft 365 compliance framework in support of Corporate regulatory, compliance, risk management, privacy, and security policies
• Defining key metrics and reporting in support of compliance, risk, and security goals
• Managing communications and relationships with key business stakeholders
• Managing communications and training requirements for partners and contractors

Responsibilities

• Provides overall compliance and risk management roadmap for the M365 platform
• Drives automation and process improvement
• Provide technical oversight, training, and coaching to the product team
• Works with other infrastructure, security, and application teams/leads to drive decisions on which solutions to implement in the best interest of the organization.
• Works closely with the Business Council to surface pain points and assist in prioritization of the roadmap and integration pipeline
• Stays up to date on industry regulations, trends, and technology.
• Strong overall understanding of the Microsoft 365 environment, features, and options
• General understanding of Azure Cloud and Azure Virtual Desktop

Knowledge/Requirements

• Bachelor's Degree or higher in relevant field or equivalent work experience
• 8+ years of direct Microsoft Cloud, IT Architecture, and Engineering experience
• 6+ years of compliance, risk, security architecture and management
• Knowledge of supporting technologies including but not limited to authentication, networking, e.g. routing protocols/technologies TCP/IP, DHCP, DNS, LAN, WAN, Wireless and VPN, peripherals, active directory services, GPO
• Global technology experience working with various towers and teams
• Experience with maturing operations and engineering processes, documentation, and monitoring capabilities
• ITSM model (Service Now a plus)
• Related technology certifications a plus: e.g. Microsoft certifications, Security certifications
• Excellent oral and written communication skills are required
• Highly flexible and adaptable to change
• Strong analytical ability, judgment and problem analysis techniques, excellent communication skills, and the ability to work effectively with client and IT management, staff and vendors.
• A self-starter with a passion for technology, teamwork, overcoming challenges, prioritization, problem solving, diagnosis/troubleshooting & providing exceptional customer service
• Strong adaptation skills including the ability to communication at all levels, analytical ability, strong judgment and management skills, and the ability to work effectively with partners, staff, vendors, IT and operational leaders.