Datacenter Security Operations Manager
Microsoft
Datacenter Security Operations Manager
Sydney, New South Wales, Australia
Save
Overview
Cloud Operations + Innovation (CO+I) is the engine that powers Microsoft’s cloud platforms and services that millions of people use every day. With more than 95% of Fortune 500 business on Azure, 180 million using Office 365, and millions using other services – all running on Microsoft's cloud infrastructure – CO+I designs, builds, and operates the foundation upon which Microsoft’s mission to empower every person and organization comes to life.
The CO+I Physical Security team is organized within the Core Operations Functions (COF) team and is dedicated to delivering the most trustworthy security program to protect the personnel, infrastructure, data, and confidential information foundational to the Microsoft Cloud. With more than 200 datacenters in 32 countries and millions of servers, our mission is to be the most reliable, rigorous, and trusted physical security provider of hyperscale cloud infrastructure. We are accountable stewards of the awesome responsibility we hold. We innovate to meet challenges and optimize to scale efficiently. We constantly create and maintain a collaborative ecosystem. We appreciate and act on opportunities to improve.
We are seeking a mission-driven Datacenter Security Operations Manager to be accountable for physical security operations at our datacenters. The position will be supported by a vendor team who supports Microsoft security operations across the globe.
The successful candidate will be responsible for communications regarding security events and programs, contribute to the development of Site Specific Post Orders (SSPOs), coordination with regional security program resources, Datacenter Operations Program Managers, Datacenter Construction Project Managers (Evaluation/Assessment, Design and Project/ Program Managers), and regional leadership as well as partner with our security services vendors to ensure protection of critical information, personnel and facilities. As the sole area-based COF security representative, this position will also facilitate security compliance initiatives to include assurance reviews and audits.
In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.
Qualifications
Required Qualifications:
- 2+ years’ experience in Security Program Management or Program Management in a related field or demonstrated transferrable skills.
- Ability to commute to multiple datacenters within the same city or metropolitan area as needed.
- Ability to be on-call 24x7x365 and to travel periodically as planned or unplanned within or outside of assigned city/metropolitan area.
- English fluency.
Preferred Qualifications:
- Bachelor’s degree in a security or management related discipline, and 5+ years’ experience in security management or equivalent experience
- Proficient in the use of Microsoft Office products for business.
- Working knowledge of facility security systems to include alarms, locks, and management of access control personnel.
- Experience developing and documenting standard operating plans, procedures, and processes.
- Experience with or exposure to regulatory and industry compliance frameworks and audits.
- Experience making and influencing good decisions that impact a mission-critical, 24x7 operations environment.
- Ability to change plans, goals, actions, and priorities in response to an evolving business environment with awareness to operate as a champion for course corrections when necessary.
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
#COICareers
Responsibilities
The selected candidate will collaborate with teams across Microsoft and Supplier partners to deliver and continuously improve security operations at Microsoft datacenters. Responsibilities include, but are not limited to the following:
Datacenter Security Management:
- Oversee the implementation of physical security policies and procedures, ensuring Microsoft’s physical security vendor has the resources and information to deliver physical security services that meet Microsoft and customer requirements to protect people, information, and critical infrastructure.
- Partner with datacenter operations, security systems and other Microsoft stakeholders to ensure secure and continuous operations while maintaining a One Team, One Microsoft environment.
- Continuously improve the efficiency and maturity of the overall physical security program at Microsoft datacenters, seeking data and recommending strategies and ideas to reduce churn, optimizing resources, implement creative solutions to problems, scale, automate and simplify process whenever possible.
- Demonstrate and promote a Microsoft culture within the workplace that supports the ability to attract, develop and retain talent; deliver results through teamwork; role model our Microsoft values with a passion for diversity and inclusion.
- Partner with local vendor guard force management to drive a training objective of providing enhanced industry leading and ‘certified’ dedicated Datacenter Security Protection Professionals (ex: Corporate/ASIS/DCPRO certifications).
Datacenter Security Leadership:
- Function as a physical security subject matter expert who can operate on their own and represent the overall (multi-disciplinary) regional physical security team.
- Partner and collaborate effectively with regional peers, leaders and stakeholders, focused on maintaining a One Team, One Microsoft environment.
- As the area COF security representative, ensure the operations team and all related security vendors successfully represent Microsoft during internal, external and customer audits. This may include representing other COF peer teams like Environmental Health and Safety.
- Provide a holistic security program (end-to-end) approach to oversight, providing integrated support to regional evaluation, design, project management and operational leadership resources from conception to decommissioning.
- Facilitate and support field site visits to assess the physical security posture and site safety; collaborate with peer colleagues at other datacenters to review, assess and share “best practices;” document issues identified during those visits requiring improvement; and follow through on recommendations/actions to resolution.
- Receive escalations/notifications of physical security and business impacting events and appropriately triage, ensure that regional leadership is kept informed through regular communication as appropriate and that the necessary personnel for managing an incident respond effectively.
- Direct, in-person subject matter expert engagements with security integrators supporting the physical security system maintenance and trouble shooting.
- Embody Microsoft’s culture and values.
Insider Threat:
- Provide localized expertise to recognize key indicators of an insider threat.
- Facilitate analysis with regional and program-level resources of the local environment to identify specific threat profiles and actors.
- Provides an independent (human) two-factor authentication and authorization for all activity on site (Factor 1 = Datacenter Management Factor 2= DSOM).
- Promote an environment of awareness and continuous learning to mitigate insider threat, promoting empowerment of the work force to be force multipliers in an “all’ organization holistic mitigation strategy.
- Focus policies, procedures, and training to continually enhance Microsoft’s prevention, deterrence, and advanced detection capability to create a program “differentiator” from our competitors.