Principal Technical Program Manager, Sovereign & Regulated Cloud

** Overview*
* Security is a top priority for organizations navigating an increasingly complex landscape of digital threats, regulatory requirements, and distributed cloud environments. Microsoft Security is committed to protecting customers' most critical assets through trusted, end-to-end security solutions that operate at global scale.

As regulatory expectations evolve, customers require dependable data sovereignty and compliance guarantees across sovereign and regulated cloud environments. Microsoft Security is building the foundation to meet these needs, ensuring services can operate consistently, securely, and at scale across regions such as the EU and government cloud environments.

We are seeking a  
** Principal Technical Program Manager, Sovereign & Regulated Cloud
** to lead the strategy and execution of a unified sovereignty approach across Microsoft Security. This role sits at the intersection of  
** security, compliance, and cloud architecture** , and is responsible for aligning services, driving large-scale programs, and shaping how Microsoft Security solutions operate in highly regulated environments.

In this role, you will partner across engineering, Azure, and compliance teams to define scalable approaches that enable Microsoft Security to expand confidently into regulated markets while maintaining a trusted customer experience.

Microsoft's mission is to empower every person and every organization on the planet to achieve more. We cultivate a culture grounded in respect, integrity, accountability, and inclusion, where everyone can thrive and do their best work.

** Responsibilities*
* + Lead the development of a unified sovereignty strategy across Microsoft Security services, including data residency, isolation models, and cross-service data flows

+ Drive alignment across engineering teams to ensure consistent approaches to sovereignty and regulated cloud readiness

+ Deliver complex, cross-organizational programs supporting EU Sovereign Cloud and government cloud scenarios (e.g., FedRAMP High)

+ Develop scalable architectures, deployment patterns, and onboarding frameworks for regulated environments

+ Identify and resolve cross-service dependencies, inconsistencies, and system-level challenges

+ Partner with Azure, compliance, and senior engineering leaders to influence Microsoft's broader sovereignty and regulated cloud strategy

+ Establish repeatable models that enable services to scale efficiently across sovereign and regulated regions

+ Provide clarity and direction in ambiguous environments, balancing technical constraints with evolving regulatory requirements

+ Advocate for inclusive, accessible solutions that support a diverse global customer base

** Qualifications*
* *
* Required Qualifications:

*
* + Bachelor's Degree AND 8+ years experience in engineering, product/technical program management, data analysis, or product development

+ OR equivalent experience.

+ 6+ years of experience managing cross-functional and/or cross-team projects.

** Other Requirements:*
* Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings: 

+ Microsoft Cloud Background Check:
This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

** Additional or

Preferred Qualifications:

*
* + Bachelor's Degree AND 15+ years experience engineering, product/technical program management, data analysis, or product development

+ OR equivalent experience

+ 8+ years of experience leading large-scale, cross-organizational technical programs from strategy through execution in cloud or distributed systems environments

+ Experience designing and operating cloud platforms or service architectures, including managing cross-service dependencies and data flows (e.g., Azure, AWS, GCP, or similar)

+ Experience working in regulated or compliance-driven environments (e.g., FedRAMP, GDPR, or equivalent), including data protection, residency, privacy, and isolation requirements

+ Ability to translate regulatory or compliance…