Principal Product Manager- CISO | Microsoft Careers

Overview

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world.

Azure Security’s Key Management team is looking for a Principal Product Manager to serve as the General Contractor (GC) for Microsoft’s Post-Quantum Cryptography transition — a company-wide, multi-year program spanning every product family and platform service. Microsoft is accelerating the adoption of quantum-safe cryptography across encryption in transit (TLS), PKI (code signing, secure boot, authentication certificates), and encryption at rest, aligned to the CNSA 2.0 timeline.

You will partner with the PQ Principal PM Architect and the Principal Group PM Manager to turn strategy into disciplined, milestone-driven execution. You will own the PQ pillar as a program: setting ROBs, establishing KPIs and scorecards, defining work items, managing cross-divisional reporting, and ensuring accountability across engineering organizations adopting quantum-safe cryptography. You will leverage existing programs such as SFI and SDL, working closely with Azure Security Ops, to drive PQ prerequisites into teams’ roadmaps and ensure company-wide progress. Your job is to make this program land with clear milestones, regular SLT reviews, and every team knowing what they owe and when.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Responsibilities

• Serve as the General Contractor and PQ Pillar owner for Microsoft’s post-quantum cryptography transition, driving end-to-end program execution across all product families and divisions.
• Partner with the PQ Principal PM Architect and the Principal Group PM Manager to translate technical strategy into program roadmaps, work item definitions, dependency maps, and sequenced execution plans across three priority scenarios: encryption in transit (TLS), PKI (code signing, secure boot, authentication certificates), and encryption at rest.
• Establish and run the PQ rhythm of business (ROBs), including milestone tracking, executive status reporting, scorecards, and regular business reviews with SLT members, expanding the review cadence as additional scenarios come online.
• Define KPIs and accountability frameworks that make PQ adoption measurable across dozens of engineering teams, and hold divisions accountable to committed timelines.
• Work closely with Azure Security Ops to drive PQ prerequisite adoption through existing compliance and security programs, and coordinate with service teams to sequence deployments so dependencies are resolved before teams are asked to move.
• Represent the PQ program in business forums, leadership reviews, and cross-company governance meetings, serving as the single point of contact for program status and escalations.
• Communicate milestone wins to the field and to customers, supporting RFPs, governance requirements, and compliance readiness.

Qualifications

Required/minimum qualifications

• Bachelor's Degree AND 8+ years experience in product/service/program management or software development
• OR equivalent experience.

Other Requirements: The ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

Additional or preferred qualifications

• Bachelor's Degree AND 12+ years experience in product/service/program management or software development
• OR equivalent experience.
• 4+ years experience taking a product, feature, or experience to market (e.g., design, addressing product market fit, and launch, internal tool/framework).
• 6+ years experience improving product metrics for a product, feature, or experience in a market (e.g., growing customer base, expanding customer usage, avoiding customer churn).
• 6+ years experience disrupting a market for a product, feature, or experience (e.g., competitive disruption, taking the place of an established competing product).
• Proven experience running large-scale, cross-organizational programs as a general contractor or program lead, including setting up ROBs, KPIs, scorecards, and executive reporting for initiatives spanning multiple divisions.
• Familiarity with post-quantum cryptography concepts, NIST PQC standards (ML-KEM, ML-DSA), CNSA 2.0 timelines, or cryptographic migration programs.
• Experience working within or alongside governance bodies (such as a crypto board, security standards council, or compliance program like SFI or SDL) to drive enterprise-wide adoption.
• Background in Azure, cloud platform services, or Microsoft’s internal security and compliance ecosystem.
• Experience communicating competitive positioning and technical roadmaps to customers, field teams, or in response to RFPs and audit requests.

#Security #PQC #PostQuantumCryptography #CryptoAgility #QuantumSafe #ProgramManagement

Product Management IC5 - The typical base pay range for this role across the U.S. is USD $139,900 - $274,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $188,000 - $304,200 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:
https://careers.microsoft.com/us/en/us-corporate-pay

This position will be open for a minimum of 5 days, with applications accepted on an ongoing basis until the position is filled.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance with religious accommodations and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.

For more details click Job Post.