Service Owner Data Compliance & Purview

We are looking for a Service Owner – Data Compliance \& Purview to join the M365 Service Management team at Nokia. In this role, you will be responsible for the end\-to\-end service ownership of Nokia’s Microsoft Purview\-based data compliance services, including service strategy, service governance, reliability, and continuous improvement from a platform and operations perspective. The Service Owner will enable and operate Microsoft Purview capabilities in close collaboration with Nokia’s Legal \& Compliance, Cybersecurity, and Privacy teams. While the Service Owner ensures that the services are available, well\-governed, scalable, and efficiently integrated across Microsoft 365 workloads, policy definition, compliance interpretation, risk decisions, while responsibility and accountability remain with the Security and Legal \& Compliance teams. The scope includes Microsoft Purview services such as Information Protection (Sensitivity Labels), Data Loss Prevention (DLP), Records Management \& Retention, Insider Risk Management, and Communication Compliance, as well as their technical integration across Microsoft 365 workloads (Exchange Online, SharePoint, OneDrive, Teams, Power Platform, and relevant third\-party services). This is a highly visible service management role suited for someone who thrives in a global environment, drives proactive service improvements, and focuses on operational excellence, while working in a clear RACI model where compliance and security accountability sits with the appropriate expert teams. The scope also includes enabling compliant adoption of Microsoft 365 Copilot and Copilot Studio/Agents by applying Purview controls (e.g., labeling, DLP, retention, and auditing) to AI\-assisted content and automated workflows. * *Service Ownership \& Lifecycle Management:* Own the end\-to\-end lifecycle, strategy, roadmap, and operational excellence of Microsoft Purview data compliance services. Maintain and update support models, standard operating procedures (SOPs), and governance documentation for all in\-scope compliance services. Ensure these services meet SLAs, deliver value to the business, and evolve with organizational needs. * *Data Protection \& Policy Governance:* Oversee the development, rollout, and ongoing management of Nokia’s information protection and data loss prevention policies. This includes coordinating with the Security and Legal \& Compliance teams on sensitivity label taxonomy, DLP rules, retention policies, and other compliance measures. Ensure that classification, labeling, and DLP policies consistently safeguard sensitive data across email, collaboration platforms, endpoints, and cloud services, all in accordance with Nokia’s data governance requirements. * *eDiscovery \& Records Management:* Working closely with Legal \& Compliance team to ensure smooth run of the Nokia’s eDiscovery and legal hold processes in Microsoft Purview. Ensure effective use of eDiscovery Standard and Premium for content search, preservation, and case management in support of investigations and legal proceedings. Oversee records management and data lifecycle practices by implementing retention policies and deletion workflows, making sure that business\-critical information is retained or disposed of in accordance with regulatory requirements and company policy. * *Insider Risk \& Incident Management:* Support and oversee the implementation of the Purview’s Insider Risk Management and Communication Compliance solutions to detect and address potential data leaks, insider threats, or code\-of\-conduct violations. Supporting proactive monitoring of the risky user activities or policy breaches (e.g. unauthorized sharing of confidential information). Provide support on the response for any data compliance incidents or breaches lead by Legal \& Compliance team. * *Security \& Regulatory Alignment:* Act as the primary interface to Nokia’s Security, Privacy, and Legal \& Compliance teams for all matters related to Microsoft 365 data protection. Ensure that Purview services and policies comply with internal security standards and support Nokia’s obligations under global data protection regulations (e.g. GDPR, telecommunications regulations). Coordinate readiness for audits or assessments by regulators or customers, providing evidence of controls and implementing any required improvements. * *Change Management \& Roadmap Adoption:* Drive adoption and readiness for Microsoft’s compliance roadmap changes impacting Purview and related M365 workloads. Stay ahead of new Purview features (such as advanced classification, adaptive protection, AI\-driven compliance capabilities) and evaluate their relevance to Nokia. Plan and oversee pilot deployments or feature roll\-outs, ensuring Nokia can quickly leverage improvements in the compliance suite. Align Nokia’s data protection policies and user guidance with evolving Microsoft 365 compliance features and emerging regulatory requirements. * *Collaboration \& Integration:* Collaborate with peer M365 Service Owners (Exchange, SharePoint, OneDrive, Teams, etc.), as well as Identity \& Access Management, Security Operations, Data Governance, and IT Solution Architecture teams, to deliver integrated compliance controls across services. Ensure that data protection policies are embedded into day\-to\-day IT operations and new solutions. Work closely with Microsoft and other vendors’ support and engineering teams to resolve complex issues, influence product enhancements, and represent Nokia’s requirements for enterprise compliance features. Oversee administrative access and role management for Purview (e.g. eDiscovery Managers, Compliance Admin roles), ensuring proper governance and approval for elevated privileges in the compliance portal. * *Reporting \& Continuous Improvement:* Define, track, and report on key performance indicators (KPIs) and metrics for data compliance (e.g. DLP incident rates, label adoption coverage, eDiscovery request turnaround, etc.). Review monthly compliance dashboards and service reports, ensuring data accuracy and deriving insights on how the services are performing. Use metrics and feedback to identify opportunities for service improvement, risk reduction, or user education, and drive continuous improvement initiatives (for example, tuning policies or enhancing automation). Regularly communicate the compliance service health and progress to stakeholders and Nokia senior management. * *User Awareness \& Documentation:* Ensure that end\-user and IT support documentation for Purview compliance services is clear, up\-to\-date, and easily accessible. Maintain user\-facing guidance, FAQs, and intranet pages on topics like how to classify and label information, handle DLP policy prompts, or respond to legal hold notices. Develop runbooks and training materials for IT operations and support teams to handle compliance\-related procedures (e.g. responding to DLP alerts or eDiscovery requests). Partner with Nokia’s Security Awareness and Training teams to promote a culture of compliance – helping to educate employees about data handling policies, regulatory responsibilities, and the proper use of classification and protection tools. **Must\-have:** * Bachelor’s or master’s degree in computer science, Information Systems, Cybersecurity, or a related field; relevant security/compliance certifications are an advantage (e.g., SC\-400, MS\-500, CISSP, CISM) with 10\+ years of experience in enterprise IT, security, risk, or compliance roles, including hands\-on…