Job Description

The Manager, Third-Party Risk Management, will support a team of 4-6 Program Managers focusing on executing third-party risk management best practices for Nordstrom Credit Services Inc (NCSI). The Manager will work with Sourcing, Legal, GRC, Privacy, and the Bank Partner on all vendor engagements and foster inter-organizational relationships while managing deliverables. The Manager will ensure adherence to the Third-Party Risk Management program. This Manager will support the team in executing third-party risk and due diligence activities as well as reporting and categorization of vendors. The Manager of Third-Party Risk Management will partner with the Bank Partner to ensure contractual obligations are met. Candidates should have a strong background in effective communication, managing audits, project management, developing processes and procedures, and the methodologies to ensure compliance. This role will not only lead the team and program, but the individual may also be directly involved in day-to-day operations.

Responsibilities

• Manage and support a team of 4-6 program managers that delivers programs of high impact, risk, and complexity while building and executing integrated plans across multiple teams.
• Hire diversified, capable, and motivated talent that can deliver swiftly and predictably, adjusting to deliver solutions aligned with business needs.
• Coach, train, motivate and develop employees to achieve success, mentor team as well as peers across the wider organization
• Develop and implement a more robust third-party risk management program as part of the overall risk management strategy, which supports contractual obligations.
• Collaborate with executive leadership facilitating communications and reporting.
• Interface with various internal organizations, including those responsible for the compliance, Privacy, GRC, legal, sourcing, and operations
• Ensure requirements are well-communicated and understood while clearly defining expectations as they pertain to Nordstrom\xe2\x80\x99s contractual obligations.
• Monitor and analyze all risks associated with third parties in scope and determine the overall risk profile and health of the third parties.
• Assist business partners in understanding and articulating third-party risks, mitigation of risk along with Nordstrom\xe2\x80\x99s and Bank partner\xe2\x80\x99s risk appetites
• Escalate issues to the steering committee and/or leadership as needed
• Coordinate reviews and assessments of high-risk and critical vendor audits
• Collaborate with stakeholders in the third-party process to execute program documentation, regulatory updates, and risk-based monitoring protocols designed to reduce risk exposure
• Ensure that Business Units perform monitoring of key vendors\xe2\x80\x99 performance, billing, and other oversight
• Serve as an internal third-party security advisor and subject matter expert
• Guide and assist in the implementation of sound and effective third-party risk processes
• Ensure third-party suppliers align with internal controls, legal controls, and regulatory compliance
• Conduct and participate in various end-to-end third-party risk management reviews
• Design, build, and implement Third-Party Risk Management tools and dashboards
• Development of risk analytics and reporting related to Third-Party lifecycle (KPI/KRI and/or OKR) driving executive reporting and vendor/team performance
• Coordinate the identification, ranking, tracking, and management of vendor risks
• Coordinate the classification and tiering of vendors by risks and risk impacts
• Coordinate the gathering of vendor risk assessment data/questionnaires and prepare risk assessments for vendors as needed
• Review contracts and use risk-based decision-making to evaluate changes and make recommendations
• Maintain sourcing security addendum
• Coordinate re-assessment of critical and high-risk vendors by coordinating and gathering risk assessment data/questionnaires and documenting risk assessments
• Perform vendor audits and perform risk assessments

Qualifications

• Bachelor\xe2\x80\x99s degree in information systems, business, computer science, or a similar degree
• Masters preferred
• 5-7 years of experience with vendor management or third-party risk management
• Comprehensive knowledge of third-party lifecycle management and vendor risk management structures and methodologies, including associated regulatory and industry guidance (OCC, FFIEC et al.)

Knowledge, Skills, and Capabilities

• Strong analytical acumen with proficiency in Excel, Project Management Tools, and other MS Office suite products.
• Ability to develop and foster relationships and promote collaborations across multiple stakeholder groups
• Strong critical thinking, written, and oral communication skills
• Ability to manage multiple projects and competing priorities
• Hands-on experience in developing policies, standards, and controls
• Experiencing working in business, risk management, or other relevant control function is a plus
• Experience working across cross-functional teams and developing strong working relationships
• Facilitate successful risk management within the three lines of defense model
• Strong knowledge and experience with standard computer software, including MS Office, Sharepoint, and Teams
• Ability to work in a fast-paced environment with competing time-sensitive priorities
• Strong attention to detail to ensure that policies and standard procedures are followed
• Excellent verbal and written communication skills interacting at all levels of the organization
• Works well under pressure with tight deadlines
• At least one cybersecurity certification is a plus
• Preferably CISSP, CISM, CRISC, CTPRP

Nordstrom Payments and Loyalty for this position can only hire remote in the following States: Arizona, California, Colorado, Illinois, Nevada, Texas ,Utah, and Washington.

• If you are located in the Denver, CO area there may be some in office work required for this role, up to two times per week potentially.

We\xe2\x80\x99ve got you covered\xe2\x80\xa6

Our employees are our most important asset and that\xe2\x80\x99s reflected in our benefits. Nordstrom is proud to offer a variety of benefits to support employees and their families, including:

• Medical/Vision, Dental, Retirement and Paid Time Away
• Life Insurance and Disability
• Merchandise Discount and EAP Resources

A few more important points...

The job posting highlights the most critical responsibilities and requirements of the job. It\xe2\x80\x99s not all-inclusive. There may be additional duties, responsibilities and qualifications for this job.

Nordstrom will consider qualified applicants with criminal histories in a manner consistent with all legal requirements.

Applicants with disabilities who require assistance or accommodation should contact the nearest Nordstrom location, which can be identified at .

\xc2\xa9 2022 Nordstrom, Inc

Current Nordstrom employees: To apply, log into Workday, click the Careers button and then click Find Jobs.

Pay Range Details

The pay range(s) below are provided in compliance with state specific laws. Pay ranges may be different in other locations.

California: $90,000 - $175,000 Annually, Colorado: $90,000 - $150,000 Annually, Nevada: $90,000 - $150,000 Annually, New York: $90,000 - $175,000 Annually, Rhode Island: $90,000 - $150,000 Annually, Washington: $90,000 - $175,000 Annually

Nordstrom