Senior Program Manager - GRC - Compliance Assessments (Hybrid - Seattle) at Nordstrom

Seattle, Washington, United States

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Retail, TechnologyIndustries

Requirements

Bachelor’s or Master’s degree in a relevant field of study, or equivalent work experience
5+ years of demonstrated successful program management and delivery experience
5+ years of experience managing technically complex PCI assessments end to end with external assessors and a deep knowledge of PCI assessment processes and requirements at a Level 1 merchant, including data centers, retail locations, call centers, and cloud computing environments
Demonstrated proficiency with security and regulatory frameworks (CIS, NIST, SOX, HIPAA, PCI DSS, CCPA, etc.)
Broad and deep understanding of the retail business domain, including experience with online, phone order, and physical store sales channels
Knowledge of how regulatory requirements can be met across a diverse set of technical environments—from legacy mainframe computers to containers in the cloud
Experience building or maintaining a Common Control Framework
Strong bias for results and can operate with autonomy to address bottlenecks, provide escalation management, anticipate and make trade-offs, and encourage behavior to maximize business benefit
Highly collaborative skillsets and can build and leverage relationships with internal and external stakeholders
Excellent written and verbal communications, including presentation skills, and proven ability to effectively communicate

Responsibilities

Provide guidance and best practices to Nordstrom engineers and leadership on how to effectively meet regulatory requirements
Serve as a PCI subject matter expert and manage the annual merchant assessment
Support various regulatory and security assessments and apply both qualitative and quantitative assessment techniques and develop test approaches for compliance validation
Manage the full lifecycle of applicable risk/compliance remediation plans, including the development of detailed treatment plans, their documentation, rigorous tracking, and validation of efforts from internal stakeholders
Drive the standardization and enhancement of assessment programs and improve the Common Control Framework to increase control testing efficiency
Provide input and guidance on security policies and standards to ensure compliance with regulatory requirements
Identify and implement process improvements to enhance operational efficiency
Contribute to the strategic vision and roadmap for the Compliance Assessment Team, supporting the development of reusable, scalable solutions to enhance program efficiency and support organizational growth
Define KPIs and KRIs and continuously measure and report on the effectiveness of our control posture, driving year-over-year improvement and sustained audit success
Mentor and support the growth of other program managers within the team, fostering a culture that values individual ownership and impact

Skills

Key technologies and capabilities for this role

Program ManagementGRCCompliance AssessmentsPCIRisk ManagementSecurity AssessmentsRegulatory ComplianceRemediation PlansCommon Control FrameworkSecurity Policies

Questions & Answers

Common questions about this position

What experience is required for this Senior Program Manager role?

Candidates need a Bachelor’s or Master’s degree in a relevant field or equivalent work experience, plus 5+ years of demonstrated successful program management and delivery experience, and 5+ years managing technically complex PCI assessments end-to-end with external assessors and deep knowledge of PCI processes.

Is this position remote or hybrid?

This is a hybrid role based in Seattle.

What is the salary for this position?

This information is not specified in the job description.

What does the team culture look like at Nordstrom's GRC team?

The team fosters a culture that values individual ownership and impact, with opportunities to mentor and support the growth of other program managers, while contributing to strategic vision and scalable solutions.

What makes a strong candidate for this role?

A strong candidate is a skilled program manager passionate about security assessments, PCI expertise, continuous improvement using AI and automation, and experience leading complex compliance programs across stakeholders.

Nordstrom

Retailer offering clothing and accessories

About Nordstrom

Nordstrom is a retail company that focuses on providing a wide range of clothing, shoes, and accessories for men, women, and children. The company operates department stores and an online platform where customers can shop for various brands and styles. Nordstrom emphasizes a strong customer service experience, encouraging employees to take initiative and develop their careers within the organization. Unlike many competitors, Nordstrom fosters a culture of leadership and personal growth among its staff, which contributes to a dedicated and motivated workforce. The company's goal is to create a positive shopping experience while also being committed to environmental sustainability and community support.

Seattle, WashingtonHeadquarters

N/AYear Founded

$16MTotal Funding

N/ACompany Stage

Consumer GoodsIndustries

10,001+Employees

Benefits

Health Insurance

Dental Insurance

Life Insurance

Disability Insurance

401(k) Retirement Plan

Risks

Increased competition from online retailers like Amazon may impact Nordstrom's market share.

Economic uncertainty could reduce consumer spending on luxury items, affecting sales.

Expansion into international markets exposes Nordstrom to geopolitical and currency risks.

Differentiation

Nordstrom emphasizes employee empowerment and career growth within the company.

The company is committed to environmental sustainability and community support.

Nordstrom's experiential retail approach includes pop-up shops and exclusive collaborations.

Upsides

Nordstrom Rack is expanding with new locations in West End and Lubbock by 2025.

The Nordy Club enhances customer savings and loyalty through exclusive benefits.

Strategic collaborations, like with DXL Big + Tall, expand Nordstrom's customer base.

Land your dream remote job 3x faster with AI

Try Jobo Free