About The Position

NT’s Chief Procurement Officer’s team for Third Party Management (TPMO) is responsible for design and execution of the Third Party risk management program in line with regulatory expectations, NT’s Third Party Risk Management Policy, and Third Party Practice Standard. We are in a phase of growth and transformation. While you’ll be hired for a specific role, your role may evolve as we scale – expanding into areas aligned with your strengths and program needs. We’re looking for partners who thrive in change, think like problem solvers, and bring skills in project management, process management, and change leadership. If you’re excited to grow with us and pivot when needed, you may be a fit for this role. This role will report to one of several team managers within the TPMO, which is the 1st line of defense for third party risk. Primarily, you will work closely with the TPMO team manager to assist in strategy and design decisions, business as usual process improvement and/or the direct execution or indirect execution (directing others on how to execute) of the program as per the Third Party Standard. The role holder will be an expert in Third Party Risk Management and would be well versed in execution aspect of the program related to the entire lifecycle of third party engagements. This is a central role interacting with business units, 2nd line of defense, other team leads and offshore quality control team.

Requirements

  • 5+ years of related work experience with clear understanding of and experience in the Three Lines of Defense model
  • A thorough understanding of third-party (i.e., vendor, supplier, etc.) risk management, with prior experience in designing program solutions, risk scoring and aggregation methodologies and designing committee reporting
  • Understanding of global risk regulatory requirements with emphasis on US (OCC Bulletins, FFIEC, FRB, FDIC) or UK (PRA, FCA)
  • A TPRM related certification such as CTPRP or CTPRA
  • Proven track record managing vendor risk and/or leading large-scale risk or compliance initiatives.
  • Expertise in third-party risk frameworks and regulatory requirements.
  • Experience with tools such as Coupa, ServiceNow, Supply Wisdom, BitSight or similar.
  • Strong organizational skills.
  • Ability to influence activities across multiple teams and across business units
  • Outstanding writing, communication, and presentation skills
  • Sound analytical and problem-solving skills
  • Strong networking ability to develop internal and external networks based on integrity and credibility through active listening and understanding
  • Applicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. Northern Trust will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa).

Responsibilities

  • Responsible for tracking program throughout the various third party management life cycle elements (Planning, IRQs, DDQs, Ongoing Monitoring, Contracting and Termination), periodic inventory review, open issues and open risk acceptance review and tracking of all internal projects
  • Primary area of focus will be in the Onboarding and Due Diligence activities and on the execution of both initial and re-assessments of risks related to third parties.
  • Responsible for designing and periodically reviewing program related artifacts, risk methodologies, service categories and associated risk profile, reporting thresholds etc.
  • Accountable for assisting and guiding business partners through various stages of third party lifecycle to ensure quality program execution
  • Identify gaps and drive continuous improvement across the TPRM lifecycle (e.g., onboarding, due diligence, monitoring, offboarding)
  • Suggest and participate in improvement projects that automate or streamline repetitive tasks (e.g., through Coupa tools or workflow automation platforms).
  • Maintain strong documentation and evidence of controls, risk decisions, and remediations.
  • Track milestones, dependencies, and deliverables across projects and/or an assigned portfolio of relationships
  • Engage with risk domain SME’s, vendors and vendor relationship managers
  • Serve as the point of contact for program performance updates, risk issue escalations, and regulatory reviews
  • Responsible for engaging with and assisting 2LOD partners by providing business users' input for 2LOD deliverables
  • Use dashboards and key risk indicators (KRIs) to monitor third-party risk posture and performance and determine areas of focus
  • Report progress to the board, risk committees, and regulators as needed
  • Participate in cross-functional teams associated with Third Party program requirements in areas such as design & strategy, enterprise critical vendor management, and other SMEs related subjects.

Benefits

  • flexible and collaborative work culture
  • strong history of financial strength and stability
  • Movement within the organization is encouraged
  • senior leaders are accessible
  • company committed to an inclusive workplace
  • assisting the communities we serve
  • Philanthropy is deeply rooted in Northern Trust’s history and is an essential element of our culture.
  • Employees around the world give their time and talent to work for the greater good of their communities.
  • Reasonable Accommodation
  • Northern Trust is committed to working with and providing adjustments to individuals with health conditions and disabilities.
  • work-life balance
  • career mobility
  • unique opportunities
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service