Third Party Risk Management Specialist - Remote

CSAA Insurance Group (CSAA IG), a AAA insurer, is one of the top personal lines’ property and casualty insurance groups in the U.S. Our employees proudly live our core beliefs and fulfill our enduring purpose to help members prevent, prepare for, and recover from life's uncertainties. We are committed to progress over perfection, recognizing every day as an opportunity to innovate and adapt. At CSAA IG, we hire good people for a brighter tomorrow. We are actively hiring for a Third Party Risk Management Specialist. Join us and support CSAA IG in achieving our goals.

The Third Party Risk Management Specialist is responsible for assessing the risks associated with our suppliers and evaluating the effectiveness of their controls to mitigate those risks to CSAA's tolerance levels. The specialist will perform evaluations using established processes and criteria, aiming to reduce the third-party vendor risk portfolio, improve risk management, and achieve better risk outcomes for the enterprise.

1. Risk Assessment : Conduct comprehensive risk assessments of third-party relationships to identify and evaluate potential risks across multiple risk domains.
2. Due Diligence : Perform due diligence on third-party suppliers to ensure they meet organizational standards and regulatory requirements.
3. Risk Mitigation : Develop and implement risk mitigation strategies and controls to minimize exposure to third-party risks.
4. Contract Review : Collaborate with Legal and Procurement teams to include appropriate risk mitigation provisions in contracts.
5. Reporting and Communication : Prepare reports on risk management activities and communicate findings and strategies effectively to stakeholders.
6. Regulatory Compliance : Stay updated on relevant laws and regulations, ensuring organizational compliance and addressing updates proactively.
7. Training and Awareness : Develop and deliver training programs to promote risk awareness and accountability across the organization.
8. Support senior executives in adopting a rigorous risk posture and driving third-party vendor risk management and portfolio reduction initiatives.

• 3+ years of experience in Third Party Risk Management or related functions.
• Bachelor’s degree or equivalent in related areas.
• Ability to work independently and within a team, demonstrating strong communication and relationship-building skills.
• Organizational skills to manage multiple assessments simultaneously.
• Knowledge of governance, policies, and structures related to third-party risk management.
• Understanding of legal and compliance requirements relevant to the role.

• Experience or education in information security, cybersecurity, IT architecture, business continuity, legal, or enterprise risk management.
• Procurement experience.
• Industry experience in property casualty insurance.
• Familiarity with platforms like Coupa Risk Assess, Archer, ServiceNow, or similar.
• Active participation in fostering company culture, mentoring, volunteering, and cross-functional projects.
• Willingness to travel as needed for role requirements.

At CSAA IG, we are dedicated to protecting our community and planet, striving for inclusion, belonging, and innovation. We offer a comprehensive compensation package, performance bonus, 401(k) match, and more.