Third Party Risk Management Specialist - Remote

CSAA Insurance Group (CSAA IG), a AAA insurer, is one of the top personal lines’ property and casualty insurance groups in the U.S. Our employees proudly live our core beliefs and fulfill our enduring purpose to help members prevent, prepare for, and recover from life's uncertainties, and we're proud of the culture we create together. As we commit to progress over perfection, we recognize that every day is an opportunity to be innovative and adaptable. At CSAA IG, we hire good people for a brighter tomorrow. We are actively hiring for a Third Party Risk Management Specialist. Join us and support CSAA IG in achieving our goals.

The Third Party Risk Management Specialist is responsible for assessing the risks associated with our suppliers and evaluating the effectiveness of their controls to mitigate those risks to CSAA's tolerance levels. The role involves performing evaluations using established processes and criteria, with objectives to reduce the third-party vendor risk portfolio, improve risk management, and achieve better risk outcomes for the enterprise.

1. Risk Assessment : Conduct comprehensive risk assessments of third-party relationships to identify and evaluate potential risks across multiple risk domains.
2. Due Diligence : Perform due diligence on third-party suppliers to ensure they meet the organization's standards and regulatory requirements.
3. Risk Mitigation : Develop and implement risk mitigation strategies and controls to minimize the organization's exposure to third-party risks.
4. Contract Review : Collaborate with Legal and Procurement teams to ensure appropriate risk mitigation provisions are included in contracts.
5. Reporting and Communication : Prepare and present reports on third-party risk management activities to senior management and relevant stakeholders. Communicate findings, recommendations, and risk mitigation strategies effectively to promote awareness and understanding across the organization.
6. Regulatory Compliance : Stay updated on relevant laws, regulations, and industry best practices related to third-party risk management. Ensure compliance and proactively address any changes or updates.
7. Training and Awareness : Develop and deliver training programs to educate employees on third-party risk policies, procedures, and best practices. Foster a culture of risk awareness and accountability.
8. Support efforts with senior executives to adopt a rigorous risk posture and drive third-party vendor risk management and portfolio reduction.

• 3+ years’ experience in Third Party Risk Management or related functions.
• Bachelor’s degree or equivalent in related areas.
• Self-directed with the ability to work independently and in a team.
• Strong communication skills and relationship-building abilities with internal partners.
• Organizational skills to manage multiple assessments simultaneously.
• Knowledge of and experience with third-party risk governance, policies, and organizational structures.
• Understanding of relevant legal and compliance requirements.

• Experience or education in information security, cybersecurity, IT architecture, business continuity, legal, enterprise risk management, or related domains.
• Experience with procurement functions.
• Experience in the property casualty insurance industry.
• Familiarity with platforms like Coupa Risk Assess, Archer, ServiceNow, or similar.
• Active participation in company culture initiatives, such as supporting employee resource groups, mentoring, volunteering, or cross-functional projects.
• Ability to champion our cultural norms, including collaboration and relationship-building.
• Demonstrates ownership mindset, thinking beyond their own area.
• Willingness to travel as needed for meetings and roles.
• Commitment to fulfilling business needs, including investing extra time and supporting other teams.

At CSAA IG, we’re devoted to protecting our customers, employees, communities, and the planet. We are committed to climate action, inclusion, and innovation, striving to make a positive impact in a changing world.

Recognition : We offer a total compensation package, performance bonus, 401(k) with a company match, and more!

Third Party Risk Management • Missouri, United States