Third Party Risk Management Specialist - Remote

CSAA Insurance Group (CSAA IG), a AAA insurer, is one of the top personal lines’ property and casualty insurance groups in the U.S. Our employees proudly live our core beliefs and fulfill our enduring purpose to help members prevent, prepare for, and recover from life's uncertainties. We are committed to progress over perfection, fostering innovation and adaptability each day. At CSAA IG, we hire good people for a brighter tomorrow. We are actively hiring for a Third Party Risk Management Specialist. Join us and support CSAA IG in achieving our goals.

The Third Party Risk Management Specialist is responsible for assessing risks associated with our suppliers and evaluating the effectiveness of their controls to mitigate those risks within our tolerance levels. The specialist will perform evaluations using established processes and criteria, aiming to reduce the third-party vendor risk portfolio, improve risk management, and achieve better risk outcomes for the enterprise.

1. Risk Assessment : Conduct comprehensive risk assessments of third-party relationships to identify and evaluate potential risks across multiple domains.
2. Due Diligence : Perform due diligence on third-party suppliers to ensure compliance with organizational standards and regulatory requirements.
3. Risk Mitigation : Develop and implement strategies and controls to minimize the organization's exposure to third-party risks.
4. Contract Review : Collaborate with Legal and Procurement teams to include appropriate risk mitigation provisions in contracts.
5. Reporting and Communication : Prepare reports on risk management activities and communicate findings and strategies effectively to stakeholders.
6. Regulatory Compliance : Stay informed on relevant laws and industry best practices, ensuring compliance and addressing updates proactively.
7. Training and Awareness : Develop training programs to promote understanding of risk policies and foster a culture of risk awareness.
8. Support senior leadership in adopting a rigorous risk posture and managing the third-party vendor risk portfolio.

• 3+ years of experience in Third Party Risk Management or related fields.
• Bachelor’s degree or equivalent in related areas.
• Ability to work independently and in teams, with strong communication and relationship-building skills.
• Organizational skills to handle multiple assessments simultaneously.
• Knowledge of governance, policies, and legal requirements related to third-party risk management.

• Experience or education in information security, cybersecurity, IT architecture, or related risk domains.
• Knowledge of procurement functions.
• Experience in the property casualty insurance industry.
• Familiarity with platforms like Coupa Risk Assess, Archer, or ServiceNow.
• Active participation in fostering company culture and supporting diversity and inclusion initiatives.
• Willingness to travel as needed and a strong ownership mindset.

At CSAA IG, we are dedicated to protecting our community and the environment, committed to inclusion, and driven by purpose and innovation. We offer a comprehensive benefits package, including performance bonuses, 401(k) matching, and more.