American Family Insurance
Senior Third Party Risk Analyst (Hybrid)
American Family Insurance, Boston, Massachusetts, us, 02298
Overview
As a senior third-party risk analyst with American Family Insurance you will help implement and enhance the Third-Party Risk Management (TPRM) program. Conduct end-to-end third-party risk assessments, analyze control environments, and ensure agreement on organizational policies, regulatory requirements, and industry best practices. You will report to the Senior Manager, Third Party Risk Management.
Primary Accountabilities
Collaborate with teams such as Cybersecurity, Compliance, Procurement, Legal, and Business Units to perform ongoing risk assessments of third parties, focusing on operational, information security, compliance, financial, and reputational risks.
Lead routine risk assessment and management activities, including identifying, documenting, and escalating control deficiencies, recommending remediation actions, and tracking issue resolution.
Evaluate third-party control documentation (SOC reports, ISO 27001, SIG Lite/Full, questionnaires) to assess risk mitigation adequacy.
Foster collaboration with stakeholders across the enterprise.
Help develop Third-Party Risk Management (TPRM) frameworks and enhance the enterprise risk-smart culture through education.
Establish and maintain enterprise-wide reporting.
Assist with continuous improvement efforts, process automation, and documentation updates to enhance TPRM efficiency and scalability.
Contribute to regulatory reporting and audit support related to third-party oversight.
Specialized Knowledge & Skills Requirements
Demonstrated experience providing customer driven solutions, support or service.
Solid knowledge and understanding of risk management methods, standards, processes, governance models, and industry standard risk analysis approaches.
Knowledge of insurance, industry trends and adjacencies.
Demonstrated experience facilitating group discussions. Skills to influence these discussions are developing.
Strong written and verbal communication and problem-solving skills.
Demonstrated experience establishing positive relationships with stakeholders.
Demonstrated experience providing customer-driven solutions, support or service.
Demonstrated experience in managing projects to their completion.
Preferred Qualifications
Working knowledge of third-party risk regulations and guidance (e.g., OCC, FFIEC, GDPR, CCPA, NYDFS 500, HIPAA).
Knowledge of regulatory requirements and industry standards related to cybersecurity, data privacy, and compliance.
Ability to evaluate risks and assess vendor control environments.
Understanding of IT and compliance risk, control frameworks and control assessments.
Licenses
Not applicable.
Travel Requirements
Up to 10%.
Physical Requirements
Not applicable.
Additional Job Information
In this hybrid role, you will be expected to work a minimum of 10 days per month from one of these offices: Madison, WI 53783; Boston, MA 02110.
Internal candidates are encouraged to apply regardless of location and will be considered based upon the needs of the role.
Offer Conditions
Offer to selected candidate will be made contingent on the results of applicable background checks.
Offer to selected candidate is contingent on signing a non-disclosure agreement for proprietary information, trade secrets, and inventions.
Sponsorship will not be considered for this position unless specified in the posting.
Benefits & Equal Opportunity We provide benefits that support your physical, emotional, and financial wellbeing. You will have access to comprehensive medical, dental, vision and wellbeing benefits that enable you to take care of your health. We also offer a competitive 401(k) contribution, a pension plan, an annual incentive, 9 paid holidays and a paid time off program (23 days accrued annually for full-time employees). In addition, our student loan repayment program and paid-family leave are available to support our employees and their families. Interns and contingent workers are not eligible for American Family Insurance Group benefits.
We are an equal opportunity employer. It is our policy to comply with all applicable federal, state and local laws pertaining to non-discrimination, non-harassment and equal opportunity. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.
American Family Insurance is committed to the full inclusion of all qualified individuals. If a reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please email AskHR@AmFam.com to request a reasonable accommodation.
#LI-AB1
#J-18808-Ljbffr
Primary Accountabilities
Collaborate with teams such as Cybersecurity, Compliance, Procurement, Legal, and Business Units to perform ongoing risk assessments of third parties, focusing on operational, information security, compliance, financial, and reputational risks.
Lead routine risk assessment and management activities, including identifying, documenting, and escalating control deficiencies, recommending remediation actions, and tracking issue resolution.
Evaluate third-party control documentation (SOC reports, ISO 27001, SIG Lite/Full, questionnaires) to assess risk mitigation adequacy.
Foster collaboration with stakeholders across the enterprise.
Help develop Third-Party Risk Management (TPRM) frameworks and enhance the enterprise risk-smart culture through education.
Establish and maintain enterprise-wide reporting.
Assist with continuous improvement efforts, process automation, and documentation updates to enhance TPRM efficiency and scalability.
Contribute to regulatory reporting and audit support related to third-party oversight.
Specialized Knowledge & Skills Requirements
Demonstrated experience providing customer driven solutions, support or service.
Solid knowledge and understanding of risk management methods, standards, processes, governance models, and industry standard risk analysis approaches.
Knowledge of insurance, industry trends and adjacencies.
Demonstrated experience facilitating group discussions. Skills to influence these discussions are developing.
Strong written and verbal communication and problem-solving skills.
Demonstrated experience establishing positive relationships with stakeholders.
Demonstrated experience providing customer-driven solutions, support or service.
Demonstrated experience in managing projects to their completion.
Preferred Qualifications
Working knowledge of third-party risk regulations and guidance (e.g., OCC, FFIEC, GDPR, CCPA, NYDFS 500, HIPAA).
Knowledge of regulatory requirements and industry standards related to cybersecurity, data privacy, and compliance.
Ability to evaluate risks and assess vendor control environments.
Understanding of IT and compliance risk, control frameworks and control assessments.
Licenses
Not applicable.
Travel Requirements
Up to 10%.
Physical Requirements
Not applicable.
Additional Job Information
In this hybrid role, you will be expected to work a minimum of 10 days per month from one of these offices: Madison, WI 53783; Boston, MA 02110.
Internal candidates are encouraged to apply regardless of location and will be considered based upon the needs of the role.
Offer Conditions
Offer to selected candidate will be made contingent on the results of applicable background checks.
Offer to selected candidate is contingent on signing a non-disclosure agreement for proprietary information, trade secrets, and inventions.
Sponsorship will not be considered for this position unless specified in the posting.
Benefits & Equal Opportunity We provide benefits that support your physical, emotional, and financial wellbeing. You will have access to comprehensive medical, dental, vision and wellbeing benefits that enable you to take care of your health. We also offer a competitive 401(k) contribution, a pension plan, an annual incentive, 9 paid holidays and a paid time off program (23 days accrued annually for full-time employees). In addition, our student loan repayment program and paid-family leave are available to support our employees and their families. Interns and contingent workers are not eligible for American Family Insurance Group benefits.
We are an equal opportunity employer. It is our policy to comply with all applicable federal, state and local laws pertaining to non-discrimination, non-harassment and equal opportunity. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.
American Family Insurance is committed to the full inclusion of all qualified individuals. If a reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please email AskHR@AmFam.com to request a reasonable accommodation.
#LI-AB1
#J-18808-Ljbffr