Third Party Risk Management Director (Hybrid)

***At Securian, the internal job title is Risk Management Consulting Director.

Position Summary

The Third Party Risk Management (TPRM) Director is accountable for leading and transforming the enterprise TPRM program to effectively manage risk across the full third‑party lifecycle. This role serves as a central leader across the organization, ensuring third‑party risk practices are consistent, scalable, and aligned with business objectives and risk appetite.

Operating as a strategic partner to Procurement, Law & Compliance, Cybersecurity, Enterprise Technology, and business leadership, the TPRM Director enables informed decision‑making and resilient growth. Through strong governance, cross‑functional collaboration, and program excellence, this leader ensures third‑party risk management is both protective and enabling for the enterprise.

Key Responsibilities (include but are not limited to)

Strategic Leadership & Enterprise Partnership (25%)

• Define and execute an enterprise TPRM strategy aligned to risk appetite, business priorities, and the evolving external environment

• Influence senior leaders to drive consistent adoption of TPRM practices and proactive third‑party risk management across Solution Groups

• Lead cross‑functional alignment across the third‑party ecosystem, fostering strong partnerships with Procurement, Compliance, BCM, Cybersecurity, and other second‑line risk functions

• Communicate TPRM program status and risk insights to executive stakeholders, including Risk Council and Executive Leadership Team

Program Transformation & Delivery (30%)

• Transform the TPRM program operating model, governance, processes, and enabling technology

• Drive scalability and efficiency improvements across the full third‑party lifecycle

• Establish and execute a capability maturity roadmap aligned to industry best practices while managing to a defined program budget

Third Party Risk Oversight & Governance (25%)

• Provide enterprise oversight of third‑party risks across operational, cybersecurity, privacy, financial, and regulatory domains

• Ensure consistent risk tiering, due diligence, ongoing monitoring, and issue remediation practices

• Maintain audit and regulatory readiness through strong documentation and defensible risk decisions

Talent Development & Team Leadership (20%)

• Lead and develop a high‑performing TPRM team and aligned operational risk resources

• Establish clear roles, expectations, accountability, and development pathways

• Foster a culture of collaboration, continuous improvement, and shared ownership of risk

Required Qualifications

• 12+ years of experience leading Third Party Risk Management or operational risk programs in a complex enterprise environment

• Demonstrated experience designing and transforming enterprise‑wide TPRM programs and operating models

• Strong knowledge of third‑party risk domains including operational, cybersecurity, privacy, financial, and regulatory risk

• Proven ability to influence senior leaders and drive cross‑functional alignment

• Experience managing regulatory expectations, audits, and risk governance structures

Preferred Qualifications

• Experience in financial services, insurance, or other highly regulated industries

• Hands‑on experience with TPRM enabling technologies and automation tools

• Advanced degree or professional risk management certification (e.g., CRMP, CISA, CISSP)