Security Governance and Controls Sr. Mgr.
AZ
Jun 04, 2026
Information Technology
Job Description
CSAA Insurance Group (CSAA IG), a AAA insurer, is one of the leading personal lines property and casualty insurance groups in the United States. Here, every employee shapes our mission. We build innovative, human-centered solutions that help AAA members prevent, prepare for, and recover from life's uncertainties. You will join a collaborative, inclusive culture where your strengths have room to grow and your ideas can drive real impact. Step into a role where you can contribute to our shared success through meaningful work.
We are actively hiring for a Security Governance and Controls Sr. Manager - Remote
You will lead the strategy and execution of security governance and compliance programs that protect systems and data while supporting business goals.
This role helps shape the company's security strategy, strengthens compliance, and ensures risks are understood and managed effectively across the organization.
Your Role:
• Set direction for governance, control frameworks, and compliance programs
• Manage a team (~9) across controls assurance, GRC platform, and audit support
• Partner with Internal Audit, IT, Security, Risk, Legal, and business leaders
• Advise on risk, controls, and regulatory requirements
• Ensure controls are effective, measurable, and audit-ready
• Oversee GRC tools to track risks, issues, and remediation
• Drive continuous improvement aligned to industry standards (NIST, ISO, CIS)
Your Work:
• Lead the governance and compliance programs
• Lead multiple teams delivering controls, standards, and audit support
• Partner with stakeholders, auditors, and vendors
• Assess control effectiveness and overall security posture
• Provide clear recommendations to reduce risk and improve compliance
• Maintain security standards and adapt to regulatory changes
• Use metrics and reporting to drive decisions and performance
• Ensure readiness for audits and regulatory reviews
Required Experience, Education and Skills
• 10+ years in IT, security, or risk/compliance
• 5+ years people leadership
• Bachelor's degree in Computer Science, Engineering, Business, or related field
• Knowledge of security control frameworks (e.g., NIST, ISO, CIS), regulatory requirements, and audit practices
• Familiar with GRC platforms (Archer) and industry best practices for risk and compliance management.
• Experience in large, matrixed organizations
• Demonstrated ability to adjust focus to meet changing priorities, alteration in strategic directions and shifting customer needs
• Ability to lead executive-level internal and external relationships, including auditors and regulators
What would make us excited about you?
• Creates a collaborative, inclusive and psychologically safe environment, demonstrating authenticity and fostering trust to inspire and empower team members and colleagues
• Actively shapes our company culture through words and actions (e.g., supporting employee resource groups, mentoring employees, volunteering, joining cross-functional projects, encouraging team member involvement in these activities)
• Champions our cultural norms (e.g., willing to have cameras when it matters: interviewing candidates, building relationships with team members, etc.)
• Translates our enterprise strategy and priorities for their team members to connect to the bigger picture
• Demonstrates a company enterprise mentality, thinking beyond boundaries of their own area
• Travels as needed for role, including enterprise meetings, divisional / team meetings, and other in-person meetings
• Fulfills business needs, which may include investing extra time, helping other teams, etc
Please note we are hiring for this role remote anywhere in the United States with the following exceptions: Hawaii and Alaska.
Why Choose a Career at CSAA IG?
At CSAA IG, we are a mission-driven organization proudly committed to empowering our members, our employees, and our communities to thrive.
Recognition: We offer a total compensation package, annual bonus eligibility for most roles, 401(k) with a company match, and so much more! Read more about what we offer and what it is like to be a part of our dynamic team at https://careers.csaainsurance.aaa.com/us/en/benefits.
Career Growth: We believe in growth for everyone. Here at CSAA IG, leaders and mentors partner with employees to align interests, unlock development opportunities, and support longterm success.
Flexible Workplace: We embrace a remote-first culture through our Flexible Workplace. Most employees hold Home-Flex roles, working primarily from home, often with the flexibility to work from various locations including CSAA offices. Our flexible workplace empowers you to balance remote work with intentional inperson moments that deepen connection and collaboration.
Inclusion and Belonging: An inclusive and welcoming workplace is the cornerstone of our success. By fostering an environment where people feel valued and heard, we deepen our ability to understand and meet the unique needs of our members. This strengthens innovation and enhances our products and services, giving us a competitive edge in the market.
Sustainability: As climate change leads to more frequent and severe weather events, we are taking bold action to build more resilient communities and reduce our environmental impact. Submit your application to be considered. We communicate via email, so check your inbox and/or your spam folder to ensure you don't miss important updates from us.
CSAA is committed to providing reasonable accommodations to qualified applicants and employees with disabilities or other limitations. If you would like to request an accommodation to participate in the job application or interview process, please contact [email protected]
If you apply and are selected to continue in the recruiting process, we will schedule a preliminary call with you to discuss the role and will disclose during that call the available salary/hourly rate range based on your location. Factors used to determine the actual salary offered may include location, experience, or education.
CSAA does not provide visa sponsorship for this role. Applicants must have authorization to work indefinitely in the US. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.).
CSAA Insurance Group is an equal opportunity employer.
#LI-SB1
We are actively hiring for a Security Governance and Controls Sr. Manager - Remote
You will lead the strategy and execution of security governance and compliance programs that protect systems and data while supporting business goals.
This role helps shape the company's security strategy, strengthens compliance, and ensures risks are understood and managed effectively across the organization.
Your Role:
• Set direction for governance, control frameworks, and compliance programs
• Manage a team (~9) across controls assurance, GRC platform, and audit support
• Partner with Internal Audit, IT, Security, Risk, Legal, and business leaders
• Advise on risk, controls, and regulatory requirements
• Ensure controls are effective, measurable, and audit-ready
• Oversee GRC tools to track risks, issues, and remediation
• Drive continuous improvement aligned to industry standards (NIST, ISO, CIS)
Your Work:
• Lead the governance and compliance programs
• Lead multiple teams delivering controls, standards, and audit support
• Partner with stakeholders, auditors, and vendors
• Assess control effectiveness and overall security posture
• Provide clear recommendations to reduce risk and improve compliance
• Maintain security standards and adapt to regulatory changes
• Use metrics and reporting to drive decisions and performance
• Ensure readiness for audits and regulatory reviews
Required Experience, Education and Skills
• 10+ years in IT, security, or risk/compliance
• 5+ years people leadership
• Bachelor's degree in Computer Science, Engineering, Business, or related field
• Knowledge of security control frameworks (e.g., NIST, ISO, CIS), regulatory requirements, and audit practices
• Familiar with GRC platforms (Archer) and industry best practices for risk and compliance management.
• Experience in large, matrixed organizations
• Demonstrated ability to adjust focus to meet changing priorities, alteration in strategic directions and shifting customer needs
• Ability to lead executive-level internal and external relationships, including auditors and regulators
What would make us excited about you?
• Creates a collaborative, inclusive and psychologically safe environment, demonstrating authenticity and fostering trust to inspire and empower team members and colleagues
• Actively shapes our company culture through words and actions (e.g., supporting employee resource groups, mentoring employees, volunteering, joining cross-functional projects, encouraging team member involvement in these activities)
• Champions our cultural norms (e.g., willing to have cameras when it matters: interviewing candidates, building relationships with team members, etc.)
• Translates our enterprise strategy and priorities for their team members to connect to the bigger picture
• Demonstrates a company enterprise mentality, thinking beyond boundaries of their own area
• Travels as needed for role, including enterprise meetings, divisional / team meetings, and other in-person meetings
• Fulfills business needs, which may include investing extra time, helping other teams, etc
Please note we are hiring for this role remote anywhere in the United States with the following exceptions: Hawaii and Alaska.
Why Choose a Career at CSAA IG?
At CSAA IG, we are a mission-driven organization proudly committed to empowering our members, our employees, and our communities to thrive.
Recognition: We offer a total compensation package, annual bonus eligibility for most roles, 401(k) with a company match, and so much more! Read more about what we offer and what it is like to be a part of our dynamic team at https://careers.csaainsurance.aaa.com/us/en/benefits.
Career Growth: We believe in growth for everyone. Here at CSAA IG, leaders and mentors partner with employees to align interests, unlock development opportunities, and support longterm success.
Flexible Workplace: We embrace a remote-first culture through our Flexible Workplace. Most employees hold Home-Flex roles, working primarily from home, often with the flexibility to work from various locations including CSAA offices. Our flexible workplace empowers you to balance remote work with intentional inperson moments that deepen connection and collaboration.
Inclusion and Belonging: An inclusive and welcoming workplace is the cornerstone of our success. By fostering an environment where people feel valued and heard, we deepen our ability to understand and meet the unique needs of our members. This strengthens innovation and enhances our products and services, giving us a competitive edge in the market.
Sustainability: As climate change leads to more frequent and severe weather events, we are taking bold action to build more resilient communities and reduce our environmental impact. Submit your application to be considered. We communicate via email, so check your inbox and/or your spam folder to ensure you don't miss important updates from us.
CSAA is committed to providing reasonable accommodations to qualified applicants and employees with disabilities or other limitations. If you would like to request an accommodation to participate in the job application or interview process, please contact [email protected]
If you apply and are selected to continue in the recruiting process, we will schedule a preliminary call with you to discuss the role and will disclose during that call the available salary/hourly rate range based on your location. Factors used to determine the actual salary offered may include location, experience, or education.
CSAA does not provide visa sponsorship for this role. Applicants must have authorization to work indefinitely in the US. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.).
CSAA Insurance Group is an equal opportunity employer.
#LI-SB1
CSAA Insurance Group (CSAA IG), a AAA insurer, is one of the leading personal lines property and casualty insurance groups in the United States. Here, every employee shapes our mission. We build innovative, human-centered solutions that help AAA members prevent, prepare for, and recover from life's uncertainties. You will join a collaborative, inclusive culture where your strengths have room to grow and your ideas can drive real impact. Step into a role where you can contribute to our shared success through meaningful work.
We are actively hiring for a Security Governance and Controls Sr. Manager - Remote
You will lead the strategy and execution of security governance and compliance programs that protect systems and data while supporting business goals.
This role helps shape the company's security strategy, strengthens compliance, and ensures risks are understood and managed effectively across the organization.
Your Role:
• Set direction for governance, control frameworks, and compliance programs
• Manage a team (~9) across controls assurance, GRC platform, and audit support
• Partner with Internal Audit, IT, Security, Risk, Legal, and business leaders
• Advise on risk, controls, and regulatory requirements
• Ensure controls are effective, measurable, and audit-ready
• Oversee GRC tools to track risks, issues, and remediation
• Drive continuous improvement aligned to industry standards (NIST, ISO, CIS)
Your Work:
• Lead the governance and compliance programs
• Lead multiple teams delivering controls, standards, and audit support
• Partner with stakeholders, auditors, and vendors
• Assess control effectiveness and overall security posture
• Provide clear recommendations to reduce risk and improve compliance
• Maintain security standards and adapt to regulatory changes
• Use metrics and reporting to drive decisions and performance
• Ensure readiness for audits and regulatory reviews
Required Experience, Education and Skills
• 10+ years in IT, security, or risk/compliance
• 5+ years people leadership
• Bachelor's degree in Computer Science, Engineering, Business, or related field
• Knowledge of security control frameworks (e.g., NIST, ISO, CIS), regulatory requirements, and audit practices
• Familiar with GRC platforms (Archer) and industry best practices for risk and compliance management.
• Experience in large, matrixed organizations
• Demonstrated ability to adjust focus to meet changing priorities, alteration in strategic directions and shifting customer needs
• Ability to lead executive-level internal and external relationships, including auditors and regulators
What would make us excited about you?
• Creates a collaborative, inclusive and psychologically safe environment, demonstrating authenticity and fostering trust to inspire and empower team members and colleagues
• Actively shapes our company culture through words and actions (e.g., supporting employee resource groups, mentoring employees, volunteering, joining cross-functional projects, encouraging team member involvement in these activities)
• Champions our cultural norms (e.g., willing to have cameras when it matters: interviewing candidates, building relationships with team members, etc.)
• Translates our enterprise strategy and priorities for their team members to connect to the bigger picture
• Demonstrates a company enterprise mentality, thinking beyond boundaries of their own area
• Travels as needed for role, including enterprise meetings, divisional / team meetings, and other in-person meetings
• Fulfills business needs, which may include investing extra time, helping other teams, etc
Please note we are hiring for this role remote anywhere in the United States with the following exceptions: Hawaii and Alaska.
Why Choose a Career at CSAA IG?
At CSAA IG, we are a mission-driven organization proudly committed to empowering our members, our employees, and our communities to thrive.
Recognition: We offer a total compensation package, annual bonus eligibility for most roles, 401(k) with a company match, and so much more! Read more about what we offer and what it is like to be a part of our dynamic team at https://careers.csaainsurance.aaa.com/us/en/benefits.
Career Growth: We believe in growth for everyone. Here at CSAA IG, leaders and mentors partner with employees to align interests, unlock development opportunities, and support longterm success.
Flexible Workplace: We embrace a remote-first culture through our Flexible Workplace. Most employees hold Home-Flex roles, working primarily from home, often with the flexibility to work from various locations including CSAA offices. Our flexible workplace empowers you to balance remote work with intentional inperson moments that deepen connection and collaboration.
Inclusion and Belonging: An inclusive and welcoming workplace is the cornerstone of our success. By fostering an environment where people feel valued and heard, we deepen our ability to understand and meet the unique needs of our members. This strengthens innovation and enhances our products and services, giving us a competitive edge in the market.
Sustainability: As climate change leads to more frequent and severe weather events, we are taking bold action to build more resilient communities and reduce our environmental impact. Submit your application to be considered. We communicate via email, so check your inbox and/or your spam folder to ensure you don't miss important updates from us.
CSAA is committed to providing reasonable accommodations to qualified applicants and employees with disabilities or other limitations. If you would like to request an accommodation to participate in the job application or interview process, please contact [email protected]
If you apply and are selected to continue in the recruiting process, we will schedule a preliminary call with you to discuss the role and will disclose during that call the available salary/hourly rate range based on your location. Factors used to determine the actual salary offered may include location, experience, or education.
CSAA does not provide visa sponsorship for this role. Applicants must have authorization to work indefinitely in the US. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.).
CSAA Insurance Group is an equal opportunity employer.
#LI-SB1
We are actively hiring for a Security Governance and Controls Sr. Manager - Remote
You will lead the strategy and execution of security governance and compliance programs that protect systems and data while supporting business goals.
This role helps shape the company's security strategy, strengthens compliance, and ensures risks are understood and managed effectively across the organization.
Your Role:
• Set direction for governance, control frameworks, and compliance programs
• Manage a team (~9) across controls assurance, GRC platform, and audit support
• Partner with Internal Audit, IT, Security, Risk, Legal, and business leaders
• Advise on risk, controls, and regulatory requirements
• Ensure controls are effective, measurable, and audit-ready
• Oversee GRC tools to track risks, issues, and remediation
• Drive continuous improvement aligned to industry standards (NIST, ISO, CIS)
Your Work:
• Lead the governance and compliance programs
• Lead multiple teams delivering controls, standards, and audit support
• Partner with stakeholders, auditors, and vendors
• Assess control effectiveness and overall security posture
• Provide clear recommendations to reduce risk and improve compliance
• Maintain security standards and adapt to regulatory changes
• Use metrics and reporting to drive decisions and performance
• Ensure readiness for audits and regulatory reviews
Required Experience, Education and Skills
• 10+ years in IT, security, or risk/compliance
• 5+ years people leadership
• Bachelor's degree in Computer Science, Engineering, Business, or related field
• Knowledge of security control frameworks (e.g., NIST, ISO, CIS), regulatory requirements, and audit practices
• Familiar with GRC platforms (Archer) and industry best practices for risk and compliance management.
• Experience in large, matrixed organizations
• Demonstrated ability to adjust focus to meet changing priorities, alteration in strategic directions and shifting customer needs
• Ability to lead executive-level internal and external relationships, including auditors and regulators
What would make us excited about you?
• Creates a collaborative, inclusive and psychologically safe environment, demonstrating authenticity and fostering trust to inspire and empower team members and colleagues
• Actively shapes our company culture through words and actions (e.g., supporting employee resource groups, mentoring employees, volunteering, joining cross-functional projects, encouraging team member involvement in these activities)
• Champions our cultural norms (e.g., willing to have cameras when it matters: interviewing candidates, building relationships with team members, etc.)
• Translates our enterprise strategy and priorities for their team members to connect to the bigger picture
• Demonstrates a company enterprise mentality, thinking beyond boundaries of their own area
• Travels as needed for role, including enterprise meetings, divisional / team meetings, and other in-person meetings
• Fulfills business needs, which may include investing extra time, helping other teams, etc
Please note we are hiring for this role remote anywhere in the United States with the following exceptions: Hawaii and Alaska.
Why Choose a Career at CSAA IG?
At CSAA IG, we are a mission-driven organization proudly committed to empowering our members, our employees, and our communities to thrive.
Recognition: We offer a total compensation package, annual bonus eligibility for most roles, 401(k) with a company match, and so much more! Read more about what we offer and what it is like to be a part of our dynamic team at https://careers.csaainsurance.aaa.com/us/en/benefits.
Career Growth: We believe in growth for everyone. Here at CSAA IG, leaders and mentors partner with employees to align interests, unlock development opportunities, and support longterm success.
Flexible Workplace: We embrace a remote-first culture through our Flexible Workplace. Most employees hold Home-Flex roles, working primarily from home, often with the flexibility to work from various locations including CSAA offices. Our flexible workplace empowers you to balance remote work with intentional inperson moments that deepen connection and collaboration.
Inclusion and Belonging: An inclusive and welcoming workplace is the cornerstone of our success. By fostering an environment where people feel valued and heard, we deepen our ability to understand and meet the unique needs of our members. This strengthens innovation and enhances our products and services, giving us a competitive edge in the market.
Sustainability: As climate change leads to more frequent and severe weather events, we are taking bold action to build more resilient communities and reduce our environmental impact. Submit your application to be considered. We communicate via email, so check your inbox and/or your spam folder to ensure you don't miss important updates from us.
CSAA is committed to providing reasonable accommodations to qualified applicants and employees with disabilities or other limitations. If you would like to request an accommodation to participate in the job application or interview process, please contact [email protected]
If you apply and are selected to continue in the recruiting process, we will schedule a preliminary call with you to discuss the role and will disclose during that call the available salary/hourly rate range based on your location. Factors used to determine the actual salary offered may include location, experience, or education.
CSAA does not provide visa sponsorship for this role. Applicants must have authorization to work indefinitely in the US. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.).
CSAA Insurance Group is an equal opportunity employer.
#LI-SB1
About CSAA Insurance Group
Why we're forever forward -- At CSAA IG, one thing will always endure: our commitment to excellence in everything we do for our members, employees and communities. As insurance industry leaders, we know things can change in an instant. It’s why we’re here.
We’re not afraid of change. We welcome it and use it to advance the cause. For employees, our cause is to become ever more inclusive and supportive of their goals and contributions. For our AAA Members, it’s finding new ways to help them prevent, prepare for and recover from whatever comes. For our communities, it’s exploring new ways of helping them meet evolving challenges.
Whatever may happen, change becomes progress at CSAA IG.
Benefits for today and for your future -- Benefits at CSAA IG represent our commitment to protect our employees by providing for their needs today and helping them prepare for a more secure future. Our suite of benefits is designed to provide for your physical, mental, social and financial health.
Our sense of belonging keeps us together -- Belonging is the feeling of being welcomed and accepted for who you are and the qualities you bring. It’s knowing you’re heard and valued as an individual and employee.
At CSAA IG, we share a strong sense of purpose and a hunger for adventure.
Change should always be expected, but can’t always be predicted. Whatever happens, we remain true to our beliefs and clear on our purpose. We meet change head on and grow from each experience.
A promise to act -- Life is uncertain, but we are not. When our AAA Members need us, we know how to move with the speed, expertise and confidence they rely on.
Company:
Site Resources:
For Employers:
©2026 TalentAlly.
Powered by TalentAlly.