Sensiba LLP

• Oversee and manage a diverse portfolio of tax engagements. • Lead a team of tax professionals, ensuring timely and accurate completion of tax returns. • Provide strategic tax planning advice to clients. • Cultivate and maintain strong client relationships. • Work with the partner in delivering planning opportunities and tax solutions to clients. • Play a key role in business development initiatives, identifying new opportunities for growth and expanding client base.

• Lead complex private equity fund audits including multi-tier structures, SPVs, co-investment vehicles, and management companies. • Provide technical leadership in investment company accounting, fair value measurements, and fund economics. • Oversee audit engagements from planning through completion, ensuring high-quality deliverables and regulatory compliance. • Advise clients on valuation methodologies, fund structures, and accounting implications of investment transactions. • Maintain deep knowledge of GAAP, investment company accounting, and alternative asset fund reporting. • Provide guidance on: - Fair value measurements (ASC 820) - Capital account mechanics including waterfall allocations and carried interest - Management fee and expense structures • Support the development of internal technical expertise and mentor team members on complex valuation and audit topics. • Lead strategic initiatives to grow the private equity audit practice. • Transition and manage an existing book of business while cultivating new client relationships. • Develop relationships with fund managers, institutional investors, fund administrators, legal counsel, and valuation specialists. • Identify and pursue opportunities to cross-sell services across tax and advisory practices. • Serve as a trusted advisor to General Partners, CFOs, and fund leadership teams. • Provide proactive insight into accounting developments, fund operations, and industry trends. • Strengthen the firm’s position as a trusted partner across the entire fund lifecycle. • Experience recruiting, developing, and mentoring a dedicated private equity fund audit team. • Foster a collaborative, entrepreneurial culture focused on excellence and innovation. • Support career development pathways for audit professionals interested in alternative investments.

• Builds trusted relationships and delivers a positive, guided client experience across the ISO lifecycle. • Manages onboarding, handovers, and portfolio administration with accuracy and timeliness. • Communicates clearly with clients and internal teams to align expectations and progress. • Tracks milestones, documentation, and risks to support client health and delivery outcomes. • Quickly learns ISO standards, tools, and processes to support certification engagements. • Takes ownership of assigned clients, anticipates issues, and follows through to resolution. • Lead the onboarding experience for ISO clients in the APAC region, ensuring a clear, organized, and positive start to their engagement. • Adopt an innovative mindset to continually improve and shape the Customer Success function within the ISO portfolio. • Support administrative coordination and handover activities between Customer Success and the ISO audit team to ensure seamless delivery. • Administer the ISO client portfolio, including progress tracking, certification documentation, renewals, and maintenance activities. • Conduct regular client check‑ins, monitor engagement and progress, and contribute to client health scoring and reporting. • Partner closely with the ISO audit team to support smooth portfolio operations and timely client outcomes. • Maintain accurate records, dashboards, and internal documentation related to client status and portfolio performance. • Identify risks, delays, or client concerns early and escalate appropriately to support successful outcomes.

• Assist in all aspects of the sales process (research, outbound engagement, inbound lead management, coordinating sales calls, developing and maintaining proposals, responding to RFPs, and regular follow up) • Consistently track activities in our system of record • Report on weekly, monthly, and quarterly results • Work with management to build formalized sales playbooks for product and service offerings; establish and refine sales processes alongside management. • Manage and maintain a pipeline of interested prospects and engage Sales for next steps • Develop a comprehensive understanding of solutions and services offered by our firm, along with the unique value of each practice • Successfully execute high-volume outbound prospecting campaigns via phone, email, and social media • Generate leads and build relationships by nurturing prospects through a variety of warm and cold outreach • Attend conferences to represent multiple products and service • Facilitate seamless collaboration between the marketing and sales teams. • Seek feedback and actively participate in training and development opportunities to refine skills and improve overall performance.

• Assist in all aspects of the sales process (research, outbound engagement, inbound lead management, coordinating sales calls, developing and maintaining proposals, responding to RFPs, and regular follow up) • Consistently track activities in our system of record • Report on weekly, monthly, and quarterly results • Work with management to build formalized sales playbooks for product and service offerings; establish and refine sales processes alongside management. • Manage and maintain a pipeline of interested prospects and engage Sales for next steps • Develop a comprehensive understanding of solutions and services offered by our firm, along with the unique value of each practice • Successfully execute high-volume outbound prospecting campaigns via phone, email, and social media • Generate leads and build relationships by nurturing prospects through a variety of warm and cold outreach • Attend conferences to represent multiple products and service • Facilitate seamless collaboration between the marketing and sales teams. • Seek feedback and actively participate in training and development opportunities to refine skills and improve overall performance.

• Assist in all aspects of the sales process (research, outbound engagement, inbound lead management, coordinating sales calls, developing and maintaining proposals, responding to RFPs, and regular follow up). • Consistently track activities in our system of record. • Report on weekly, monthly, and quarterly results. • Work with management to build formalized sales playbooks for product and service offerings; establish and refine sales processes alongside management. • Manage and maintain a pipeline of interested prospects and engage Sales for next steps. • Develop a comprehensive understanding of solutions and services offered by our firm, along with the unique value of each practice. • Successfully execute high-volume outbound prospecting campaigns via phone, email, and social media. • Generate leads and build relationships by nurturing prospects through a variety of warm and cold outreach. • Attend conferences to represent multiple products and service. • Facilitate seamless collaboration between the marketing and sales teams. • Seek feedback and actively participate in training and development opportunities to refine skills and improve overall performance.

• Lead ISO 27001 readiness engagements, Stage 1 / Stage 2 Certification audits, Surveillance audits, and Recertification audits in accordance with ISO/IEC 27001:2022. • Own engagement planning, scoping, timelines, client relationships, and execution across multiple concurrent ISO 27001 clients. • Audit clients on ISMS design, control selection, and implementation aligned to ISO 27001 Clauses and Annex A controls and organizational risk context. • Serve as an internal and external subject matter expert on GRC and compliance automation platforms (e.g., Drata, Vanta, Secureframe, OneTrust, or similar tools) in the context of ISO 27001. • Configure and optimize client platform environments, including: • ISO 27001 control mapping to Annex A and organizational risk register • Evidence workflows and documentation management • Automated integrations (cloud providers, ticketing systems, HRIS, code repositories, etc.) • Continuous monitoring settings aligned to ISMS objectives • Review automated control outputs and exception reporting to ensure audit defensibility. • Identify opportunities to improve automation coverage and reduce manual evidence collection. • Partner with clients to mature their ISMS operations using platform analytics and reporting. • Review, document, and test IT general controls (logical access, change management, system operations) mapped to ISO 27001 Annex A domains. • Evaluate technical and organizational controls within SaaS, cloud-native, and hybrid environments. • Assess controls over infrastructure environments (AWS, Azure, GCP), identity management, and DevOps workflows in alignment with ISO 27001 requirements. • Validate evidence sufficiency and completeness within compliance platforms to support certification conclusions. • Support risk assessment and risk treatment processes central to ISMS implementation. • Serve as primary point of contact for ISO 27001 clients, including executive-level stakeholders. • Present audit findings, risk insights, and general advisory recommendations to client leadership. • Provide general advisory to high-growth SaaS and technology clients on building scalable, certification-ready ISMS programs. • Support sales and go-to-market efforts for ISO 27001 services, including scoping and technical input on proposals. • Mentor junior analysts on ISO 27001 methodology, platform navigation, and control testing best practices. • Contribute to the refinement of ISO 27001 templates, testing programs, risk assessment frameworks, and platform playbooks. • Identify efficiencies to standardize and scale ISO 27001 engagements across the practice. • Support training initiatives to elevate internal ISO 27001 platform expertise.

• Execute ISO 27001 readiness and certification support engagements, including ISMS scoping, risk assessment review, and Annex A control evaluation. • Lead defined workstreams within ISO 27001/27701/42001 engagements under supervision of engagement leadership. • Review Statement of Applicability (SoA) documentation and evaluate control applicability and implementation. • Assess clients’ risk assessment methodologies to ensure alignment with ISO 27001 requirements. • Evaluate design and operating effectiveness of information security controls across business and IT environments. • Support clients preparing for Stage 1 and Stage 2 certification audits. • Evaluate information security policies, procedures, and governance structures to ensure alignment with ISO management system principles. • Review and document enterprise and system-level risk assessments. • Assess risk treatment plans and monitor remediation progress. • Support internal audit programs aligned to ISO 27001 requirements. • Identify opportunities to improve continuous monitoring and performance measurement within the ISMS. • Observe, review, document, and test: - Logical access controls - Change management processes - Vendor risk management - Security operations processes - Incident response controls • Review application and automated controls across client systems and SaaS platforms. • Assess cloud and hybrid infrastructure environments where applicable. • Develop working relationships with client stakeholders across security, IT, and compliance functions. • Communicate findings clearly, including risk implications and remediation recommendations. • Provide practical guidance on aligning security operations with ISO requirements. • Support clients in maturing governance and compliance programs beyond initial certification.

• Lead SOC 2 Type I and Type II readiness and examination engagements under the AICPA Trust Services Criteria. • Own engagement planning, scoping, timeline management, and execution across multiple concurrent SOC 2 clients. • Advise clients on control design and implementation aligned to the Trust Services Criteria (Security, Availability, Confidentiality, Processing Integrity, Privacy). • Evaluate readiness gaps and develop actionable remediation roadmaps. • Serve as internal and external subject matter expert on SOC 2 automation platforms (e.g., Drata, Vanta, Secureframe, or similar tools). • Configure and optimize client platform environments, including: - Control mapping - Evidence workflows - Automated integrations (cloud providers, ticketing systems, HRIS, code repositories, etc.) - Continuous monitoring settings • Review automated control outputs and exception reporting to ensure audit defensibility. • Identify opportunities to improve automation coverage and reduce manual evidence collection. • Partner with clients to mature their compliance operations using platform analytics and reporting. • Review, document, and test IT general controls (logical access, change management, system operations). • Evaluate automated and application controls within SaaS, cloud-native, and hybrid environments. • Assess controls over infrastructure environments (AWS, Azure, GCP), identity management, and DevOps workflows. • Validate evidence sufficiency and completeness within SOC 2 platforms to support audit conclusions. • Serve as primary point of contact for SOC 2 clients, including executive-level stakeholders. • Present audit findings, risk insights, and strategic recommendations to leadership. • Advise high-growth SaaS clients on building scalable, audit-ready compliance programs. • Support sales and go-to-market efforts for SOC 2 services, including scoping and technical input on proposals. • Mentor junior analysts on SOC 2 methodology, platform navigation, and control testing best practices. • Contribute to the refinement of SOC 2 templates, testing programs, and platform playbooks. • Identify efficiencies to standardize and scale SOC 2 engagements across the practice. • Support training initiatives to elevate internal SOC 2 platform expertise.

• Own and manage the full sales lifecycle for cybersecurity and risk assurance engagements, from initial prospecting and qualification through proposal development, negotiation, and contract execution. • Consistently achieve or exceed assigned revenue targets through a combination of inbound lead conversion and proactive outbound business development. • Develop and maintain a robust and accurately forecasted sales pipeline using CRM systems and established sales methodologies. • Confidently articulate the value, scope, and outcomes of ISO/IEC 27001, SOC 1, and SOC 2 services, including differences in reporting types, control frameworks, readiness versus certification engagements, and ongoing compliance requirements. • Conduct in-depth discovery sessions to understand client environments, risk profiles, regulatory pressures, customer demands, and internal governance structures. • Translate complex technical and regulatory concepts into clear, business-relevant insights for executive and non-technical stakeholders. • Build and sustain long-term relationships with senior decision-makers and influencers across client organisations. • Navigate complex, multi-stakeholder buying groups, balancing technical requirements with commercial and strategic considerations. • Lead the development of tailored proposals, Statements of Work (SOWs), and pricing structures that reflect client needs, regulatory scope, and Sensiba’s delivery model. • Manage contract negotiations in collaboration with legal and finance teams, ensuring commercial, risk, and compliance considerations are appropriately addressed.