• Lead the company-wide Compliance Department and oversee a high-performing team of compliance professionals. • Design, implement, and continuously improve a best-in-class compliance program aligned with regulatory requirements and business growth. • Foster a strong culture of ethics, accountability, and integrity across the organization. • Develop, maintain, and enhance compliance policies, procedures, and controls. • Oversee the Company Code of Conduct and ensure ongoing relevance and effectiveness. • Identify areas of compliance risk and implement mitigation and corrective action plans. • Oversee investigations into alleged violations of laws, regulations, policies, or the Code of Conduct. • Manage hotline reporting mechanisms and ensure proper triage, review, and resolution processes. • Conduct monitoring and auditing activities to assess program effectiveness and identify emerging risks. • Provide regular reporting to executive leadership, the Board of Directors, and Board committees. • Advise leadership on complex compliance matters, regulatory developments, and enterprise risk. • Lead enterprise compliance training initiatives for employees, managers, and new hires. • Drive awareness of compliance expectations and promote speak-up culture across the organization. • Collaborate with Legal, HR, Finance, IT, Security, Quality, Operations, and business leaders to embed compliance into decision-making and daily operations.

• Supports and demonstrates IMA’s core values • Values and understands the importance of diversity, equity, and inclusion among all IMA associates • Develops pathways to effectively monitor and analyze State & Federal regulations impacting employee benefits • Creates summary communications of regulatory actions to provide internal and external customer education • Serves as a liaison with external employee benefit legal resources to secure opinions and clarifications of regulatory guidance as needed • Leads the development of technical tools, visual aids, and recorded presentations to assist Benefit service teams and clients with benefit compliance needs • Monitors, researches, and responds to internal and external customer compliance inquiries • Assists in establishing standards for workflows, processes, and service team education in partnership with the employee benefits operations team • Provides new benefit associate and ongoing benefit service team training for compliance related topics • Lead presentations, and vets external resources to facilitate webinars and potential referrals for compliance services

Role Description Curo Pet Care is seeking an experienced HRIS & Payroll Compliance Administrator to manage, maintain, and optimize our HRIS (Rippling) across a growing, multi-entity, multi-state organization. This role serves as the primary HRIS administrator, partnering closely with HR leadership on system configuration, payroll compliance, and regulatory matters. The ideal candidate is detail-oriented, execution-focused, and comfortable operating in a complex environment. As HRIS & Payroll Compliance Administrator you will be responsible for: - HRIS Administration & System Governance - Administer and optimize Rippling, including configuration, troubleshooting, and system enhancements - Build and maintain automated workflows across the employee lifecycle - Manage permissions, approval chains, and system controls - Conduct audits to ensure data accuracy, integrity, and compliance - Identify and implement process automation and continuous improvements - Serve as internal HRIS subject matter expert - People Analytics & Reporting - Develop reports and dashboards to provide real-time workforce insights - Analyze trends across headcount, turnover, compensation, benefits, and labor metrics - Partner with HR and Finance on workforce planning and forecasting - Payroll, Tax & Entity Administration - Support multi-entity setup, payroll configuration, and tax registrations - Ensure compliance with federal, state, and local wage-and-hour laws - Maintain accurate deductions, tax settings, and payroll structures - Assist with payroll audits and reconciliations - Compliance & Regulatory Reporting - Manage required filings (e.g., EEO-1, state labor reports, agency requests) - Ensure HRIS data supports ACA, benefits, and payroll compliance - Maintain audit-ready documentation and internal controls - Contractor & Workforce Administration - Maintain contractor (1099) records and support proper classification practices - Cross-Functional Collaboration - Partner with HR, Finance, Operations, and IT on HRIS and payroll processes - Coordinate with vendors on integrations, APIs, and system issues - Train internal stakeholders on proper system use Qualifications - 3+ years HRIS administration experience in a multi-state environment - Direct experience with Rippling - Strong knowledge of payroll tax setup, state registrations, and compliance reporting - Experience supporting payroll operations, reconciliations, and audits - Advanced HRIS reporting (custom reports, dashboards, analytics) - High attention to detail and ability to handle sensitive data with discretion Benefits - Fully remote role, full-time, W-2 - Highly competitive salary ($85k to $95k based on experience) - Bonus structures - Health insurance - 401k - Personal pet care discount - Vacation and paid holidays

• Bring ‘Security by design’ principles to product development activities • Managing the GRC program, defining the roadmap for maturity across governance, risk management, and compliance initiatives. • Lead, manage, and mature the organization's Information Security Management System including risk treatment, internal audits, and readiness for external certification audits • Serve as the SME for high-stakes compliance frameworks, specifically FedRAMP, and maintaining advanced leadership over HIPAA and the ISO 27001 family (including 27017/27018 for cloud security). • Lead the development and revision of enterprise-level security policies, standards, and control frameworks to align with regulatory requirements and business objectives. • Manage GRC with focus on lean, efficient implementation by leveraging automation of activities • Lead FedRAMP authorization (e.g., Readiness, Assessment, and Continuous Monitoring), including coordinating with the 3PAO (Third-Party Assessment Organization) and government agencies. • Provide solution oriented technical guidance to Cloud Engineering, Security Operations, DevOps, and Product teams on architecting, implementing, and documenting controls required for FedRAMP, HIPAA, and ISO 27001 within cloud environments (AWS, Azure, or GCP). • Oversee and conduct complex, high-impact risk assessments (e.g., BIA, PIA, Data Flow Mapping) and residual risk management across the enterprise, escalating critical risks to senior leadership. • Manage and respond to high-level customer and partner due diligence requests and contract reviews related to security and compliance. • Act as the primary InfoSec GRC liaison and subject matter expert, effectively collaborating with internal stakeholders including Legal, Internal Audit, Product Management, and Tech Leadership. • Translate highly technical security and compliance requirements providing clear, actionable, risk-informed recommendations. • Lead cross-functional remediation efforts, bringing a solution mindset to help technical teams design practical and compliant control implementations instead of simply identifying gaps. • Mentor and provide guidance to junior GRC team members, helping to build internal capabilities.