• Support the project manager in coordinating with cross-functional teams on requirements gathering, evaluation, analysis, and reporting across internal projects. • Develop a strong understanding of business operations to respond quickly to business needs and efficiently manage information collection, organization, and other tasks during cross-functional collaboration. • Conduct regular assessments of project outcomes using appropriate tools, systems, and evaluation techniques. • Build and enhance reporting metrics to support data-driven decision-making and performance tracking. • Create and maintain comprehensive project documentation. • Develop, write, edit, and optimize content for both technical and non-technical audiences, ensuring clarity, structure, accuracy, and consistency across materials. • Support content creation initiatives by conducting research, synthesizing information, and producing high-quality written materials for internal and external use. • Track platform content engagement metrics (impressions, views, likes, comments, shares/reposts) and iterate based on feedback and data. • Other duties as assigned.

• Lead cyber security and PCI DSS client engagements from initiation through delivery and closure. • Act as the primary point of contact for clients during assigned engagements, ensuring clear communication, scope control, and expectation management. • Deliver high‑quality, concise, and actionable reports suitable for technical teams, senior management, and executive stakeholders. • Apply judgement and experience to complex risk and compliance issues, ensuring pragmatic and proportionate recommendations. • Perform PCI DSS assessments in line with PCI SSC requirements, including: Scoping and gap assessments, On‑site and remote assessments, Completion of SAQs, Reports on Compliance (ROC), and Attestations of Compliance (AOC). • Provide expert advice on PCI DSS control implementation, compensating controls, and remediation planning. • Support clients in achieving and maintaining PCI DSS compliance across complex environments. • Stay current with PCI DSS standard updates, guidance, and assessor program requirements.

• Assist in the coordination and management of IT Security project tasks and deliverables. • Responsible, under supervision from Sr. Security team members, for entry level tasks and deliverables for Security Awareness, Security Training Management, Threat Intelligence, and Third Party Risk Management. • Support Computer-Based Training content administration and reporting on Learning Management Software. • Assist the Phishing Awareness Program by designing, launching, and assessing simulated attacks on the user population. • Collect and report metrics and evidence for auditing and reporting purposes. • Partner with technical and non-technical staff to ensure that deployed technologies are effectively and efficiently providing the intended controls consistent with established policies and procedures. • Partner with staff at all levels in the organization, vendors and contractors to ensure protections are effective, efficient and non-disruptive to the appropriate duties, rights and mission of the individuals and the organization(s). • Responsible for weekly Software Advisory meeting and secure software lifecycle management tasks. • Collaborate with Security Team to draft and review Policies, Procedures, Runbooks, and Playbooks. • Monitor and triage low severity security events with guidance from team members. • Stay abreast of industry security trends and developments; as well as, applicable government regulations. • Perform other duties as assigned.

• Respond to and resolve tickets related to information security • Support the implementation and maintenance of internal standards, procedures, and policies • Monitor and evaluate vendors from a security perspective • Contribute to compliance projects for ISO 27001 and ISO 27002 • Participate in Risk Management processes