Role Description The Principal Compliance Analyst will ensure that adequate and effective security processes and controls are followed and aligned to deliver compliance with security policy and regulatory requirements. The Principal Compliance Analyst reports to TTEC’s Information Security Commercial Compliance Manager and is responsible for evaluating, testing, and supporting external audits for TTEC’s Commercial Compliance programs on applicable systems to provide internal governance to enhance and strengthen our security position and achieve attestation. The Principal Compliance Analyst will focus on both enterprise and client-specific assessments. You’ll report to the Compliance Advisor Lead. During a Typical Day, You’ll: - Lead the completion of compliance programs such as PCI Data Security Standard (PCI-DSS), SOC 1 Type II and SOC 2 Type II compliance efforts, ISO 27001, HIPAA, and HITRUST. - Obtain and review evidence of compliance for adherence to standards to ensure commercial compliance controls are implemented across the organization. - Monitor changes to Commercial Compliance program standards, such as ISO27001, PCI, etc. to ensure continued compliance. - Support internal and external audits related to Information Security compliance and applicable security controls according to compliance standards every year. - Assist in maintaining issue tracking and status updates. - Lead in the development and execution of corrective action plans to address non-compliance and audit findings. - Stay current with and promote awareness of applicable regulatory standards, upstream risks, and industry best practices across the enterprise. - Collaborate with other Compliance Analysts to identify overlaps with complementary compliance frameworks. - Work closely with cross-functional teams and develop strong relationships as an integral member of Information Security Compliance. - Recommend and drive efficiencies and improvements to support the successful completion of compliance initiatives. Qualifications - Bachelor’s degree and 6-8 years of related work experience or equivalent combination of education and experience. - Strong technical knowledge of applicable regulatory requirements in one or more compliance programs such as Payment Card Industry Data Security Standard (PCI-DSS), SOC 1, SOC 2, ISO 27001:2022, HIPAA, and HITRUST. - Ability to organize and track large amounts of information. Project management skills a plus. - Ability to manage challenging client interactions with professionalism, ensuring effective communication and support throughout compliance engagements. - Understanding of Information Security principles and processes and general knowledge of IT policy development and management. - Background in applying and assessing security controls. - Experience in Governance, Risk & Compliance (GRC). - Highly self-motivated, directed, and detail-oriented. Willing to take the initiative. - Shown analytical, evaluative, and problem-solving abilities. - Ability to optimally prioritize and complete tasks in a fast-paced environment. - Extensive experience working in a team-oriented, collaborative environment. - Strong written and oral communication skills. - Good interpersonal skills and customer service skills to work with internal and external personnel. - Current PMP, CISSP, CISA, CISM certification or other certification(s) relevant to information security a plus. Benefits - Supportive of your career and professional development. - An inclusive culture and community-minded organization where giving back is encouraged. - A global team of curious lifelong learners guided by our company values. - Ask us about our paid time off (PTO) and wellness and healthcare benefits. - A great compensation package and performance bonus opportunities, benefits you'd expect, and maybe a few that would pleasantly surprise you (like tuition reimbursement).

• Review flagged contractor onboarding cases, including KYC documentation, identity verification discrepancies, and incomplete or inconsistent submissions. • Manage the queue of manual reviews generated by stricter compliance controls, applying sound judgment to approve, escalate, or reject cases. • Review changes to legal identity and tax data submitted by contractors, assessing legitimacy and flagging anomalies. • Investigate beneficiary and bank account setup issues, including name mismatches, duplicate account risk, and potential fraud indicators. • Support re-verification workflows and in-life monitoring processes to ensure continued compliance throughout the contractor engagement. • Track and act on regulatory or policy changes that affect active contractor relationships. • Partner with the CX team on contractor and client-facing communications related to compliance matters, while retaining ownership of all compliance decisions and determinations. • Serve as the compliance subject matter expert in operational conversations involving contractor lifecycle issues. • Identify recurring compliance issues and patterns across the case queue, and feed structured insights back to the Product team to drive automation and reduce manual review volume over time. • Contribute to the development and refinement of internal compliance policies, playbooks, and decision frameworks.

• Research potential compliance cases and engages with potential cracked-software users and non-compliant users (both directly or indirectly) to maximize each opportunity. • Maintain a consistent pipeline of opportunities to achieve quarterly goals. • Resolve piracy and compliance issues by balancing the customer relationship with maximizing the value of each LC opportunity. • Work with the broader sales team and other internal teams to educate target accounts regarding software licensing and conducts account planning for strategic compliance deals. • Strategize, build, and manage the prospecting list for commercial sales across the assigned portfolio of products. • Manage end-to-end License Compliance reviews, which include managing third-party firms and working extensively with many of Chaos’ internal teams. • Maintain a clear track record within the company’s CRM system. • Monitor sales results based on KPIs. • Prepare reports and analyses for sales management.

Role Description The Senior AML/CFT Compliance Officer is a senior individual contributor role responsible for ensuring the effectiveness and continuous improvement of the organization's Anti-Money Laundering and Counter-Financing of Terrorism program, specifically focusing on the AML/CFT risk of banking cryptocurrency. This position requires advanced expertise in cryptocurrency and financial crime compliance, strategic thinking, and the ability to influence behavior and drive change across the organization. The officer will lead complex investigations, provide expert guidance to business units, and collaborate with senior management to develop and implement AML/CFT strategies to address the risk of cryptocurrency banking that align with regulatory requirements and industry best practices. Responsibilities - AML/CFT Program Leadership and Strategy: - Leads the analysis of external laws and regulations, as well as internal processes and systems, related to the AML/CFT risk of banking cryptocurrency. - Develops and revises policies, procedures, and controls to ensure regulatory compliance and mitigate financial crime risks associated with cryptocurrency banking. - Provides strategic direction and oversight for the AML/CFT program, aligning it with organizational goals and risk appetite. - Complex Investigations, Due Diligence, and Advisory: - Manages a portfolio of highly complex and sensitive AML/CFT investigations related to cryptocurrency. - Provides expert guidance to business units and internal stakeholders on AML/CFT cryptocurrency matters. - Conducts Due Diligence Reviews on complex higher risk cryptocurrency clients and business types. - Quality Assurance, Testing, and Training: - Develops and implements quality assurance and testing methodologies for AML/CFT processes and controls related to cryptocurrency banking. - Oversees the execution of testing and quality assurance reviews. - Develops and delivers training programs on AML/CFT cryptocurrency compliance for employees at all levels. - Data Analysis, Reporting, and Innovation: - Oversees the development of data analytics tools and strategies to enhance AML/CFT monitoring and risk detection related to cryptocurrency banking. - Provides operational support to the AML/CFT program for sanctions screening and transaction monitoring related to cryptocurrency banking. - Prepares comprehensive reports for senior management and the board on AML/CFT risks and trends associated with cryptocurrency banking. - Identifies opportunities for innovation and process improvement within the AML/CFT program. - Regulatory Engagement: - Monitors regulatory developments and emerging risks in the cryptocurrency landscape. Qualifications - Bachelor's Degree and 6 years of experience in AML/CFT compliance, investigations, or related field; CAMS certification strongly preferred. - Deep understanding of BSA/AML regulations, OFAC, KYC, and other relevant regulatory requirements. - Experience with AML/CFT software, data analytics tools, and case management systems. - Strong leadership, communication, and problem-solving skills. - OR High School Diploma or GED and 10 years of experience in AML/CFT compliance, investigations, or related field; CAMS certification strongly preferred. Requirements - License or Certification Type Preferred: CAMS certification. - Skills: - Expertise in cryptocurrency compliance. - Leadership. - AML/CFT regulatory knowledge. - Investigative techniques and Enhanced Due Diligence. - Data analysis and interpretation. - Quality assurance methodologies. - Risk assessment and mitigation. - Financial crime risk awareness. - Reporting and documentation. - Compliance program management. - Training and development. - Stakeholder management and communication. Benefits - The base pay for this position is generally between $111,000 and $165,000. Actual starting base pay will be determined based on skills, experience, location, and other non-discriminatory factors permitted by law. - For some roles, total compensation may also include variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment. - Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. - More information can be found at First Citizens Bank Benefits .