• Manage incoming security questionnaires and customer assurance requests and assessments end-to-end, coordinating with Engineering, Security, and other internal stakeholders to provide accurate, timely responses • Maintain and update the customer assurance knowledge library and trust center documentation to ensure content is current and accurate • Review incoming contracts and identify compliance-related requirements, obligations, or risks, escalating findings to Legal as appropriate • Support the development and maintenance of reusable response frameworks and standard documentation to improve the efficiency of the customer assurance process • Execute recurring compliance activities within assigned control domains, including evidence collection cycles, control attestations, and scheduled review tasks • Manage findings and evidence renewals in the GRC platform, ensuring controls remain current and audit-ready • Daily monitoring of compliance IT solutions for the identification and resolution of out of compliance end users, devices, and other company assets • Contribute to the development, review, and maintenance of company policies, security controls, and supporting documentation • Support the preparation for and completion of internal and external compliance audits, including evidence gathering and auditor coordination within assigned scope • Stay current on the evolution of relevant compliance frameworks and communicate changes to team members and leadership • Perform vendor due diligence and compliance reviews for vendor evaluation requests, documenting findings and requirements in relevant systems • Coordinate with SecOps to review vendor risk findings and track remediation to resolution • Support the continuous improvement of vendor risk assessment processes and documentation standards • Stay up to date on the evolution of compliance frameworks, providing updates to team members, departments, and management when changes occur • Educate and train team members, departments, and management on security best practices that align with compliance frameworks • Additional duties as assigned

• Provide compliance guidance and direction of government contract accounting and practices • Stay informed of current changes in laws and regulations that might impact the organization • Supports regulatory audits with various agencies and leads company responses • Plans and provides guidance for overall government compliance programs • Assists in developing policy and procedures to ensure government regulatory compliance • Supports team in developing and updating business system manuals for cost estimating • Leads regulatory audit requests and responses to audit finding as directed • Provides guidance and direction to accounting staff in the preparation • Provides input and/or develops government contracting compliance training programs • Participates in training sessions on government contracting best practices and changes in regulations.

Role Description This position will be involved with supporting enterprise compliance goals through research and analysis of regulatory claims and/or policy compliance items, assisting with the establishment and implementation of enterprise best practices, involvement with claims and product filings, and internal systems support. This position will also assist with development of enterprise compliance procedures and training and participate in compliance audits to ensure consistent application of compliance-driven processes throughout the enterprise. Responsibilities/Tasks - Analyzes, researches, and reports on regulatory claims and/or policy compliance trends, issues, laws, rules, regulations. - Assists with the establishment and implementation of best practices. - Keeps abreast of compliance with the best practices and procedures for all applicable states and lines of business. - Assists with the development and implementation of reference materials, training programs, and other pertinent communications. - Researches, develops, and provides input on compliance policies and procedures. - Researches new states and/or lines of business for potential compliance concerns and provides educational material, as necessary. - Participates in compliance audits to ensure consistent application of compliance processes throughout the enterprise. - Determines audit parameters, reviews files, analyzes results, and contributes to communication of audit findings. - Researches and responds to questions and concerns from business units and others on compliance-related processes and decisions. - Assists with implementation and validation of compliance requirements for diversification efforts. - Tracks fines, fees, and penalties related to claims and/or policy compliance for the enterprise. - Assists with the review of fines, fees, and penalties related to claim and/or policy compliance, including identifying root cause and procedure gaps. - Other duties, as assigned. Qualifications - Bachelor’s degree in business administration, Finance or related field or the equivalent in relevant coursework and experience. - Continuous learning required, as defined by the Company’s learning philosophy. Certification, or progress toward, highly preferred and encouraged. - CPCU designation strongly preferred. Requirements - Minimum two years’ experience in a Worker’s Compensation or Property & Casualty compliance environment, or equivalent. - Thorough familiarity with Worker’s Compensation or Property & Casualty insurance concepts that provide the necessary skills, knowledge, and abilities. Skills/Knowledge/Abilities (SKA) Required - Detail oriented. - Good organizational skills. - Ability to analyze and solve problems. - Above average verbal and written communication, interpersonal, and customer service skills. - Knowledge of workers’ compensation insurance and underwriting techniques. - Knowledge of insurance operations, jurisdictional property and casualty laws, regulatory authorities, and industry trends and their impact. - Proficient in Microsoft Windows including spreadsheet applications and Microsoft Word. - Ability to work independently, as well as within a team. Pay Range Actual compensation decision relies on the consideration of internal equity, candidate’s skills and professional experience, geographic location, market, and other potential factors. It is not the standard practice for an offer to be at or near the top of the range, and therefore a reasonable estimate for this role is between $54,000 and $90,550. Working Conditions Work is performed in an office setting or remote setting with no unusual hazards. Minimal travel may be required with occasional overnight stays.

• You will help build the new practice that is currently being established. • You will be one of the first people shaping this area together with our Managing Partners — defining the portfolio and winning and delivering the first major mandates. • Responsibility for consulting projects in ISO 27001, NIS2, TISAX and DORA for clients in industry, automotive, healthcare and critical infrastructure. • Design and continuous improvement of Information Security Management Systems (ISMS), including risk management, determination of protection needs, action planning and audit support. • Conducting gap assessments, maturity analyses and third-party risk assessments. • Preparation for and support during certification and surveillance audits. • Advising CISOs, Data Protection Officers and executive leadership as a peer and trusted advisor. • Active development of the PEC cybersecurity portfolio: method development, tool selection (HiScout, verinice, ServiceNow GRC), and creation of reusable frameworks and templates. • Technical development and mentoring of junior consultants as the team grows. • Sparring partner for our Managing Partners on strategic account and proposal topics. • No boredom — engaging tasks in challenging projects at international top-tier companies!