• Provide compliance guidance and direction of government contract accounting and practices • Stay informed of current changes in laws and regulations that might impact the organization • Supports regulatory audits with various agencies and leads company responses • Plans and provides guidance for overall government compliance programs • Assists in developing policy and procedures to ensure government regulatory compliance • Supports team in developing and updating business system manuals for cost estimating • Leads regulatory audit requests and responses to audit finding as directed • Provides guidance and direction to accounting staff in the preparation • Provides input and/or develops government contracting compliance training programs • Participates in training sessions on government contracting best practices and changes in regulations.

Role Description This position will be involved with supporting enterprise compliance goals through research and analysis of regulatory claims and/or policy compliance items, assisting with the establishment and implementation of enterprise best practices, involvement with claims and product filings, and internal systems support. This position will also assist with development of enterprise compliance procedures and training and participate in compliance audits to ensure consistent application of compliance-driven processes throughout the enterprise. Responsibilities/Tasks - Analyzes, researches, and reports on regulatory claims and/or policy compliance trends, issues, laws, rules, regulations. - Assists with the establishment and implementation of best practices. - Keeps abreast of compliance with the best practices and procedures for all applicable states and lines of business. - Assists with the development and implementation of reference materials, training programs, and other pertinent communications. - Researches, develops, and provides input on compliance policies and procedures. - Researches new states and/or lines of business for potential compliance concerns and provides educational material, as necessary. - Participates in compliance audits to ensure consistent application of compliance processes throughout the enterprise. - Determines audit parameters, reviews files, analyzes results, and contributes to communication of audit findings. - Researches and responds to questions and concerns from business units and others on compliance-related processes and decisions. - Assists with implementation and validation of compliance requirements for diversification efforts. - Tracks fines, fees, and penalties related to claims and/or policy compliance for the enterprise. - Assists with the review of fines, fees, and penalties related to claim and/or policy compliance, including identifying root cause and procedure gaps. - Other duties, as assigned. Qualifications - Bachelor’s degree in business administration, Finance or related field or the equivalent in relevant coursework and experience. - Continuous learning required, as defined by the Company’s learning philosophy. Certification, or progress toward, highly preferred and encouraged. - CPCU designation strongly preferred. Requirements - Minimum two years’ experience in a Worker’s Compensation or Property & Casualty compliance environment, or equivalent. - Thorough familiarity with Worker’s Compensation or Property & Casualty insurance concepts that provide the necessary skills, knowledge, and abilities. Skills/Knowledge/Abilities (SKA) Required - Detail oriented. - Good organizational skills. - Ability to analyze and solve problems. - Above average verbal and written communication, interpersonal, and customer service skills. - Knowledge of workers’ compensation insurance and underwriting techniques. - Knowledge of insurance operations, jurisdictional property and casualty laws, regulatory authorities, and industry trends and their impact. - Proficient in Microsoft Windows including spreadsheet applications and Microsoft Word. - Ability to work independently, as well as within a team. Pay Range Actual compensation decision relies on the consideration of internal equity, candidate’s skills and professional experience, geographic location, market, and other potential factors. It is not the standard practice for an offer to be at or near the top of the range, and therefore a reasonable estimate for this role is between $54,000 and $90,550. Working Conditions Work is performed in an office setting or remote setting with no unusual hazards. Minimal travel may be required with occasional overnight stays.

• You will help build the new practice that is currently being established. • You will be one of the first people shaping this area together with our Managing Partners — defining the portfolio and winning and delivering the first major mandates. • Responsibility for consulting projects in ISO 27001, NIS2, TISAX and DORA for clients in industry, automotive, healthcare and critical infrastructure. • Design and continuous improvement of Information Security Management Systems (ISMS), including risk management, determination of protection needs, action planning and audit support. • Conducting gap assessments, maturity analyses and third-party risk assessments. • Preparation for and support during certification and surveillance audits. • Advising CISOs, Data Protection Officers and executive leadership as a peer and trusted advisor. • Active development of the PEC cybersecurity portfolio: method development, tool selection (HiScout, verinice, ServiceNow GRC), and creation of reusable frameworks and templates. • Technical development and mentoring of junior consultants as the team grows. • Sparring partner for our Managing Partners on strategic account and proposal topics. • No boredom — engaging tasks in challenging projects at international top-tier companies!

• Manage the audit process from start to finish for multiple audits (e.g., PCI DSS, GDPR, FedRAMP, SOC2, etc) • Maintain understanding of the platform and compliance obligations • Confirm and refine internal control framework and related documentation • Drive and scale the continuous monitoring program • Identify and communicate control gaps; support remediation efforts • Support third party oversight processes for vendors and service providers • Enhance internal training material about technology compliance program