• Establish, execute, and continuously improve a comprehensive, enterprise-wide audit program • Lead operational, compliance, financial-control, and IT/cybersecurity audits • Develop the annual risk‑based audit plan and present recommendations to senior leadership • Conduct interviews, walkthroughs, control testing, and data analysis to assess process effectiveness • Identify control gaps, process inefficiencies, and potential risk exposures • Support enterprise risk assessments and maintain an up-to-date risk register • Prepare and present reports on risk management and audit findings to the senior leadership team

• Lead SOX internal audit projects from planning through reporting • Conduct end‑to‑end process walkthroughs to identify risks, assess control design, and document process‑level insights with accuracy and clarity • Collaborate with global finance and compliance stakeholders • Review audit testing workpapers to ensure quality • Assess internal control deficiencies by identifying root causes and partnering with owners to develop actionable remediation plans • Develop recommendations that enhance efficiency and effectiveness of financial operations • Prepare clear, timely SOX status reports • Coach audit team members to support high performance • Support additional non‑SOX audit projects as needed

• Lead development, review, and adjudication of NC3-related policy and governance processes. • Evaluate compliance and effectiveness across operational, assessment, and modernization activities. • Formulate policy recommendations to enforce standards, resolve cross-enterprise issues, and mitigate risk. • Establish and refine governance mechanisms, decision processes, and oversight constructs. • Advise senior Joint Staff leadership on policy impacts, gaps, and enterprise-level risks. • Lead coordination and staffing for policy documents and staffing packages (CJCSIs, CJCSMs, APCJCSs). • Develop recommended courses of action, responses, briefing materials. • Support forums: NC3 CPMR, NC3 IAPR, NLCC SSG, OPSDEPS, DMAG, TANK. • Maintain NC3 Portfolio Definition, Security Classification Guidance, Nuclear Posture Review supporting documents.

• Gather customer information to conduct in depth analysis of customer data for Know Your Customer underwriting and customer due diligence. • Review and process customer profile and bank account changes. • Review and process ACH rejections and Notice of Changes. • Daily review and processing of chargebacks. • Review detailed monitoring of payments transactional activities to detect and prevent payments risks. • Conduct preliminary investigation of suspicious payment activity and suspected fraudulent activity, and work with senior staff to make recommendations for actions to be taken. • Perform in depth data analysis to identify outliers and trends, to identify and prevent fraud and contribute to continuously improve risk strategy and controls. • Ensure compliance with operational policies and applicable regulatory requirements.