• Lead assessments of financial reporting risks and key business processes, including order-to-cash, procure-to-pay, record-to-report, payroll, inventory, and revenue recognition. • Design, evaluate, and optimize process-level and entity-level controls, with a focus on accuracy, completeness, authorization, and segregation of duties. • Translate accounting and operational risks into practical control recommendations aligned with management’s business objectives. • Review and challenge management’s risk assessments, control narratives, and control rationales for sufficiency and audit-readiness. • Lead all phases of client engagements, including planning, execution, staffing, quality assurance, and reporting. • Serve as a trusted advisor to clients, ensuring alignment with their risk management and compliance objectives. • Partner with CFOs, Controllers, and Finance leaders to address financial reporting risk, audit readiness, and control maturity. • Assist with sales efforts and contribute to expanding the GRC practice. • Identify opportunities for additional services and value-added solutions. • Coach, mentor, and develop team members to support career growth and engagement quality. • Foster a positive, collaborative work environment. • Perform and oversee engagements such as SOX 404 advisory, financial and operational internal audits, SOC 1 examinations, business process reviews, and related compliance frameworks, with a strong emphasis on financial reporting risk and control effectiveness. • Stay current on regulatory changes and industry best practices. • Lead internal projects and contribute to continuous improvement of methodologies and processes. • Approximately 30% travel required.

• Automated Compliance Monitoring: Review, audit, and monitor security compliance programs against frameworks like PCI-DSS, NIST CSFv2, and SOC 1/2, leveraging automation tools to continuously assess control health • Process Optimization & AI Integration: Identify opportunities to leverage AI tools and LLMs to accelerate risk assessments, summarize complex regulatory requirements, and streamline process improvements • Code-Assisted Evidence Collection: Lead and automate evidence collection for external audits (SOC 1, PCI Level 1), reducing manual overhead for engineering and product teams • Identity & Access Management (IAM): Oversee user access management and quarterly user access reviews, exploring ways to automate provisioning audits and detect anomalies • Cross-Functional Collaboration: Build and cultivate positive working relationships with engineering, DevOps, and product stakeholders to bake compliance directly into the CI/CD pipeline and cloud infrastructure

• Lead and enhance compliance operations, systems, and workflows. • Support HCP/HCO engagement processes, transparency reporting, and third-party compliance activities. • Develop compliance metrics, dashboards, and reporting capabilities. • Partner with cross-functional stakeholders to implement compliant business processes. • Support audits, monitoring activities, and continuous improvement initiatives.

• Support the company's proposal development process and help ensure proposal materials are accurate, organized, compliant, and completed on time • Coordinate proposal compliance activities including tracking deadlines, requirements, and submission materials • Maintain proposal trackers, checklists, and workflow visibility across teams • Organize and manage files within SharePoint and Teams, ensuring version control and accuracy • Complete government forms and maintain company registrations and compliance documentation • Monitor procurement portals for updates, deadlines, and opportunities • Support document formatting, PDF preparation, and submission readiness • Communicate updates and route information to appropriate stakeholders.