Role Description Conduct compliance testing on Issuers and Ginnie Mae Document Custodians based on risk-based criteria. Tasks include: - Initiating contact with the Issuer or Document Custodian to schedule the review - Selecting the sample of loans, pools, and/or transactions to be tested - Conducting the compliance review - Performing any post-review remediation activities Most of the process is performed within an automated system owned by Ginnie Mae, but in-depth knowledge of Ginnie Mae’s policies, the broader secondary mortgage market, and various investor reporting policies is required. As part of this role, the reviewer may be asked to conduct periodic trainings for Issuers, Document Custodians, and Ginnie Mae staff on the compliance review IT system, process, and procedures. The project team also performs a number of specialized reviews throughout the year, which will vary in scope depending on the requirements of the review. Qualifications - Ginnie Mae Experience - Hands-On Compliance Testing / Audit Execution - Secondary Mortgage Market Knowledge - HUD / Government Program Exposure - Bachelor’s Degree Preferred Requirements - Must have a minimum of a bachelor’s degree Benefits - Medical, dental & vision - Critical Illness, Accident, and Hospital - 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available - Life Insurance (Voluntary Life & AD&D for the employee and dependents) - Short and long-term disability - Health Spending Account (HSA) - Transportation benefits - Employee Assistance Program - Time Off/Leave (PTO, Vacation or Sick Leave) Company Description This is a Contract position based out of Arlington, VA. The pay range for this position is $35.00 - $45.00/hr. This position is anticipated to close on Jul 3, 2026. This is a fully remote position.

• Monitor compliance with regulatory requirements and company policy • Conduct testing activities and assessments to identify and address control weaknesses • Provide reports on regulatory compliance; execute assigned CMS processes • Act in a consultative manner, when necessary, to assist the First Line of Defense to develop and/or redesign processes to improve compliance • Review risk indicators, red flags, and exception reports to monitor compliance and to identify and propose corrective actions • Identify, analyze, recommend corrective actions, and, when necessary, resolve compliance issues • Communicate compliance requirements and potential instances of non-compliance with business partners • Conduct Risk Assessments as directed • Complete, file and quality assure mandatory regulatory filings and reports required by applicable state and federal authorities • Manage state regulatory agency examination processes end-to-end, including examiner coordination, pre-exam preparation, written response drafting, findings tracking, and annual exam analysis reporting for executive and board audiences • Administer the regulatory and customer complaint process, including intake, investigation coordination, response drafting, and SLA monitoring across federal and state regulators • Develop, review and maintain compliance policies, procedures and workflows • Proactively research to stay up to date with relevant rules, regulations, changed business practices, and industry-related events • Design and maintain compliance reporting, including regulatory examination trends, complaint volume analysis, and CMS performance data for operational and executive audiences • Support the annual compliance training review process, including content accuracy review, regulatory currency validation, and coordination with training program owners • Coach and review work of other Compliance professionals • Completes ad hoc projects as assigned

Role Description We are looking for a skilled SAP GRC Security Consultant with a minimum of 8 years of experience to join a dynamic team within a leading organization. This role involves managing SAP user access governance, designing and maintaining roles and authorizations across SAP S/4HANA and Fiori, and administering SAP GRC Access Control processes, with a focus on compliance, risk mitigation, and continuous improvement. Key Responsibilities - Manage SAP user access provisioning, modification, and deprovisioning activities across SAP landscapes. - Design, maintain, and troubleshoot SAP roles and authorizations in SAP S/4HANA, SAP Fiori, and integrated applications. - Administer SAP GRC Access Control processes, including Access Request Management (ARM), role approvals, Firefighter management, and workflow administration. - Perform Segregation of Duties (SoD) risk analysis, mitigation reviews, and compliance assessments. - Coordinate with business process owners, role owners, and auditors regarding access governance and authorization requirements. - Review and implement role changes, role redesigns, and authorization enhancements through Change Requests (CRs). - Analyze and resolve authorization-related incidents and service requests. - Conduct user access reviews, role recertifications, and support internal and external audits. - Manage and troubleshoot access-related issues within SAP Fiori and SAP Build Work Zone environments. - Administer and support SAP BTP security, including user and role management. - Collaborate with development teams to define authorization concepts for custom applications, integrations, and enhancements. - Communicate effectively with stakeholders and provide status updates on incidents, service requests, change requests, and project deliverables. - Ensure compliance with security policies, governance standards, and audit requirements across SAP environments. Qualifications - 8+ years of experience in SAP Security, Authorizations, and Access Governance. - Strong experience with SAP GRC Access Control (ARM, ARA, Firefighter, SoD Analysis, Mitigation Controls, Workflows). - Hands-on experience with SAP S/4HANA Security and Authorization concepts. - SAP Role Design, Maintenance, and Authorization Troubleshooting. - SAP Fiori Security, including catalogs, groups, tiles, and role configuration. - Experience performing Segregation of Duties (SoD) analysis and compliance reviews. - User and role administration in SAP S/4HANA environments. - Experience supporting audits, access reviews, and role recertification processes. - Knowledge of Change Management processes and Change Requests (CRs). - Fluent conversational English. Preferred / Highly Desired - SAP BTP Security and Administration. - SAP Build Work Zone access management and troubleshooting. - SAP BTP Cockpit administration. - Identity Authentication Service (IAS). - Identity Provisioning Service (IPS). - Functional and technical design/configuration of SAP GRC Access Control 12 (GRC AC 12). - Experience supporting hybrid SAP landscapes (On-Premise and Cloud). Soft Skills - Strong communication skills. - Stakeholder management. - Leadership and ownership mindset. - Commitment and accountability. - Collaboration and teamwork. - Problem-solving and analytical thinking. - Ability to work independently in a remote environment. Location & Schedule - Remote work from Mexico City, Guadalajara, Monterrey, and Coahuila. - Work hours Monday to Friday, 09:00 – 18:00 Benefits - Attractive Salary + Premium Benefits - Performance bonuses, grocery coupons, and savings are found. - Aguinaldo, premium vacations, and vacations paid - SGMM Medical insurance, family, and Life insurance. Candidates must include their compensation expectations in their applications and resumes in English. Interested? Apply now.

• Conduct internal audits of Thermo Fisher Pharma Services Group (PSG) manufacturing and Clinical Trial Division (CTD) sites • Prepare detailed audit reports to communicate observations • Maintain knowledge of GMPs and emerging quality regulations • Promote positive Quality and leadership behaviors • Participate in ad-hoc quality compliance projects related to auditing