• Responsible for developing strong relationships throughout area of responsibility to foster an advisory or collaborative approach to proactive compliance and privacy. • Direct and manage all aspects of mergers and acquisitions, including efforts of team members and third-party consultants. • Lead global due diligence teams to perform compliance due diligence associated with business development opportunities and partner with the business to mitigate identified risks. • Lead global M&A integration teams and external advisors to plan, execute and finalize Compliance M&A integration projects in adherence with strict deadlines, quality standards and within budget. • Define project scope, goals and deliverables and plan, track, and report on timelines and milestones of global Compliance M&A integration projects. • Proactively manage changes to scope or plan. • Coordinate with division and regional teams regarding training, identification of high-risk interactions, remediation activities, and other local needs. • Partner with Compliance team and other stakeholders to develop and maintain processes and tools to be used globally as part of the Stryker Compliance M&A program. • Make recommendations to Compliance leadership regarding the development or revision of existing policies, procedures, systems and processes. • Consistently analyze processes, track best practices, and provide recommendations and insight to increase efficiency and effectiveness of global Compliance M&A projects. • Develop and present relevant metrics for internal and external audiences, including business leadership, to understand progress and status of the M&A projects. • Represent Compliance department within the Business Development function, including raising awareness of the compliance program and promote accountability for ethics and integrity. • Maintain deep knowledge of current and emerging laws and regulations, and periodically review and update standards relating to compliance. These include but are not limited to our Corporate Policies and Procedures, industry trends and guidance on country, state/provincial or local laws. • Participate in other Compliance department activities as needed.

• Run SOC 1, SOC 2 (Type I & II), and PCI DSS compliance programmes • Plan and manage audits, timelines, and auditor relationships • Own evidence collection, review, and submission • Track audit findings and ensure remediation is delivered with engineering • Work with DevSecOps to ensure controls are implemented in: IAM and access management, CI/CD pipelines, Infrastructure as code, Logging, monitoring, and alerting • Maintain and update security and compliance policies and procedures • Own risk registers, exceptions, and compensating controls • Support customer security questionnaires and vendor due diligence • Document controls clearly for auditors, customers, and internal teams • Partner with the Head of Engineering on compliance priorities and roadmap

• Design, implement, and scale Praxis’s commercial compliance program in advance of first launch, including policies, SOPs, governance, risk assessment, monitoring and training. • Establish launch-ready corporate compliance controls supporting commercial operations. • Serve as a standing MLR member, providing regulatory, legal, and compliance review of promotional materials. • Ensure alignment with FDA regulations, OPDP guidance, and company standards. • Partner with Commercial and Medical teams to enable efficient, compliant review and messaging. • Define MLR processes, timelines, precedents, and escalation pathways. • Train internal stakeholders on promotional compliance, scientific exchange, and appropriate data use. • Advise on compliant use of clinical, safety, and real-world data across promotional and non-promotional channels. • Conduct launch-focused compliance risk assessments and implement monitoring activities. • Support investigation and remediation of commercial compliance issues in partnership with Legal and HR.

• Own and continuously evolve the Company’s regulatory change management framework. • Monitor and interpret federal and state regulatory developments, guidance, and enforcement trends. • Lead and document regulatory impact assessments across origination, servicing, collections, repossession, disclosures, pricing, and privacy. • Maintain a centralized regulatory inventory and change log, driving end-to-end implementation tracking. • Partner with business owners to coordinate policy, procedure, system, and training updates. • Collect and maintain implementation evidence and deliver clear management and Board reporting. • Support and contribute to Compliance governance activities as needed. • Lead compliance diligence for new state entry and expansion initiatives. • Research and assess state-specific regulatory requirements, including licensing, rate and fee limits, disclosures, servicing, collections, repossession, and consumer protection laws. • Partner with external counsel to validate interpretations and resolve complex requirements. • Prepare state entry compliance assessments identifying key risks, gaps, and readiness requirements. • Conduct regulatory due diligence for lending partners and support onboarding activities. • Coordinate new license applications in partnership with the Licensing Compliance Analyst.