• Support compliance strategy and execution for DoorDash’s merchant capital program • Partner cross-functionally and externally with third party partners to embed compliance into the product lifecycle • Translate legal and regulatory requirements into operational guidance and product specifications • Support audits, bank partner requests, and regulatory testing • Develop and maintain policies and procedures related to merchant lending regulatory compliance • Develop and support governance functions such as testing, issue management, and compliance reviews • Support customer service on complaints related to DoorDash Merchant workstreams • Conduct and/or manage compliance assessments and contribute to the design of scalable, risk-based controls

• Drive the integrity and scalability of the Genesys Cloud GRC program • Protect customer, employee, and enterprise data by embedding security and compliance into cloud architecture • Partner across engineering, product, and audit teams to shape secure design decisions • Lead technical security assessments across applications, cloud services, and third-party integrations • Validate and enhance security controls across AWS environments • Drive architecture reviews to identify security gaps • Partner with engineering teams to implement secure SDLC practices • Deliver audit readiness by leading technical walkthroughs • Translate regulatory and framework requirements into scalable technical controls • Own GRC program activities including risk assessments, gap analysis, remediation tracking

• Responsible for leading, coordination, verification and tracking of global compliance activities within the pharmaceutical division • Evaluation of Investigations and Changes that could have an impact on regulatory commitments • Identification and remediation of plant quality and compliance risks through evaluation of tradition and non-tradition metrics, audit results, gap assessments, etc • Support plant on strategy and compliance plans for identified gaps • Lead/manage working groups to ensure mitigation plans are executed • Responsible for specific preparation of manufacturing sites and I&D Centers for upcoming US-FDA inspections, including but not limited to: Training of plant staff for general inspection aspects and behaviors, as well as specific training for subject matter experts • Performance of mock inspections to evaluate the plants readiness for FDA inspection • Design and deliver need-based training to specific plants in response to identified gaps • Direct participation and support during US-FDA inspections (inspection room and back office), including: Immediate guidance and support during inspections • Support and guidance in preparing response to FDA-483 observations • Independent review of Effectiveness of assigned FDA-483 CAPA • May also include inspections by local authorities when related to Mutual Recognition agreements • Responsible for identification of new FDA cGMP trends and development of strategies to fulfill new expectations • Strategic optimization and harmonization of cGMP and quality related processes to continuously improve pharmaceutical quality and compliance of Fresenius Kabi products • Preparation of global quality management documents (e.g. SOPs, guiding documents, working instructions) • Contribution, execution and management of global projects • Collaborate with other corporate quality functions on the execution of strategic goals • Communicate findings and risks to plant management as well as senior quality management

• Own and continuously improve our GRC program across ISO 27001, SOC 2, ISO 27701, and ISO 42001 • Partner with control owners to make compliance repeatable and low-friction • Drive audit readiness: artifacts, timelines, action tracking, and clear control demonstration • Improve policies, standards, and procedures to reflect actual operations • Build strong working relationships with DevOps/Platform and engineering teams • Evaluate technical implementations and ask good questions • Translate technical reality into clear audit narratives • Contribute to risk identification and assessment • Maintain risk registers and track mitigations • Support leadership reporting by surfacing themes and trends • Evaluate and prepare for future certifications like ISO 22301, HITRUST and FedRAMP