• Perform quality assurance reviews across Vivid's compliance activities as needed (e.g. transaction-monitoring alert handling) • Investigate trade-surveillance alerts and document the rationale for clearing or escalating them; refer complex cases, and any that may warrant a STOR, to the Head of Risk & Compliance • Assist with financial-crime investigations and the preparation of unusual transaction reports to the FIU, gathering and analysing the relevant information • Conduct adverse-media screening on vendors and counterparties to identify any news that could impact the business, and escalate material findings • Administer the conflicts of interest and gifts process, including issuing declaration forms to relevant stakeholders, collecting responses and maintaining the register • Help collect the data and inputs that feed Board reporting, under the direction of the Head of Risk & Compliance • Assist with internal and external audits and regulatory reviews by preparing supporting documentation and evidence • Support the wider Risk & Compliance team with registers, record-keeping and ad hoc projects as the business grows

Role Description The compliance analyst will utilize industry-specific and IT knowledge to coordinate, audit, and present compliance and cybersecurity assessments for clients and vendors. The successful candidate will possess a strong balance between technical understanding regarding cybersecurity and established industry compliance frameworks. Qualifications - 3-5 years demonstrated experience in an IT support capacity - 1-3 years managing projects - Excellent oral and written communication skills - Adept analytical and critical thinking skills and the ability to solve complex problems - A strong understanding of industry standard IT technology, such as Microsoft/Linux, Active Directory, network fundamentals, email solutions, cloud solutions, and common end-user workflows - Preferred compliance experience: NIST, CMMC, HIPAA, PCI, ISO 27001 - Preferred experience with cybersecurity solutions - Cybersecurity certifications a plus

Role Description The 340B Compliance Manager will manage the 340B Compliance Program and our organization's adherence to all regulations and procedure guidance related to this vital program. The ideal candidate will have extensive knowledge and experience working within the 340B environment, either at a pharmacy or 340B entity compliance department. The 340B Compliance Manager will work to ensure our exemplary record of compliance continues. Your experience, expertise, and dedication to compliance will be critical in upholding Vivent Health's commitment to ethical practices and regulatory compliance. Essential Job Duties - Lead the 340B Compliance team. - Develop full understanding of our Pharmacy database logic with ability to identify areas for improvement, develop suggested solutions, and evaluate effectiveness of changes. - Oversee OPAI site registrations, ensuring all information is accurate and up to date in compliance with 340B regulations. - Assume role of Authorizing Official in OPAIS. - Act as 340B Program liaison, collaborating with key departments and stakeholders, including pharmacy, finance, case management, legal counsel, and consultants. - Manage all 340B Policies and Procedures to ensure compliance while maximizing pharmacy operational effectiveness. - Coordinate and conduct monthly or scheduled audits of pharmacies, with a primary focus on diversion, duplicate discounts, and inventory, generating corrective action plans and required data reports in line with OPA regulations. - Maintain knowledge and expertise on 340B, including new and proposed regulations, current trends and issues. Assess potential organizational impact of 340B changes and ensures 340B program is continuously compliant with federal regulations. - Ensure patient, provider, and prescription eligibility in furtherance of organizational policies and federal requirements. - Organize and implement external 340B audits, annually or as requested, for 340B participation. - Conduct and lead monthly 340B committee meetings, prepare agendas, distribute minutes, track tasks, and actively participate as a committee member. - Maintain organized electronic database of 340B audit activities for internal processes and potential audits by federal authorities. - Attend and complete required compliance trainings and education programs, including the Apexus Advanced 340B Operations Certificate Program or other applicable trainings or certifications, as required to enhance expertise in compliance areas. - Develop staff compliance training materials and utilize said materials to conduct staff training. - Analyze and assess systems to evaluate protocols, practices, and areas of risk to ensure compliance and financial stability. - Demonstrate excellent interpersonal and communication skills to facilitate tasks and duties effectively. Qualifications - Bachelor’s Degree or higher in Business, Healthcare Administration, Pharmacy, Legal Studies, or a related field required. - Minimum of 5 years of relevant experience in 340B, with some combination of compliance management, pharmacy, or regulatory affairs. - Healthcare industry experience or a healthcare-related setting is required. - Minimum of 1+ years of experience leading and developing people; fostering a collaborative, mission‑driven team environment that supports high‑quality care and community impact. - Professional certifications in compliance, 340B, pharmacy, such as Advanced 340B Operations Certificate, Certified Compliance and Ethics Professional (CCEP), Certified in Healthcare Compliance (CHC), or similar, are advantageous. Requirements - A strong attention to detail and exceptional analytical skills to identify compliance risks and ensure adherence to regulations. - Excellent organizational skills to manage multiple tasks and projects efficiently. - Effective communication skills, both verbal and written, to convey complex compliance concepts and interact with various stakeholders. - Proactive in approach and responsive to the needs of other employees, departments, and the organization. - Demonstrated integrity and ethical conduct in handling sensitive and confidential information. - Collaboration and diplomacy skills to ensure effective relationships with other workforce and departments. - Demonstrated flexibility to learn new areas and grow professional experience, including software programs. - Demonstrated commitment to diversity, equity, inclusion, and belonging in the workplace. - Problem-solving skills to address compliance challenges and recommend appropriate solutions. Benefits - Generous paid time off, including 12 paid holidays. - 401k with 100% employer match up to 5%. - 12 weeks of fully paid parental leave. - Employer subsidized medical, dental, vision benefits, and gender-affirming care benefits. - Employer paid short and long-term disability. - Tuition reimbursement, certification, and licensure assistance. - Benefits for part-time roles.

Role Description The Lead Information Security Architect with a focus on Governance, Risk and Compliance within the Global Security Services organization is responsible for conducting security risk assessments in coordination with the Lumen business owners, the Governance, Risk, and Compliance team, and the Product and Platform Security team. The purpose is to ensure compliance with corporate policy, standards, procedures, and industry best practices. The deliverables include metrics, reports, and mitigations associated with potential findings, issues, and risks that could impact Lumen or its customers. This candidate must be able to work independently and as a team leader to consult with internal clients on security topics, providing designs, reviews, and recommendations. Location This is a remote opportunity open to candidates located anywhere in the U.S. Main Responsibilities - Lead comprehensive risk assessments of information systems, infrastructure, and business processes. - Identify, quantify, and prioritize security risks utilizing industry-standard methodologies such as ISO/IEC 27005 and NIST. - Advise on remediation strategies for identified risks and monitor ongoing mitigation activities. - Consult as a GRC security subject matter expert with architects, engineers, third parties and others on potential solutions. - Provide architectural guidance for incident detection, response, and post-incident reviews to strengthen control frameworks and prevent recurrences. - Lead initiatives to embed Governance, Risk, and Compliance principles into security architecture. - Align architectural frameworks with relevant standards (e.g., ISO 27001, NIST, GDPR, HIPAA, SOX). - Recommend security policies, standards, and procedures that support GRC objectives and reflect current threat landscapes. - Consult with internal clients on GRC security topics and policy interpretation. - Collaborate across IT, legal, compliance, risk management, audit, and business units to ensure unified approaches to risk management and compliance. - Mentor junior security staff, fostering a culture of security awareness and compliance. Qualifications - 7+ years of relevant experience, including threat modeling, security design reviews, and security architecture. - Ability to architect solutions that balance security, compliance, usability, and business requirements. - Strong knowledge of regulatory frameworks, standards, and risk management methodologies. - Experience performing risk assessments and implementing risk mitigation strategies. - Excellent verbal and written communication skills. - Strong organizational skills. - Excellent interpersonal skills and a collaborative working style. - High ethical standards, integrity, and commitment to confidentiality. - Demonstrated leadership abilities in cross-functional teams. - Analytical mindset and strong problem-solving skills. - Demonstrate knowledge of security technologies, trends, leading practices, and regulatory requirements and government security standards such as FedRAMP and Controlled Unclassified Information (CUI) standards, along with best practices such as NIST Cybersecurity Framework (CSF), NIST 800-171, NIST 800-53, ISO 27001-27002 and other applicable security and privacy laws. - Strong teamwork and communication skills to collaborate with development, operations, and security teams. - Ability to instill a security-first mindset throughout the organization. - Commitment to stay up to date with emerging industry updates, trends, security vulnerabilities, and new tools that can enhance security. - Willingness to experiment with and adopt innovative solutions to improve security posture. - Stay abreast of emerging threats, technologies, and regulatory changes impacting information security and GRC. Compensation This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors. - $105,786 - $141,047 in these states: AL, AR, AZ, FL, GA, IA, ID, IN, KS, KY, LA, ME, MO, MS, MT, ND, NE, NM, OH, OK, PA, SC, SD, TN, UT, VT, WI, WV, WY - $111,074 - $148,099 in these states: CO, HI, MI, MN, NC, NH, NV, OR, RI - $116,364 - $155,152 in these states: AK, CA, CT, DC, DE, IL, MA, MD, NJ, NY, TX, VA, WA Benefits Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. Life at Lumen Life at Lumen is human and connected, even in a fast moving, AI‑focused organization. We set clear expectations and trust people to meet them. With real support and shared accountability, teams collaborate better, move faster, and deliver meaningful outcomes. Our Lumen 8 behaviors guide how we interact, make decisions, and work together, shaping a culture built to perform and win.