• Build and maintain curated datasets and data models (e.g., case, alert, entity, transaction, and risk features) that power compliance controls across Transaction Monitoring, EDD/KYC, and Screening systems. • Own data quality for compliance datasets by implementing validation checks, monitoring, lineage tracking, and documentation to ensure outputs are accurate, complete, and audit-ready. • Partner with cross-functional engineering teams and Compliance stakeholders to close upstream data gaps, standardize instrumentation, and translate control requirements into scalable data structures and feature sets. • Drive detection signal quality improvements by analyzing detection outputs, identifying opportunities to reduce non-actionable noise while protecting sensitivity, and defining success metrics for controlled rollouts. • Execute measurement frameworks for compliance control effectiveness, including coverage, timeliness, stability, and outcome-based metrics, and build repeatable reporting pipelines consumable by Compliance leaders, operations teams, and auditors.

• Own, advance, and champion Blink's enterprise Compliance Program, including the code of conduct, conflicts-of-interest, gifting, and whistleblower/reporting frameworks. • Lead the established compliance operating cadence (including weekly compliance reviews and the compliance committee), maintaining clear action items, accountability, and follow-through. • Provide periodic reports to the Deputy General Counsel and General Counsel on the nature, progress, and status of the program and emerging risks. • Own the HIPAA compliance program — policies, procedures, authorizations, revocation processes, and recordkeeping — keeping it current and continuing to strengthen it as the business and regulations evolve. • Maintain and enhance the practical guardrails and job aids that help Data, Engineering, and IT teams handle PHI correctly (e.g., approved-vs-not-approved platforms for PHI, data-governance guidance, BAA tracking with vendors). • Monitor and operationalize evolving privacy and consumer-protection requirements, including HIPAA, FTC, and state privacy laws. • Investigate and document potential compliance and privacy concerns, including HIPAA incidents and unauthorized-disclosure events, and partner with stakeholders to develop and execute remediation, coaching, and corrective-action plans. • Manage intake and response for medical-records and legal-process requests in coordination with Legal Operations. • Cooperate with internal and external auditors and reviewers, and lead Blink's responses to security and compliance audits and certifications (e.g., SOC 2, HITRUST) and to client/partner audits of Blink. • Support responses to regulator and state Attorney General inquiries in partnership with Legal. • Manage consumer and patient complaints, patient requests to access or delete information and other privacy-rights requests, and state Attorney General consumer-protection complaints, escalating to Legal where matters become formal enforcement. • Administer Blink’s exclusion and sanctions screening program (OIG/SAM/OFAC), including supporting screening-tool implementation and the investigation of potential screening hits, in partnership with the People team. • Partner with Pharmacy Operations and Clinical teams on quality and error-handling processes (e.g., fulfillment-error review, clinical templates and calibration) and support adverse-event reporting and pharmacovigilance policy. • Support compliance for patient-assistance and manufacturer-sponsored programs, including enrollment/unenrollment processes. • Oversee compliance education and training for all Blink employees, including developing training content and curricula. • Collaborate cross-functionally to determine, document, and implement policies and standard operating procedures that support a culture of compliance. • Support special projects and broader Legal team initiatives as the team and company grow.

• Own and maintain Worth’s compliance and governance programs across AML/BSA, KYB/KYC, OFAC/sanctions, FCRA, privacy, and applicable financial services regulations • Lead and mature the company’s GRC function, including risk assessments, policy governance, control management, audit readiness, and compliance documentation • Support and manage external audits, certifications, and regulatory initiatives including SOC 2, PCI DSS, GDPR/privacy-related obligations, customer due diligence reviews, and emerging AI governance or assurance frameworks as the company and regulatory landscape evolve • Serve as a compliance advisor to Product and Engineering teams to ensure regulatory and governance requirements are embedded into platform capabilities and workflows • Develop and maintain Worth’s AI governance framework, including oversight of AI usage, model governance, data handling, automated decisioning considerations, and emerging AI regulatory requirements • Monitor regulatory developments and translate evolving requirements into actionable operational and product guidance • Act as a primary point of contact for enterprise customers, auditors, and partners on compliance, governance, and regulatory matters • Oversee third-party compliance and risk management processes for vendors, data providers, and technology partners • Lead compliance-related incident response activities, including regulatory inquiries, customer escalations, and coordination on privacy or security events • Own and mature Worth’s third-party risk management program, including compliance oversight, due diligence, ongoing monitoring, and risk assessments for vendors, data providers, technology partners, and other third parties supporting regulated operations • Build compliance awareness and training programs across the organization and help foster a strong culture of governance and accountability

• Oversee the day-to-day operations of the enterprise compliance audit and monitoring program. • Manage risk-based audit programs focused on coding, billing, documentation integrity, and regulatory compliance. • Monitor high-risk billing and operational areas. • Develop audit methodologies, sampling protocols, and documentation standards. • Identify and assess enterprise compliance risks related to federal and state healthcare regulations. • Collaborate with Coding Compliance Educators and CDOCs to develop targeted education initiatives. • Supervise and mentor compliance audit personnel and operational compliance staff as assigned.