• Lead and execute defense programs across cost, schedule, technical performance, and contractual compliance. • Own integrated program plans, schedules, budgets, risk registers, and performance tracking mechanisms. • Partner closely with engineering, product, growth, finance, legal, and executive leadership to align delivery with customer expectations. • Drive measurable impact in program predictability, customer satisfaction, and revenue realization. • Identify and act on opportunities to improve execution rigor, reporting cadence, and cross-functional coordination. • Navigate DoD acquisition environments including FAR/DFARS contracts, OTAs, and gated technical reviews (SRR, PDR, CDR, TRR). • Contribute directly to scalable program infrastructure as Shift5 expands across Army, Air Force, and other defense programs.

• Standards & Governance: work cross-functionally with IT, Legal, and Compliance teams to establish and maintain third-party risk standards and governance practices. • Due Diligence & Monitoring: Conduct comprehensive vendor due diligence and ongoing monitoring activities, including evaluating consumer-impact risk, complaint analysis, and confirming privacy and data protection standards. • Documentation & Reporting: Manage third-party risk documentation and reporting, including maintaining the vendor and data processor inventory, ensuring timely onboarding and offboarding due diligence, and executing periodic compliance reviews. • Risk Assessment: Execute day-to-day risk assessments to determine vendor criticality and identify inherent risks in categories such as PII handling, BSA/AML, and credit decisioning. • Collaboration: Work cross-functionally with Legal to ensure effective contracts are in place and with Information Security to validate the technical safeguards of our third-party partners. • Issue Escalation: Identify, track, and escalate risk events or performance failures to senior leadership and bank partners through established issue-tracking systems.

• Standards & Governance: work cross-functionally with IT, Legal, and Compliance teams to establish and maintain third-party risk standards and governance practices. • Due Diligence & Monitoring: Conduct comprehensive vendor due diligence and ongoing monitoring activities, including evaluating consumer-impact risk, complaint analysis, and confirming privacy and data protection standards. • Documentation & Reporting: Manage third-party risk documentation and reporting, including maintaining the vendor and data processor inventory, ensuring timely onboarding and offboarding due diligence, and executing periodic compliance reviews. • Risk Assessment: Execute day-to-day risk assessments to determine vendor criticality and identify inherent risks in categories such as PII handling, BSA/AML, and credit decisioning. • Collaboration: Work cross-functionally with Legal to ensure effective contracts are in place and with Information Security to validate the technical safeguards of our third-party partners. • Issue Escalation: Identify, track, and escalate risk events or performance failures to senior leadership and bank partners through established issue-tracking systems.

• Standards & Governance: work cross-functionally with IT, Legal, and Compliance teams to establish and maintain third-party risk standards and governance practices. • Due Diligence & Monitoring: Conduct comprehensive vendor due diligence and ongoing monitoring activities, including evaluating consumer-impact risk, complaint analysis, and confirming privacy and data protection standards. • Documentation & Reporting: Manage third-party risk documentation and reporting, including maintaining the vendor and data processor inventory, ensuring timely onboarding and offboarding due diligence, and executing periodic compliance reviews. • Risk Assessment: Execute day-to-day risk assessments to determine vendor criticality and identify inherent risks in categories such as PII handling, BSA/AML, and credit decisioning. • Collaboration: Work cross-functionally with Legal to ensure effective contracts are in place and with Information Security to validate the technical safeguards of our third-party partners. • Issue Escalation: Identify, track, and escalate risk events or performance failures to senior leadership and bank partners through established issue-tracking systems.