• Drive efforts to achieve compliance for company products with applicable US Federal government standards, including Security Requirements Guide (SRG), Cybersecurity Risk Management Construct (CSRMC), and Security Technical Implementation Guide (STIG). • Serve as the primary point of contact for compliance-related inquiries from government agencies, customers, and partners, relaying information to legal or contractors as needed. • Coordinate and oversee external contractors performing compliance testing, documentation, and certification efforts. • Review and validate compliance documentation provided by contractors to ensure consistency, completeness, and adherence to regulatory requirements. • Manage updates to applicable government systems, ensuring accurate and timely submission of compliance-related information. • Work closely with legal teams to address compliance-related issues and provide updates to sales teams and partners. • Source, evaluate, scope, and manage competitive bids for compliance contractors, while also working with pre-selected vendors. • Create, maintain, and communicate a Federal Compliance Catalogue of information to Fortinet Federal internally and valued partners. • Collaborate with Technical Project Manager(s) to provide regular updates on compliance progress, risks, schedule delays, and next steps. • Travel Coordination: Travel as needed to the parent company’s office, Federal HQ, and major contractors to support compliance efforts and maintain relationships.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description The Associate, Delegate Oversight supports the enterprise's compliance program and activities. You will assist in the development of all compliance program activities to ensure understanding of healthcare regulatory requirements. You will assess business unit compliance to laws, regulations, standards, and their procedures by conducting audit and monitoring activities. You will report into the Sr. Manager, Compliance Audit and Monitoring. Work Location: This is a remote position, open to candidates who reside in: Atlanta, GA. You will be fully remote; however, our approach to work may adapt over time. Future models could potentially involve a hybrid presence at the hub office associated with your metro area. Pay Transparency: The base pay for this role is: $87,188 - $114,434 per year. You are also eligible for employee benefits, monthly vacation accrual at a rate of 15 days per year and annual performance bonuses. Responsibilities - Help create a risk-based audit and monitoring plan for the healthcare organization. - Review healthcare regulations, including HIPAA, Medicare, Medicaid and NCQA regulations to ensure compliance. - Conduct assigned audits based on departmental audit plans. - Partner with teams to understand their business operations and test their compliance with regulations. - Evaluate compliance effectiveness and identify areas for improvement. - Draft and complete accurate audit reports, ensuring that the audit findings and conclusions are communicated to the business unit. - Help identify compliance gaps and risks, and contribute to the development of proactive strategies to address them. - Help maintain compliance policies, procedures, and controls with regulatory requirements. - Provide regular updates to leadership on compliance audit and monitoring activities and recommendations. - Compliance with all applicable laws and regulations. - Other duties as assigned. Requirements - Bachelor's Degree or equivalent work experience. - 3+ years experience working in health care or related field. - 3+ years experience in health plan compliance. - 3+ years driving compliance with regulatory and accreditation audit/policy requirements. - 3+ years experience working with regulation and translating into operational procedures. - 3+ years experience / background in a fast-paced environment. Bonus Points - Certification in Healthcare Compliance (CHC), Certified Compliance and Ethics Professional (CCEP), or similar. - Fluency with State DOI audit and/or reporting obligations. - State DOI audit management experience. - Experience in a start-up and/or health tech environment. - Experience in a TPA setting. Benefits - Medical, dental, and vision benefits. - 11 paid holidays. - Paid sick time. - Paid parental leave. - 401(k) plan participation. - Life and disability insurance. - Paid wellness time and reimbursements.

• conduct comprehensive audits and assessments on complex new and existing information systems applications • enhance GRC processes, identify areas for improvement, and promote best practices across the organization • shape Humana’s risk culture, strengthen Security Governance, and support accountability for security practices • develop and analyze metrics (Key Performance Indicators, Key Risk Indicators, etc.) and trend reports that monitor control effectiveness and compliance maturity over time • proactively address problems and regularly make technical recommendations • orchestrate cross-functional risk assessments, identify control gaps and risks in information systems • manage and track the remediation of application security vulnerabilities and penetration testing findings • participate in external audit activities, including preparation, auditor coordination, evidence management, and remediation tracking • perform formal assessments against the NIST AI Risk Management Framework of AI use cases

• Serve as a senior leader within the Global Compliance & Risk organization, advising executive leadership on gaming regulatory risk, strategy, and regulatory developments. • Act as a primary liaison with gaming regulatory authorities across jurisdictions, building and maintaining strong, transparent, and constructive relationships. • Lead regulatory engagement and strategy for new products, features, and market expansions, including preparing and presenting submissions, regulatory briefings, and product walkthroughs. • Represent DraftKings in discussions with league partners, and industry groups, ensuring regulatory alignment and advocating for practical, risk-based outcomes. • Monitor for new regulations, guidance, enforcement actions, and industry trends, translating regulatory expectations into clear internal guidance and action plans. • Proactively identify emerging regulatory risks and policy issues, developing strategies to mitigate risk while supporting innovation and customer experience. • Drive consistent and defensible regulatory positions across jurisdictions, balancing compliance obligations, regulatory expectations, and business objectives. • Serve as a senior thought leader within the organization, mentoring team members and strengthening DraftKings’ overall regulatory compliance posture.