If you have an interest in being part of one of the fastest growing industries in the nation in you may consider wanting to work for Trulieve! If you have a desire to help others in need through your efforts, this may be the role for you! At Trulieve, we strive to bring our patients the relief they need in a product they can trust. Our plants are hand-grown in an environment specially designed to reduce unwanted chemicals and pests, keeping the process as natural as possible at every turn. Our products are designed to alleviate seizures, severe and persistent muscle spasms, pain, nausea, loss of appetite, and other symptoms associated with serious medical conditions such as cancer. Our specially trained staff works hand-in-hand with physicians to provide the right products and the correct dosage to ensure patients get the compassionate care they need. To learn more about our company, please visit our website; https://www.trulieve.com Requisition ID: 18441 Remote Work Available: Yes Job Title: Senior Information Security Manager Department: Information Security Location: Remote Reports to: Information Security Director FLSA Status: Exempt Regular Full-Time Role Summary: The Senior Information Security Manager is responsible for overseeing one of the key areas of the Information Security Department, ensuring that all technological initiatives meet Trulieve's security standards and requirements. This role involves managing the Cybersecurity Operations Centre (CSOC), and planning, directing, and controlling the CSOC functions and operations. The Senior Information Security Manager will monitor and analyze incidents to protect people, technology, and processes, addressing all security incidents and ensuring timely escalation. They will be accountable for securing Trulieve’s information by using their extensive experience to assess systems, identify, develop, and implement additional tools as needs evolve. This role requires a strategic approach to transforming Trulieve’s infrastructure security through designing and implementing advanced security technologies across the network. The role of the Senior Information Security Manager is to be business customer-facing and to play an active role in transforming Trulieve’s infrastructure security through designing and implementing security technologies across the network. Key Duties and Responsibilities: - Develop and execute SOC strategy, plan, and lead the Information Security Operations team to ensure stable operation of the function. - Direct security event monitoring, management, and response, and oversee cyber intelligence efforts. - Establish and refine incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring processes. - Ensure compliance with policies, processes, and procedures, and drive process improvements to achieve operational objectives. - Align corporate and security strategic goals with ongoing initiatives. - Apply a disciplined and systematic approach to all tasks. - Leverage broad experience with technical engineering and design to enhance security measures. - Revise and develop processes to strengthen the Security Operations framework, review policies, and address challenges in managing SLAs. - Lead the team and manage the overall use of resources and initiate corrective actions for the Cybersecurity Operations Center as needed. - Validate daily management, administration, and maintenance of security devices to achieve operational effectiveness. - Create threat management and modeling, identify threat vectors, and develop use cases for security monitoring. - Escalate and manage cybersecurity risk, threats, and protection. - Develop comprehensive reports, dashboards, and metrics for CSOC operations and present them to management. - Guide the team in detecting critical deficiencies and recommending technical solutions for continuous improvement. - Collaborate with IT and Security leadership and cross-functional teams to develop strategies and plans to enforce security requirements and address identified risks. - Demonstrate strong organizational skills and problem-solving expertise while working with current and emerging technologies. - Serve as a subject matter expert for colleagues, providing insights on multiple technologies, compliance requirements, and risk analysis methodologies. Skills and Qualifications: - Bachelor’s degree in Computer Science, Engineering, Information Technology, or a related discipline. - A minimum of ten (10) years of experience in Information Security, and three (3) years of management experience leading IS teams with a deep understanding of implementing security best practices, architecture, and security management. - Background in managing the Cybersecurity Operations Center. - Extensive knowledge of security frameworks such as ISO 27001, NIST, CIS, etc. - Familiarity with compliance requirements such as SOX and others. - At least one advanced security certification (CISSP, CISM, or equivalent). - Proven experience leading the installation, configuration, and deployment of security tools, including project management roles. - Expertise in managing security tools such as firewalls (IDS/IPS/WAF), vulnerability management, and endpoint security. - Experience in developing and implementing incident response plans. - Self-motivated, organized, and capable of managing multiple responsibilities and driving concurrently conducted projects to successful completion. - High sense of urgency with strong pragmatic problem-solving skills and the ability to identify, analyze, and resolve problems. - Relationship-building skills to successfully interact with collaborators across all levels and all parts of the organization. - Excellent communication and leadership skills. - A solid customer-focused mindset. Work Schedule: - 40+ hours weekly with flexible hours depending on department needs. Equal Opportunity Employer / Trulieve Supports a D Salary will be commensurate with experience. A comprehensive benefits package including paid time off is offered with this position. Trulieve provides equal employment opportunities to all employees and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, pregnancy or any other characteristic protected by federal, state or local laws.

• Lead and manage multiple cloud cost optimization and security vulnerabilities management projects • Develop project plans, timelines, and budgets • Implement best practices for cloud cost management • Monitor and report on cloud spending • Conduct regular security audits and assessments • Communicate project status, risks, and opportunities to senior management

Job Summary: WHO ARE WE? Live Nation Entertainment is the world’s leading live entertainment company, comprised of global market leaders: Ticketmaster, Live Nation Concerts, and Live Nation Media & Sponsorship. Ticketmaster is the global leader in event ticketing with over 620 million tickets sold annually and approximately 10,000 clients worldwide. Live Nation Concerts is the largest provider of live entertainment in the world promoting more than 50,000 events annually for nearly 7,000 artists in 40+ countries. These businesses allow Live Nation Media & Sponsorship to create strategic music marketing programs that connect more than 1,200 sponsors with the 145 million fans that attend Live Nation Entertainment events each year. For additional information, visit www.livenationentertainment.com. WHO ARE YOU? Passionate and motivated. Driven, with an entrepreneurial spirit. Resourceful, innovative, forward thinking and committed. At Live Nation Entertainment, our people embrace these qualities, so if this sounds like you then please read on! THE ROLE We are searching for a Lead Cybersecurity Engineer to join our expanding security operations team at Live Nation Entertainment. This role focuses on engineering detection and incident response capabilities. Key responsibilities include developing automated incident response playbooks and engineering high-fidelity detections within SIEM, EDR and cloud environments. The position also entails engineering and implementing security tools, security controls, and infrastructure in collaboration with system owners. The role would work closely with cyber threat intelligence analysts to develop detections to evolving threat actor TTPs WHAT THIS ROLE WILL DO​ - Collaborate with security analysts to create playbooks for triage and response for high fidelity detections. - Lead the development of orchestrations and automations that significantly reduce manual tasks - Perform expert-level intrusion and/or defensive analysis - Develop automated incident response playbooks. - Evaluate and improve current monitoring and detection capabilities to identify areas for improvement. - Engineer detections with SIEM and XDR using various query languages. - Engineer and implement security controls based on industry standards while continuously evaluating and enhancing our security infrastructure. - Collaborate with system owners to architect, configure, and implement security monitoring and defense tools to safeguard against security breaches, cyber threats, and unauthorized access. - Conduct adversary simulation testing and vulnerability scanning. - Assist in analyzing large and complex datasets to uncover anomalous behavior and potential threats. - Support the deployment and implementation of various security tools and technologies WHAT THIS PERSON WILL BRING: - 5+ years working in a security operations role - 5+ years of writing custom SIEM detection queries and security automation logic - Experience working multiple concurrent operating environments - Advanced knowledge of the signals of both insider and external threat actors, their tactics and procedures, and how they evolve or change over time. - SME level knowledge of current cyber threats and how to detect them using SIEM, XDR, EDR, and cloud technologies. - Detection Development - Detection Enablement - Detection Effectiveness (Tuning, Validation, etc.) - Advanced usage of at least one query language(KQL, Splunk, CQL, SQL) and the ability to understand, analyze, and write code. - Thorough understanding of Identity Platforms—EntraID, Okta, CyberArk and major public cloud vendors—Azure, OCI, AWS, and GCP, both for development of detections, support investigations and determine secure solutions. - Work well under pressure and within time/budget constraints to solve problems or meet objectives. - Strong problem-solving and analytical thinking skills. - Strong curiosity and a desire to learn. - Ability to contribute in a collaborative global environment and team. - Ability to identify and address gaps in security telemetry and monitoring required - Capable of developing metrics reporting to support cyber operations teams - Proven experience investigating and responding to security incidents, contributing to post-incident analysis, and remediation efforts; across multiple environments - Willingness to work in an on-call rotation to support major incident response - Excellent analytical and problem-resolution skills - Ability to work independently, set own goals, work multiple tasks, and develop and train team members within a globally distributed environment required WHY JOIN OUR TEAM: - A collaborative and inclusive environment focused on mentorship, diversity of thought, and continuous growth. - Remote-friendly and flexible work culture. - Exposure to a wide range of threat landscapes across live entertainment, e-commerce, and cloud infrastructure. - A chance to directly shape the maturity and impact of Live Nation’s global threat intelligence function. BENEFITS & PERKS Our motto is ‘Taking Care of Our Own’ through 6 pillars of benefits: - HEALTH: Medical, vision, dental and mental health benefits for you and your family, with access to a health care concierge, and Flexible or Health Savings Accounts (FSA or HSA) - YOURSELF: Free concert tickets, generous paid time off including paid holidays, sick time, and personal days - WEALTH: 401(k) program with company match, stock reimbursement program - FAMILY: New parent programs including caregiver leave and baby bonuses, plus fertility, adoption, foster, or surrogacy support - CAREER: Career and skill development programs with School of Live, tuition reimbursement, and student loan repayment - OTHERS: Volunteer time off, crowdfunding match EQUAL EMPLOYMENT OPPORTUNITY We aspire to build teams that reflect and support the fans and artists we serve. Every day we aim to promote environments where everyone can be themselves, contribute fully, and thrive within our company and at our events. As a growing business we will encourage you to develop your professional and personal aspirations, enjoy new experiences, and learn from the talented people you will be working with. Live Nation is an equal opportunity employer. It hires and promotes employees based on their experience, talent, and qualifications for the job and does not tolerate discrimination toward employees based on age (40 and over), ancestry, color, religious creed (including religious dress and grooming practices), family and medical care leave or the denial of family and medical care leave, mental or physical disability (including HIV and AIDS), marital status, domestic partner status, medical condition (including cancer and genetic characteristics), genetic information, military and veteran status, political affiliation, national origin (including language use restrictions), citizenship, race, sex (including pregnancy, childbirth, breastfeeding and medical conditions related to pregnancy, childbirth or breastfeeding), gender, gender identity, and gender expression, sexual orientation, intersectionality, or any other basis protected by applicable federal, state or local law, rule, ordinance or regulation. We will consider qualified applicants with criminal histories in a manner consistent with the requirements of the Los Angeles Fair Chance Ordinance, San Francisco Fair Chance Ordinance and the California Fair Chance Act and consistent with other similar and / or applicable laws in other areas. Live Nation affords equal employment opportunities to qualified individuals with a disability. For this reason, Live Nation will make reasonable accommodations for the known physical or mental limitations of an otherwise qualified individual with a disability who is an applicant or an employee consistent with its legal obligations to do so. As part of its commitment to make reasonable accommodations, Live Nation also wishes to participate in a timely, good faith, interactive process with a disabled applicant or employee to determine effective reasonable accommodations, if any, which can be made in response to a request for accommodations. Applicants and employees are invited to identify reasonable accommodations that can be made to assist them to perform the essential functions of the position they seek or currently occupy. Any applicant or employee who requires an accommodation in order to perform the essential functions of the job should contact either the hiring manager for the role or a Human Resources representative to request the opportunity to participate in a timely interactive process. HIRING PRACTICES The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Live Nation recruitment policies are designed to place the most highly qualified persons available in a timely and efficient manner. Live Nation may pursue all avenues available, including promotion from within, employee referrals, outside advertising, employment agencies, internet recruiting, job fairs, college recruiting and search firms. #LI-EF1 #LI-SM1 #LI-RemoteUnitedStates Live Nation Entertainment will never request payment or equipment purchases as part of the hiring process. Recruiters will only contact candidates from official Live Nation or affiliated brand email domains.

• Design, improve, and maintain secure, durable, and performant infrastructure to power applications, security tooling, log collection, and data mining/ETL workflows. • Evolve log collection, processing, and storage infrastructure enabling security monitoring and investigations. • Support multi-account and multi-region AWS networking architectures with security-first principles. • Develop and maintain Splunk detection content aligned to the relevant frameworks and evolving threat intelligence. • Administer the Splunk Cloud platform, including search health, log health, and app, platform, and content updates. • Design and implement SOAR playbooks to automate investigation and response workflows. • Integrate infrastructure security tooling and automation to enhance detection, prevention, and response capabilities. • Build and maintain detection-as-code and automated deployment pipelines to ensure consistency, repeatability, and auditability. • Continuously refine detection logic to reduce false positives and increase signal quality. • Implement and operate security technologies across the enterprise, such as an endpoint security platform. • Support incident response and investigation escalations. • Proactively meet standards for information security and compliance, such as SOC 2/ISO27001. • Implement and uphold security measures across all infrastructure components. • Work cross-functionally with Product, IT, DevOps, and Engineering teams to drive secure-by-default practices. • Drive architectural and design decisions for SpyCloud’s detection program and platforms. • Mentor junior engineers and establish best practices across infrastructure and detection engineering domains.