See Yourself at Telix The Senior Director, Global Security and Resiliency is a business-critical role responsible for the development, implementation and execution of global physical security and resiliency programs across all Telix sites, processes, products, and third-party partners, as relevant. This role will operate at both strategic (vision, strategy and planning across short and long-term timeframes), and tactical (execution and continuous improvement) levels, and will need to partner cross-functionally with stakeholders across the business at all levels, inclusive of C-Suite executives. Telix has implemented elements of both physical and resiliency programs, and this role provides the opportunity to further build and improve on those elements to implement programs that ensure the safety and security of Telix’s people, patients, value-chains and assets. This is a highly visible role within Telix reporting directly to the Senior Vice President of Risk, Sustainability and Environmental Affairs. For the right person, this role provides a unique opportunity to design, build, implement and manage world-class physical security and resiliency programs. Key Accountabilities:   Global Physical Security - - Provide strategic leadership for the Global Security program, including vision, strategy, and planning across short and long-term timeframes. - Serve as the primary subject matter expert in all areas of physical security, from asset hardening (cameras, alarms, ), to access control systems, visitor access, travel security, executive protection, event security, and emergency/incident response and management. - Develop and maintain all physical security policies, standards and SOPs, and related KPIs for the business, ensuring best in practice and risk-based controls and systems. - Assess physical security risk and recommend/implement appropriate and risk-based mitigations, including but not limited to upscaling physical security capabilities at Telix sites, implementing travel risk policies, monitoring and tracking security events that may impact Telix people and assets, event security assessments, and other as relevant. - Setup and oversee a virtual security operations center (VSOC) to support all security operations and events within the existing Telix risk, resiliency, and security technology platform. - Develop and implement threat intelligence capability to identify potential physical security events before they happen and provide appropriate guidance and support as needed. - Lead awareness, engagement and training efforts across the business to strengthen proactive and safe business - Ensure Telix maintains compliance with all related regulations and - Selection/oversight/management of all physical security third-party partners, as - Oversee security incident reporting and response, and partner closely with EHS, HR, Legal, and other functions as necessary to manage investigations, actions, CAPAs etc. Global Resiliency - - Provide strategic leadership for the Telix Business Resiliency System, including vision, strategy, and planning across short and long-term timeframes. - Mature and continue to implement all elements of the Telix Business Resiliency System, in close partnership with the SVP, Risk, Sustainability and Environmental Affairs, and functional leadership across the business, including Emergency Response, Incident Management, Crisis Management, and Business Recovery/Continuity Planning. - Partner closely with the IT team to drive alignment with Disaster Recovery planning. - Serve as Crisis Management coordinator for the business, alongside/in partnership with the SVP, Risk, Sustainability and Environmental Affairs. - Serve as primary subject management expert across all elements of the Telix Business Resiliency System. - Setup and oversee business resiliency within the existing Telix risk, resiliency, and security technology platform. - Develop and implement threat intelligence capability to proactively identify potential disruptive events before they happen and provide appropriate guidance and support as needed. - Lead awareness, engagement and training efforts across the business to strengthen understanding of and compliance with the Business Resiliency System. - Ensure Telix maintains compliance with all related regulations and standards. - Selection/oversight/management of all business resiliency partners, as relevant. - Partner with functional leadership across the business to ensure adherence to all business resiliency system requirements, including building, maintaining, and exercising plans. - Maintain/develop all physical security policies, standards and SOPs, and related KPIs for the business, ensuring best in practice and risk-based controls and systems. Education and Experience: - Bachelor’s degree in related - 10+ years of progressive physical security and/or business resiliency experience in pharmaceutical, biotech, manufacturing, or related highly regulated industries. - 5+ years experience building and leading physical security and/or business resiliency - Demonstrated experience supporting businesses with large, global - Demonstrated experience successfully working cross-functionally in complex matrix - Demonstrating experience leading teams in high stress/crisis - Strong knowledge of physical security standards and - Excellent, proven communication and leadership skills, with ability to influence at all organizational - Ability to maintain and project calm, make clear decisions, and lead across all levels of the organization in high-stress - Knowledge of related global standards, including ISO 22301, ISO 22320, BCI Good Practice Guidelines, ICS, ASIS Standards, others as relevant. Preferred - PSP, CBCI/CBCP and/or other related - Advanced degrees in related - Experience leading GSOC/VSOC operations Key Capabilities: - Inclusive mindset: Demonstrate an understanding and appreciation for diversity, and actively work to create an inclusive environment where everyone feels valued and respected - Creativity and innovation: Possess a willingness to think outside the box and come up with unique and creative solutions to challenges - Commitment to excellence: Take pride in your work and consistently strive for excellence in everything you do - Results-oriented: Driven to achieve goals and objectives, with a strong focus on delivering measurable results - Ethical behavior: Act with integrity and demonstrate a commitment to ethical behavior in all interactions with colleagues and stakeholders - Adaptability: Comfortable working in a dynamic environment, able to adjust to changing priorities, and willing to take on new challenges - Strong communication skills: Able to communicate effectively with colleagues and stakeholders at all levels, using clear and concise language - Collaboration: Work effectively as part of a team, actively sharing knowledge and expertise to achieve common goals - Resilience: Demonstrate the ability to bounce back from setbacks and persevere in the face of challenges - Continuous learning: Show a commitment to ongoing learning and professional development, continually seeking out opportunities to expand your knowledge and skills

• Support daily SOC operations (Tier 1). • Assist in monitoring security alerts. • Assist in the initial analysis of offenses in tools such as IBM QRadar. • Perform basic triage and validation of alerts under supervision. • Help identify potential false positives. • Support incident documentation and evidence collection. • Collaborate with the technical team on incident investigations.

• Utilizing programming tools to test devices, configuration, and code, providing risk assessments for vulnerabilities, and reporting on the overall quality of current security standards • Work closely with Geotab software developers, the broader Security team, and global strategic initiative stakeholders • Leverages security expertise in Hardware and Embedded Development • Conduct device, cloud infrastructure or web application and code testing for all systems and applications, open source dependencies, and provide analysis and risk assessments for vulnerabilities discovered • Conducts focused information security research and makes recommendations on changes within department and company • Utilize code analysis and fuzzing tools to assess the quality and security of source code • Provide recommendations on tools to address any gaps in coverage as well as defining and implementing security technical and process improvements • Contribute to secure device configuration, infrastructure design and coding standards (involves developing secure coding training for current and future developers) • Conduct manual code reviews for all systems and code changes for a given device, system or application release, providing both a detailed risk analysis of the security posture of the code and technical programming solutions (secure coding standards) to the developers to mitigate insecure code from being implemented • Provide reporting on overall quality of device, infrastructure configuration or source code from a security perspective by project/team (includes trend analysis, defects found, defects remediated, and time to remediate) • Triages and handles/escalates security issues within area of expertise • Support Geotab global strategic initiatives • Participate in candidate interviews during hiring process

• Utilize programming tools to test devices, configuration, and code • Provide risk assessments for vulnerabilities • Report on the overall quality of current security standards • Work closely with Geotab software developers, the broader Security team, and global strategic initiative stakeholders • Conduct device, cloud infrastructure or web application and code testing for all systems and applications, open source dependencies, and provide analysis and risk assessments for vulnerabilities discovered • Leverage security expertise in Hardware and Embedded Development • Conduct focused information security research and make recommendations on changes within department and company • Utilize code analysis and fuzzing tools to assess the quality and security of source code • Provide recommendations on tools to address any gaps in coverage as well as defining and implementing security technical and process improvements • Contribute to secure device configuration, infrastructure design and coding standards • Conduct manual code reviews for all systems and code changes for a given device, system or application release • Provide reporting on overall quality of device, infrastructure configuration or source code from a security perspective by project/team • Triages and handles/escalates security issues within area of expertise • Support Geotab global strategic initiatives • Participate in candidate interviews during the hiring process