Who We Are: IMG is a leading global sports marketing agency, specializing in media rights management and sales, multi-channel content production and distribution, brand partnerships, strategic consulting, digital services, and events management. It powers growth of revenues, fanbases and IP for more than 200 federations, associations, events, and teams, including the National Football League, English Premier League, International Olympic Committee, National Hockey League, Major League Soccer, ATP and WTA Tours, the AELTC (Wimbledon), Euroleague Basketball, CONMEBOL, DP World Tour, and The R&A, as well as UFC, WWE, and PBR. IMG is a subsidiary of TKO Group Holdings, Inc. (NYSE: TKO), a premium sports and entertainment company. TKO Group Holdings, Inc. (NYSE: TKO) is a premium sports and entertainment company. TKO owns iconic properties including UFC, the world’s premier mixed martial arts organization; WWE, the global leader in sports entertainment; and PBR, the world’s premier bull riding organization. Together, these properties reach 1 billion households across 210 countries and territories and organize more than 500 live events year-round, attracting more than three million fans. TKO also services and partners with major sports rights holders through IMG, an industry-leading global sports marketing agency; and On Location, a global leader in premium experiential hospitality. Infrastructure Lead acts as the senior onsite technical authority and IT Incident Commander of all IT matters while at site, migration related or otherwise. Leads Windows application migrations, absorbs Helpdesk and project escalations, triages concurrent incidents in real time, and maintains operational control during cutovers. Shields Quest migration engineer from noise while continuously improving tactics and playbooks. This role requires exceptional situational awareness, extremely high technical aptitude, decisive judgment under pressure, and the ability to manage chaos in ambiguous migration scenario. What You’ll Do- • Act as the senior onsite IT authority and Incident Commander during migrations • Lead Windows application migrations tied to the project • Absorb and triage escalations from Helpdesk, project teams, and stakeholders • Serve as the final onsite escalation point for all IT issues, migration-related or otherwise • Manage multiple concurrent incidents while maintaining a global view of migration health • Monitor, assign, and work Hypercare ServiceNow Assignment Group incidents • Continuously refine escalation paths, playbooks, and migration tactics What Success Looks Like • Operational issues are contained onsite • Systemic problems are identified and mitigated early • Migration execution quality improves consistently • Stakeholder confidence remains high during cutovers What We’re Looking For- • Senior-level Windows infrastructure and application migration experience • Proven experience operating in high-pressure incident or cutover environments • Strong judgment, composure, and decision-making under ambiguity • Experience supporting enterprise migrations, M&A programs, or complex IT transformations TKO EEO Statement: TKO is an Equal Opportunity Employer and complies with all applicable federal, state, and local laws regarding non-discrimination in employment. TKO makes employment decisions based on merit and qualifications, without considering an employee’s or applicant’s race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, marital status, veteran status, or any other basis prohibited under federal, state or local laws governing non-discrimination in employment in every location in which the Company has facilities. TKO also provides reasonable accommodations for qualified individuals with disabilities in accordance with the Americans with Disabilities Act (ADA) and applicable state or local laws. For information about Privacy and Information Security for TKO employment candidates, please review our Privacy Policy. For information regarding Terms of Use for this and other TKO websites, please review our Terms of Use.

Role Description We are seeking a Senior Cloud Infrastructure Engineer (Azure) with 10+ years of experience in enterprise cloud architecture, security, networking, and automation. This role is infrastructure-centric but modernization-focused, with a strong emphasis on the Azure Well-Architected Framework, Defender for Cloud posture management, and compliance (e.g., CIS Benchmarks, ISO/NIST). You will act as a technical driver to design and operate secure-by-design Azure environments based on Zero Trust principles, lead the architectural transition of legacy applications to modern standards, and implement robust network segmentation. You should have expert-level IaC (Terraform), deep knowledge of Azure networking and identity, and hands-on experience with Azure API Management (APIM), private endpoints, private DNS zones, and migrating legacy authentication to OAuth2 workflows. This is a role for a self-driven engineer who thrives in a fast-changing, fast-paced environment, can handle multiple projects at once, manage stressful situations, meet tight timelines, and deliver on time. Key Responsibilities - Infrastructure Design & Management - Architect and deploy Azure infrastructure aligned with the Azure Well-Architected Framework and Zero Trust security-first architecture principles. - Drive the infrastructure refactoring of .NET applications, including implementing Azure API Management to wrap legacy monoliths with modern security (OAuth2) and throttling policies. - Design hub-and-spoke network topologies, implement Private Endpoints, Private DNS Zones, and configure NSGs, route tables, and firewall rules to strictly isolate production workloads. - Architect the transition from legacy SMTP dependencies to modern, API-driven transactional email services (e.g., SendGrid integration) to ensure high deliverability and reliability. - Ensure robust network connectivity and performance, including Azure Load Balancer and Application Gateway for high availability. - Design and maintain disaster recovery strategies, multi-region failover, and backup solutions. - Security & Compliance - Implement and maintain security measures to protect data and infrastructure from threats, specifically focusing on PaaS hardening (SQL TDE, Storage Account Firewalls). - Apply Defender for Cloud and CIS Benchmarks to strengthen security posture and automate compliance reporting. - Configure Azure Entra ID, Azure AD B2C (Azure Entra External ID), Privileged Identity Management (PIM), and Just-In-Time (JIT) access controls to enforce least-privilege access. - Ensure compliance with ISO 27001, NIST, and familiarity with ISO 42001 for AI governance. - Automation & IaC - Drive pragmatic Terraform practices for infrastructure-as-code, creating modular, reusable code that prioritizes speed of delivery and maintainability over complexity. - Automate manual processes to improve efficiency and reduce errors across provisioning and configuration management. - Monitoring, Incident Management & On-Call - Implement centralized logging and monitoring solutions using Azure Monitor, Log Analytics, Application Insights, and New Relic to provide end-to-end visibility. - Integrate logs with Microsoft Sentinel and other SIEM platforms for real-time security and compliance visibility. - Lead incident management, root cause analysis, and preventive actions for critical infrastructure outages. - Participate in escalation and on-call rotations for product support, ensuring timely resolution of critical infrastructure issues. - Collaboration, Documentation & Knowledge Management - Collaborate with development and operations teams to bridge the gap between legacy code requirements and modern infrastructure standards. - Maintain comprehensive documentation, runbooks, and knowledge articles to support continuity and compliance. - Provide training and mentorship, leveraging 10–15 years of experience in knowledge management and best practices for enterprise-scale environments. Qualifications - Bachelor’s degree in Computer Science, IT, or equivalent experience. - 10+ years in cloud infrastructure engineering with expert-level Azure experience. - Expert-level proficiency in architecting enterprise-scale Azure Networking using Hub-and-Spoke topology, including advanced configuration of Azure Firewall/WAF, VNET peering, Hybrid Connection (VPN/ExpressRoute) and implementing Zero Trust connectivity for PaaS resources via Private Link, Private Endpoint and Private DNS Zones. - Proven expertise in Modernization: Demonstrated ability to implement Azure API Management, refactor legacy authentication flows (OAuth2), and modernize database security (TDE/Private Link). - Strong experience with Terraform (IaC) and automation frameworks. - Familiarity with Defender for Cloud, CIS Benchmarks, and centralized logging solutions. - Experience handling escalations and on-call responsibilities for critical infrastructure. Technical Skills - Azure services: Azure API Management (APIM), VMs, App Services (Containers), Azure SQL, Storage, Private Link, Private DNS, Azure Load Balancer, Application Gateway. - Networking: Hub-and-spoke, NSGs, route tables, Azure Firewall, VNET Peering. - Identity & Security: Azure Entra ID, Azure AD B2C, PIM/JIT, OAuth2/OIDC, Key Vault, SQL TDE. - Monitoring & Logging: Azure Monitor, Log Analytics, Application Insights, SIEM (Sentinel) integration. - Compliance: CIS Benchmarks, ISO/NIST frameworks. - Tooling: Terraform, Azure DevOps, Git, PowerShell/Az CLI. Soft Skills - Self-driven Finisher: Adaptable to fast-changing environments with a focus on closing tickets and delivering projects. - Ability to handle multiple projects, manage stress, and deliver on time. - Strong communication and documentation skills. Preferred Certifications - Microsoft Certified: Azure Solutions Architect Expert (AZ-305) - Microsoft Certified: Azure Administrator (AZ-104) - HashiCorp Certified: Terraform Associate Our core values: - Make sound decisions: We put ourselves in our customer's shoes, always ensuring we have the right facts and focus on solving the right problems. - Act like an owner: No matter the challenge, we overcome hurdles, seek out solutions, and follow through on commitments to consistently exceed expectations. - Get better every day: With our growth mindset and positive attitude, we apply our passion for innovation not just to our products, but also to ourselves. - We before me: Our collaborative spirit pushes us to act without ego, to communicate openly and honestly, and to win as a team. Benefits - Competitive salary and discretionary bonus - Flexible work environment - Career growth - Monthly team events - Industry-leading benefits plan

• Design, build, and operate core cloud infrastructure across compute, storage, databases, and networking layers. • Own and improve the reliability, scalability, and security of Valon’s production systems as we scale to support major enterprise deployments. • Evaluate, adopt, and operationalize new infrastructure technologies (e.g., Vitess, Clickhouse, Redis) to meet evolving product and scale requirements. • Collaborate with product engineering, platform, and operations teams to define infrastructure solutions that unlock product innovation and operational efficiency. • Participate in on-call rotations and incident response, driving improvements to system observability, alerting, and reliability practices. • Contribute to architectural decisions and technical strategy for the platform, with an emphasis on pragmatic, well-reasoned trade-offs. • Mentor teammates through code reviews, design discussions, and knowledge sharing.

• Set technical direction for cloud infrastructure at Valon, defining the architecture, standards, and roadmap for compute, storage, databases, and networking. • Lead the design and execution of complex, cross-cutting infrastructure initiatives—from new data store adoption to novel deployment architectures for enterprise customers. • Own the reliability, scalability, and security posture of Valon’s production infrastructure, driving systemic improvements across the stack. • Serve as a key technical partner to engineering leadership, product, and operations—translating business requirements into infrastructure strategy and ensuring alignment across teams. • Drive architectural decisions through design docs, RFCs, and technical reviews, setting a high bar for rigor and clarity. • Mentor and elevate the team through code reviews, design guidance, and active knowledge sharing, raising the overall technical bar. • Contribute to incident response and on-call, using incidents as opportunities to drive meaningful reliability improvements. • Identify and advocate for long-horizon infrastructure investments that position Valon for the next phase of scale and customer growth.