• Investigate and contain cyber security threats • Provide best practice incident response • Become an expert in the tools used to provide our MDR service • Be at the forefront of AI detection development and its real-life application • Work on a rotating shift pattern that will consist of 4 days on/4 days off. These will be entirely day shifts, including weekends.

• Understand the customer and problem space deeply • Work with the PM team to plan product roadmap and vision • Work across engineering, product, and design to execute on specific feature implementation and development; align teams, represent the product and business needs, and assist with technical and design decisions where applicable • Work with marketing and go-to-market teams to understand feature requests and manage launches • Represent our client when speaking to customers, at external events, etc.

• The Cybersecurity Risk & Controls Engineer owns the day-to-day health of Coastal’s Security Program. • Define and maintain our enterprise control baseline aligned to the CRI Profile and FFIEC IT Examination Handbooks. • Work with control owners to implement automated and policy-aligned control processes. • Drive the Security Program Calendar to ensure time-bound and cyclical controls occur on schedule. • Perform and automate internal control testing. • Drive continuous control monitoring across cloud, identity, network, endpoint, data, and application domains. • Blend hands-on technical capability with classic GRC rigor. • Partner with Security Engineering, IT, Business Lines, Risk, Internal Audit, and Compliance.

• Define the vision and roadmap for Nebius’ security products. • Owning the ideation, postmortem, prioritization, backlog, and customer feedback processes. • Guiding new features, systems and services from inception to launch, while keeping customers at the center of everything. • Lead public-facing communications around security updates or changes in compliance status. • In the event of a security incident, coordinate user messaging (email notifications, press releases, FAQs) with support from the Head of Security Products and CISO. • Gather user feedback on user experience and security to guide continuous improvements. • Conduct ongoing research on industry benchmarks, emerging security standards and technologies, and competitor certifications. • Identify gaps and opportunities in organization’s product security posture; propose strategic initiatives that differentiate the company’s security story in the market. • Stay informed about new regulations or frameworks that may influence future product certifications or transparency requirements (e.g., privacy laws, data sovereignty standards). • Collaborate with the CISO office to gather technical evidence or make necessary product enhancements that satisfy certification requirements. • Take ownership of some security-related services of Cloud platform. • Track and maintain a certification roadmap (ISO 27001, SOC 2, HIPPA, etc.), working closely with CISO, GRC & Compliance, Corporate Security departments. Communicate timelines, goals and status updates to leadership and sales representatives. • Coordinate with multiple Product Managers to align security goals with other product roadmaps, ensuring a consistent narrative between product security and external messaging. • Work with Platform Security, GRC & Corporate Security and legal teams to gather essential information for security products enhancements (e.g., penetration test summaries, compliance reports). • Work with Customer-facing teams to address client inquiries about security posture and guide them on using security features optimally.