• Develop and lead the company-wide information security strategy aligned to business goals. (Annual planning; ongoing oversight) • Establish and manage the risk management program, including regular reporting to executive leadership. (Quarterly reporting; ongoing monitoring) • Own SOC 2 Type 2, NIST 800-171, and other required audits end-to-end. (Annual; intensive during audit windows) • Serve as the primary point of contact for auditors and ensure continuous audit readiness. (Ongoing) • Maintain and evolve security policies, standards, and controls, including AI/LLM governance. (Quarterly review; updates as needed) • Lead incident response planning and periodic tabletop exercises. (Annual/Semi-Annual) • Partner with Engineering to ensure secure architecture, SDLC, and cloud security practices. (Ongoing) • Oversee vulnerability management, access controls, and vendor risk management. (Ongoing) • Lead customer security assurance efforts, including questionnaires and enterprise security discussions. (As needed)

• Design, build, and maintain cryptographic services used by platforms and applications across Netflix. • Develop features and enhancements for our Crypto-as-a-Service platform, PKI, and certificate lifecycle management tools. • Collaborate closely with cross-functional partners to deliver secure, reliable, and developer-friendly solutions. • Participate in our on-call rotation, supporting high-availability services that are critical to Netflix’s security posture. • Help drive our vision to centralize and standardize cryptographic solutions for repeatable, broadly applicable use cases.

Role Description We are hiring a Data Engineer to build our data platform across our Cyber Security value chain. This includes Security and Sales management. You will be the go-to partner for Stakeholders, Research team and Data Science team requiring Cyber Security related Data. As a Data Engineer, you will design and develop our data lifecycle, transforming raw data into high-performance data products. You will build and scale our Medallion Architecture on Snowflake, utilizing dbt to ensure our data is clean, modeled, and ready for both business intelligence in Looker and advanced AI/ML applications. Responsibilities - Data Modeling & Architecture: Design and implement robust Star Schema models within a Medallion Architecture (Bronze/Silver/Gold) to support complex Cyber Insurance and Cyber Security analytics. - Pipeline Engineering: Build scalable ELT pipelines using Snowflake and dbt, ensuring high data quality and observability. - Monitoring & Observability: Define and implement critical SLIs—specifically around data freshness, volume, and schema integrity. Build automated alerting to ensure SLOs are met. - BI Enablement: Develop and maintain the LookML semantic layer for business stakeholders. - Security & Compliance: Implement data masking, RBAC, and secure data handling practices. - Engineering Excellence & Mentorship: Act as a technical peer helping the team level up through Code Reviews and sharing dbt/Python best practices. - AI Integration: Build feature stores and data foundations for AI-driven risk scoring and automated underwriting. Qualifications - BI Tools: Experience with Looker (LookML). - Modern Tooling: Active user of Cursor or other AI-assisted coding environments. - Industry Experience: Prior experience in Cybersecurity or Cyber Insurance. - AI/ML Interest: Experience building data foundations for AI Agents. Compensation Our compensation reflects the cost of labor across several US geographic markets. The US base salary for this position ranges from $115,900.00/year in our lowest geographic market up to $155,250.00/year in our highest geographic market. Consistent with applicable laws, an employee's pay within this range is based on a number of factors, which include but are not limited to relevant education, skills, job-related knowledge, qualifications, work experience, credentials, and/or geographic location. Your recruiter can share more on target salary for your location during the interview process. Coalition, Inc. reserves the right to modify this range as needed. Benefits - 100% medical, dental and vision coverage. - Flexible PTO policy. - Annual home office stipend and WeWork access. - Mental & physical health wellness programs (One Medical, Headspace, Wellhub, and more)! - Competitive compensation and opportunity for advancement.

• Conduct thorough risk assessments of third-party vendors to identify potential cybersecurity threats. • Regularly monitor vendor compliance with established cybersecurity protocols. • Develop and maintain comprehensive cybersecurity policies and procedures that address third-party risk management. • Ensure these policies align with industry standards and regulatory requirements. • Collaborate with the vendor management team to integrate cybersecurity risk considerations into the vendor selection and onboarding processes. • Implement strategies and controls to mitigate identified cybersecurity risks associated with third-party vendors. • Develop action plans to address vulnerabilities and ensure continuous improvement. • Establish and manage processes for responding to cybersecurity incidents involving third-party vendors. • Coordinate with internal and external stakeholders to effectively manage and resolve incidents. • Maintain accurate and comprehensive documentation of all third-party risk management activities. • Prepare regular reports on the status of third-party cybersecurity risks and mitigation efforts. • Engage with internal and external stakeholders to ensure effective communication and collaboration on third-party risk management. • Provide regular updates to senior management and relevant committees.