# Corporate Security

<details>

<summary>HR Security</summary>

Coherent employees undergo an extensive third-party background check before formal employment offers. In particular, employment, education, and criminal checks are performed for potential employees.&#x20;

Upon hire, all employees must read and acknowledge Coherent’s Corporate Acceptable Use Policy (AUP), Code of Conduct, Non-Disclosure agreement on IP, and Annual Infosec Training, which helps to define employee's security responsibilities in protecting company assets and data.

</details>

<details>

<summary>Security Awareness Program </summary>

We consider employees to be our first line of defense, and we ensure that our employees are trained for their roles.&#x20;

Coherent employees must complete security awareness training as part of their onboarding, and training is made available annually thereafter. In addition to general awareness training, Coherent conducts phishing awareness simulations at least annually, and provides additional role-based training for certain roles.

</details>

<details>

<summary>Vendor Management</summary>

We leverage several third-party service providers to support the development, maintenance, and support of our product as well as internal operations.&#x20;

We maintain a vendor management program to ensure that appropriate security and privacy controls are in place. The program includes inventorying, tracking, and reviewing the security programs of the vendors.

Comprehensive due diligence is performed before finalizing a vendor that covers security, privacy, and compliance with the applicable laws.

</details>

<details>

<summary>Security Operation Center (SOC)</summary>

Coherent’s Security Operations Center (SOC) team provides 24x7x365 coverage to respond quickly to critical security and privacy events.&#x20;

Coherent’s incident management policy and procedures are designed to Identify, investigate, respond to, mitigate, and notify of events related to Coherent’s technology and information assets.&#x20;

Employees shall use the internal support portal or email <soc-coherent@coherent.global> to report security incidents.

Our customers and external parties can submit security incidents via the [Spark Support Portal](https://coherentglobal.atlassian.net/servicedesk/customer/portal/5) or email <soc-coherent@coherent.global>.

Our security leadership team reviews all security-related incidents, either suspected or proven, and we coordinate with affected customers using the most appropriate means, depending on the nature of the incident.

</details>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.coherent.global/trust-center/coherent-trust-center/corporate-security.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.