Senior Security Engineer, Application Security
Los Gatos, California
Netflix has a unique and innovative culture that guides us to do things differently. This helps keep engineering velocity high, but also means that our security team needs to operate differently than a traditional security team. The two important aspects of the culture that affect how we operate are “Freedom and Responsibility” and “Context not Control”. Employees have tremendous freedom in their work, along with the corresponding responsibility to do the right thing for Netflix. Instead of controlling engineers with process and security gates, we enable them to create secure code and provide them with adequate security context to make the right decisions for Netflix.
We are responsible for improving the security of Netflix produced software, primarily for applications deployed within our AWS cloud environment. We aren’t your typical Application Security team. In addition to driving high impact security initiatives for high risk product areas, we also spend a lot of time automating the identification of vulnerabilities across our AWS ecosystem. We aim to scale application security via self-service and automed visibility.
While your primary background is in application security, you are passionate about using automation to scale application security. You are able to partner with cross-functional teams to deliver widely impactful security initiatives. You are a strong communicator and have experience with threat modeling, security design reviews and security architecture. In this role, you will leverage your experience and technical security expertise to deliver application security solutions at Netflix scale. You will also help triage issues reported through our bug bounty program and participate in our product security incident response efforts.
Finally, here’s a few more reasons why we love this work and think that you will too:
You would have the opportunity to facilitate big changes here at Netflix.
You would be working with an industry leading security team with many opportunities to improve existing projects and identify new ones.
You are a big fan of open source software and sharing information. For example, this may include presenting at conferences or working collaboratively within Netflix. We share when it makes sense and are always researching new ideas from across the community.
You enjoy learning and working closely with subject matter experts in diverse areas such as microservice architectures, big data, content delivery networks, and a production studio.
We are an equal opportunity employer and value diversity of thought, culture, background, and perspective at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
We understand that candidates may come from all different education levels and backgrounds. We encourage this! If you enjoy working on the kinds of problems outlined above, then we should talk.