Security Software Engineer (L5), Detection Engineering
Netflix is one of the world's leading entertainment services, with over 300 million paid memberships in over 190 countries enjoying TV series, films and games across a wide variety of genres and languages. Members can play, pause and resume watching as much as they want, anytime, anywhere, and can change their plans at any time. The Team The Detection Engineering Team is responsible for analyzing high-risk attack paths that could have substantial impact on Netflix and creating focused detections to reduce risk to the business. This is facilitated by partnerships with stakeholder teams, stakeholder domain expertise, and individual contributor creativity. DetEng is part of a larger Detection and Response team which includes Attacker Emulation, Security Incident Response and Threat Intelligence. The Role We are looking for an experienced detection engineer to help mature and expand our detection frameworks, platforms, and portfolio. The focus of our team is to create and continually improve detections that run on our own platforms to minimize risk to Netflix by proactively surfacing malicious or anomalous behavior to identify attacker presence or activity. We are a tight-knit team that provides value by creating compensating detective controls in order to shorten the time to discovery. Using a risk-based prioritization mindset, we focus our efforts to generate the largest impact and benefits for Netflix. Desired background:
- You have significant experience writing detections at scale using a detection-as-code approach
- You have software engineering experience in a cloud-based environment and ability to contribute to our in-house platforms that are written in Python
- You are familiar with SQL/Hive and handling large data sets, in particular unstructured log data
- You are familiar with computer and network security concepts
- You have experience working in a continuous integration and continuous delivery, cloud-based environment
- You have excellent written and verbal communication skills
- You are comfortable working on ambitious projects with a very small, tight-knit team
- You can effectively operate across teams and disciplines in highly ambiguous and rapidly changing environment
- Experience working in AWS needed, other IaaS providers is a plus
- Experience writing and tuning AWS detections is a plus
- Experience using GenAI technologies to automate security operations is a plus
- Experience with Java is a plus
Our compensation structure consists solely of an annual salary; we do not have bonuses. You choose each year how much of your compensation you want in salary versus stock options. To determine your personal top of market compensation, we rely on market indicators and consider your specific job family, background, skills, and experience to determine your compensation in the market range. The range for this role is $190,000 - $920,000. Netflix provides comprehensive benefits including Health Plans, Mental Health support, a 401(k) Retirement Plan with employer match, Stock Option Program, Disability Programs, Health Savings and Flexible Spending Accounts, Family-forming benefits, and Life and Serious Injury Benefits. We also offer paid leave of absence programs. Full-time hourly employees accrue 35 days annually for paid time off to be used for vacation, holidays, and sick paid time off. Full-time salaried employees are immediately entitled to flexible time off. See more detail about our Benefits here . Netflix is a unique culture and environment. Learn more here . Inclusion is a Netflix value and we strive to host a meaningful interview experience for all candidates. If you want an accommodation/adjustment for a disability or any other reason during the hiring process, please send a request to your recruiting partner. We are an equal-opportunity employer and celebrate diversity, recognizing that diversity builds stronger teams. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service. Job is open for no less than 7 days and will be removed when the position is filled. Apply tot his job Apply To this Job