Security Engineer - Security Protocols Engineering

Job Description

Security Engineer (L5) - Security Protocols Engineering

The Role
Our team is looking for a Security Engineer to join the team and help us deploy security improvements across our Consumer Products. We provide guidance and support to the deployment of the security building blocks for user authentication, user authorization and secure transport. Our security strategy influences the deployment of Netflix products on every single one of the 100's of millions of Netflix client devices used in over 190 countries by more than 200 million paid members. These building blocks are being enhanced for the new threats and scale as Netflix offers more products to its members, including streaming and gaming. Help us securely build Netflix!

The Team

If you're a Netflix customer, you have benefited from the work of the Security Protocols Engineering team. We design and implement end-to-end security protocol that powers Netflix consumer products, and holistically integrate them in the Netflix ecosystem, within a range of client applications and backend services. Our team is highly cross functional, inside and outside of Netflix. We work with Netflix product edge, cloud and client engineering teams. We also work with third-party game developers and platform partners that integrate our client SDK.

Security in the Freedom & Responsibility culture of Netflix means that much of our work is accomplished through influence, not mandates. A highly collaborative mindset is key. This is a deeply technical team, who draws from knowledge of networks, cryptography, operating systems, and software architecture.

We are part of the larger Consumer Product Security & Trust organization, which collaborates with device partners and DRM to improve security across the industry. To learn more about CPST (formerly DCS for Device & Content Security) at Netflix, check out this episode of the WeAreNetflix podcast.

What you will do

You will be integrating our security protocols team and participate in the deployment of the related security building blocks, scaling across streaming, gaming and other consumer product features. Your role will be to use your security knowledge to identify security risks, propose a strategy to address security risks with Product Managers and Product Engineering, and help improve our products security posture. Having a strong security mindset balanced with operational pragmatism is critical to your success in this role.

As a Security Software Engineering part of SPE, you will be responsible for:
• Perform threat model analysis
• Establish security strategies in alignment with business risk and engineering constraints
• Collaborate with Consumer Product engineering (Streaming and Gaming)
• Support security integrations in Product Edge Systems
• Establish and drive security goals for User AuthN/AuthZ and secure transport

Experience
• BS or MS in Computer Science or equivalent engineering experience
• Experience with threat modeling methods
• Experience with client/server security protocols
• Experience with user AuthN/AuthZ (security principles and concepts)
• General understanding of security protocols standards

Bonus Assets
• Expertise in cryptography
• Experience with cloud-based architecture security
• Experience with device architecture and integration constraints
• Experience with embedded hardware security

About You
• Love to solve tough security engineering problems
• Enjoy working collaboratively with other engineers
• Like to approach security problems holistically
• Communicate clearly
• Are comfortable taking calculated risks
• Are curious about technology and love to learn and grow as an engineer
• Communicate well, both written and verbally

Netflix offers a creative culture that values freedom and responsibility. You can learn more About Us in the Culture At Netflix.

Jobcode: Reference SBJ-dy39n3-3-139-70-131-42 in your application.