Security Engineer L5, Incident Response

Netflix is one of the world's leading entertainment services, with 283 million paid memberships in over 190 countries enjoying TV series, films and games across a wide variety of genres and languages. Members can play, pause and resume watching as much as they want, anytime, anywhere, and can change their plans at any time.

The Team

Detection and Response (D&R) is an organization that is responsible for building detections across the Netflix ecosystem, handling information security incidents and crises across the business, and providing threat intelligence to our stakeholders. D&R leverages the expertise of Detection Engineers to detect, triage and contain malicious behavior. Security Incident Responders are responsible for being investigators, security incident commanders, and providing training and tooling to scale incident response to mitigate a broad range of risks. We proactively use our experience and data to drive and advocate for investments that drive down risk.

This position is fully remote for candidates located within Poland.

The Role

We are looking for an experienced Security Engineer with expertise as a Security Incident Responder.  As a member of our EMEA Security Incident Response Team, you will actively lead security incident response as an Incident Commander and investigator as part of our on-call rotation in EMEA. You will apply lessons learned as part of the post-incident review process in order to improve incident handling and resolution.

Desired Background

• A combination of 5+ years of experience as a Security Engineer with hands on experience in Digital Forensics and Incident Response (MacOS and Cloud)

• 2+ years of demonstrated experience in Incident Management as a Security Incident Commander responding to large scale security incidents

• Excellent written and verbal communication skills, and can communicate complex concepts to a broad range of cross-functional partners

• Understanding of adversary tactics, techniques, and procedures and how to pragmatically apply them in incident response and detection engineering

• Hands-on experience analyzing disparate log sources as part of security investigations

• Demonstrated experience with big data platforms and their query languages (e.g. SQL)

• Python experience and familiarity with deploying code in a continuous integration and continuous delivery, cloud-based environment

Culture: 

Netflix is a unique culture and environment.  Learn more .

is a Netflix value and we strive to host a meaningful interview experience for all candidates. If you want an accommodation/adjustment for a disability or any other reason during the hiring process, please send a request to your recruiting partner.

We are an equal-opportunity employer and celebrate diversity, recognizing that diversity builds stronger teams. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.