Discover how a Cloudflare WAF bypass in /.well-known/acme-challenge/ exposed origins, its impact, and the fix. A must-read for security pros.

Wiz Research discovered CodeBreach, a critical vulnerability that risked the AWS Console supply chain. Learn how to secure your AWS CodeBuild pipelines.

Netflix is one of the world's leading entertainment services, with over 300 million paid memberships in over 190 countries enjoying TV series, films and games across a wide variety of genres and languages. Members can play, pause and resume watching as much as they want, anytime, anywhere, and can change their plans at any time. Netflix operates our streaming service control plane on Amazon Web Services, which has led to one of the largest and most sophisticated AWS environments in the world. Cloud Security for our public cloud deployments is critical to Netflix's security posture to protect our members, partners, employees, and intellectual property. This entails various capabilities distributed across a number of Infrastructure Security teams - cloud security paved roads, posture management, architecture, consulting and operational services. Of this charter, the Cloud Infrastructure Security (CIS) team designs and implements strategic cloud security controls and core building blocks supporting identity and access management, resource inventory and controls, developer workflows for operating in our cloud environment, and more. This is primarily a software engineering team focused on scalable secure defaults and posture management for Netflix AWS deployment. We are looking for an experienced security software engineer to enable our mission. You will have the opportunity to leverage your cloud security and engineering skills to help us scale cloud security for Netflix. Desired Background: You have a strong technical understanding of Cloud Security concepts and related risk management You have a depth of experience in AWS infrastructure and security constructs (AWS configuration, policy management, identity lifecycle etc). You have experience with Infrastructure as Code (IaC) tools such as AWS CloudFormation or Terraform, and Continuous Integration/Continuous Deployment (CI/CD) pipelines You have experience writing and maintaining production software in Python or Golang, creating and triaging alerts around the health and security of your systems You are passionate about scalable cloud security risk management with secure by default approaches You are a strong collaborator and communicator across security and infrastructure teams Our culture is unique, and we live by our values, so it's worth learning more about Netflix culture. Compensation: Generally, our compensation structure consists solely of an annual salary; we do not have bonuses. You choose each year how much of your compensation you want in salary versus stock options. To determine your personal top of market compensation, we rely on market indicators and consider your specific job family, background, skills, and experience to determine your compensation in the market range. The range for this role is 100,000 - $720,000. Benefits: Netflix provides comprehensive benefits including Health Plans, Mental Health support, a 401(k) Retirement Plan with employer match, Stock Option Program, Disability Programs, Health Savings and Flexible Spending Accounts, Family-forming benefits, and Life and Serious Injury Benefits. We also offer paid leave of absence programs. Full-time hourly employees accrue 35 days annually for paid time off to be used for vacation, holidays, and sick paid time off. Full-time salaried employees are immediately entitled to flexible time off. See more detail about our Benefits here. Inclusion is a Netflix value and we strive to host a meaningful interview experience for all candidates. If you want an accommodation/adjustment for a disability or any other reason during the hiring process, please send a request to your recruiting partner. We are an equal-opportunity employer and celebrate diversity, recognizing that diversity builds stronger teams. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service. Job is open for no less than 7 days and will be removed when the position is filled.