[Remote] Security Engineer (L5) - Workforce Security

Note: The job is a remote job and is open to candidates in USA. Netflix is a company dedicated to entertaining the world through innovative storytelling and technology. They are seeking a talented L5 Security Engineer specializing in Endpoint Security to identify and manage risks across software on Netflix endpoints and drive the development of scalable technical security controls.

Responsibilities

• Identify and manage risks across all software on Netflix endpoints
• Drive the development of scalable technical security controls that enhance business agility and reduce risk for workforce-related business scenarios
• Design, implement, and validate protective endpoint security controls
• Develop and roll out solutions for host hardening, vulnerability identification, and effective patch management to maintain defined security standards and prevent configuration drift across devices
• Design and test host hardening configurations for Mac, Windows, and Linux systems
• Design and execute a comprehensive Patch and Vulnerability Management Strategy, enforcement, and apply Threat Intelligence to prioritize the remediation of endpoint vulnerabilities at the OS, App, and App Configuration levels
• Evaluate build vs. buy security capabilities through requirement gathering, cost-benefit analysis, and accurate estimation of development effort
• Provide standard business-hours operational support for Workforce Security and participate in infrequent 24/7 Incident Response as needed

Skills

• Knowledge of commercially available endpoint MDM solutions such as Jamf, Kandji, or Intune
• Working experience with commercially available endpoint vulnerability scanning tools such as CrowdStrike, Tenable
• Experience designing and testing host hardening configuration for at least two of the major operating systems (Mac, Windows, Linux)
• Understanding of Vulnerability Management practices
• Threat Modeling competency to influence control right-sizing and other prioritization efforts
• Ability to validate publicly disclosed exploits and perform variant analysis
• Scripting (must be able to script, not to production level, and use of GenAI is sufficient)
• Autonomously drives work delivery (bias to action)
• Cross-functional collaboration skills
• High-level familiarity with the functionality of commercially available corporate security tooling in the areas of endpoint, identity, data, and vendor security
• Ability to navigate ambiguity by taking strategic goals and decomposing them into actionable project plans
• Using measurement and metrics to drive decision-making and outcomes

Benefits

• Health Plans
• Mental Health support
• A 401(k) Retirement Plan with employer match
• Stock Option Program
• Disability Programs
• Health Savings and Flexible Spending Accounts
• Family-forming benefits
• Life and Serious Injury Benefits
• Paid leave of absence programs
• Full-time hourly employees accrue 35 days annually for paid time off to be used for vacation, holidays, and sick paid time off
• Full-time salaried employees are immediately entitled to flexible time off

Company Overview

Company H1B Sponsorship