Software Engineer L6 - Operating System Security Development
To see similar active jobs please follow this link: Remote System Administration jobs
At Netflix, we want to entertain the world and are constantly innovating on how entertainment is imagined, created and delivered to a global audience. We currently stream content in more than 30 languages in 190 countries, topping over 250 million paid subscribers and are expanding into new forms of entertainment such as gaming.
Open Connect (OC) is a critical group within Netflix that builds and manages a content delivery network (CDN) that delivers all of Netflix’s streaming video. In addition to streaming video, we work on projects within Netflix that leverage physical infrastructure, such as our Cloud Games and Live initiatives. According to a 2023 Sandvine report, data delivered by OC accounts for approximately 15% of all downstream traffic volume across the entire internet. Most of this traffic is delivered by our edge cache servers.
A small team of talented software engineers develop and maintain the operating system that runs the content caches. Because of the important role these caches serve, it is critical that they be both efficient and secure.
We are looking for a Security Software Engineer to architect and implement security features for the OC edge appliances and have the opportunity to directly impact a critical area of the business.
In this role, you will:
Collaborate with internal stakeholders to evaluate, design and enhance the security posture of various OC server platforms.
Implement security enhancements using a variety of methods such as kernel and user-space development, configuration changes or leveraging hardware-based security features such as TPMs.
Assist developers in securely designing new features, providing guidance and support throughout the development process.
Act as a security liaison between OC and other organizations to ensure cohesive security strategies and practices.
Assist with incident response and analyze new security bugs to mitigate potential threats to our infrastructure.
Demonstrate versatility by learning and adapting to new architectures and features as they evolve.
Develop automated systems to test for vulnerabilities within our infrastructure.
Qualifications:
Kernel development experience.
Proven track record of architecting security features that meaningfully improve system security.
Proven track record of successfully implementing security features across kernel space and user space.
Success at partnering with others to improve the security posture through cross-functional changes.
You will be successful in this role if you:
Have the ability to define and self-manage cross-functional projects fueled by ambiguous questions.
Are a self-starter, curious and not afraid to ask when in doubt.
Are a quick learner and excited about learning new technologies.
Advocate thoughtful collaboration, take pride in your work and enjoy taking full ownership of projects from conception to production.
Nice to have:
Experience conducting penetration tests which found meaningful opportunities for improvement and identified security gaps.
Experience successfully using TPMs/HSMs, trusted execution environments, and other hardware features.
Experience working on highly distributed systems.
Experience using operating system execution environments such as containers or virtual machines to enhance security.
Experience fuzzing complex systems.
Experience securing FreeBSD, Linux.
Experience with C, Golang, Python.
Container security experience.
Our compensation structure consists solely of an annual salary; we do not have bonuses. You choose each year how much of your compensation you want in salary versus stock options. To determine your personal top of market compensation, we rely on market indicators and consider your specific job family, background, skills, and experience to determine your compensation in the market range. The range for this role is $390,000-$850,000.
Netflix provides comprehensive benefits including Health Plans, Mental Health support, a 401(k) Retirement Plan with employer match, Stock Option Program, Disability Programs, Health Savings and Flexible Spending Accounts, Family-forming benefits, and Life and Serious Injury Benefits. We also offer paid leave of absence programs. Full-time hourly employees accrue 35 days annually for paid time off to be used for vacation, holidays, and sick paid time off. Full-time salaried employees are immediately entitled to flexible time off. See more detail about our Benefits here.
Netflix is a unique culture and environment. Learn more here.
We are an equal-opportunity employer and celebrate diversity, recognizing that diversity of thought and background builds stronger teams. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.
About the job
Software Engineer L6 - Operating System Security Development
To see similar active jobs please follow this link: Remote System Administration jobs
At Netflix, we want to entertain the world and are constantly innovating on how entertainment is imagined, created and delivered to a global audience. We currently stream content in more than 30 languages in 190 countries, topping over 250 million paid subscribers and are expanding into new forms of entertainment such as gaming.
Open Connect (OC) is a critical group within Netflix that builds and manages a content delivery network (CDN) that delivers all of Netflix’s streaming video. In addition to streaming video, we work on projects within Netflix that leverage physical infrastructure, such as our Cloud Games and Live initiatives. According to a 2023 Sandvine report, data delivered by OC accounts for approximately 15% of all downstream traffic volume across the entire internet. Most of this traffic is delivered by our edge cache servers.
A small team of talented software engineers develop and maintain the operating system that runs the content caches. Because of the important role these caches serve, it is critical that they be both efficient and secure.
We are looking for a Security Software Engineer to architect and implement security features for the OC edge appliances and have the opportunity to directly impact a critical area of the business.
In this role, you will:
Collaborate with internal stakeholders to evaluate, design and enhance the security posture of various OC server platforms.
Implement security enhancements using a variety of methods such as kernel and user-space development, configuration changes or leveraging hardware-based security features such as TPMs.
Assist developers in securely designing new features, providing guidance and support throughout the development process.
Act as a security liaison between OC and other organizations to ensure cohesive security strategies and practices.
Assist with incident response and analyze new security bugs to mitigate potential threats to our infrastructure.
Demonstrate versatility by learning and adapting to new architectures and features as they evolve.
Develop automated systems to test for vulnerabilities within our infrastructure.
Qualifications:
Kernel development experience.
Proven track record of architecting security features that meaningfully improve system security.
Proven track record of successfully implementing security features across kernel space and user space.
Success at partnering with others to improve the security posture through cross-functional changes.
You will be successful in this role if you:
Have the ability to define and self-manage cross-functional projects fueled by ambiguous questions.
Are a self-starter, curious and not afraid to ask when in doubt.
Are a quick learner and excited about learning new technologies.
Advocate thoughtful collaboration, take pride in your work and enjoy taking full ownership of projects from conception to production.
Nice to have:
Experience conducting penetration tests which found meaningful opportunities for improvement and identified security gaps.
Experience successfully using TPMs/HSMs, trusted execution environments, and other hardware features.
Experience working on highly distributed systems.
Experience using operating system execution environments such as containers or virtual machines to enhance security.
Experience fuzzing complex systems.
Experience securing FreeBSD, Linux.
Experience with C, Golang, Python.
Container security experience.
Our compensation structure consists solely of an annual salary; we do not have bonuses. You choose each year how much of your compensation you want in salary versus stock options. To determine your personal top of market compensation, we rely on market indicators and consider your specific job family, background, skills, and experience to determine your compensation in the market range. The range for this role is $390,000-$850,000.
Netflix provides comprehensive benefits including Health Plans, Mental Health support, a 401(k) Retirement Plan with employer match, Stock Option Program, Disability Programs, Health Savings and Flexible Spending Accounts, Family-forming benefits, and Life and Serious Injury Benefits. We also offer paid leave of absence programs. Full-time hourly employees accrue 35 days annually for paid time off to be used for vacation, holidays, and sick paid time off. Full-time salaried employees are immediately entitled to flexible time off. See more detail about our Benefits here.
Netflix is a unique culture and environment. Learn more here.
We are an equal-opportunity employer and celebrate diversity, recognizing that diversity of thought and background builds stronger teams. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.