Application Security Engineer L4/L5

Netflix is one of the world's leading entertainment services, with over 300 million paid memberships in over 190 countries enjoying TV series, films and games across a wide variety of genres and languages. Members can play, pause and resume watching as much as they want, anytime, anywhere, and can change their plans at any time.The TeamThe Security Platforms Engineering (SPE) team at Netflix builds and operates foundational security services—including asset inventory, vulnerability management, risk insights, and a unified security experience. Within SPE, we also drive key Application Security (AppSec) initiatives, developing scalable security tooling and services that empower our engineers to build and ship software safely. By partnering closely with development teams, we systematically reduce risk, innovate on security solutions, and ensure that security is seamlessly integrated into the developer experience.The role is remote for candidates located in Poland.About the roleWe’re hiring a Security Software Engineer with Application Security focus. In this role, you’ll partner closely with engineering teams across Netflix to develop AppSec tooling that scales security throughout our ecosystem and also deliver on critical AppSec services.You’ll drive the design and development of innovative security solutions, providing practical guidance to engineering teams and contributing to our security posture at scale. This is a highly cross-functional role where you’ll collaborate with developers, product managers and security engineers to solve complex technical challenges and continuously improve the developer experience with security controls.We’re looking for someone passionate about pragmatic risk management, customer-centric security, and building systems that enable developers to move quickly and safely.We are looking for stunning colleagues who enable our mission and support our culture.You should have:Strong experience in software development and delivery, preferably in Python; bonus for PySpark experienceDeep application security expertise and hands on experience with bug bounty programs, threat modeling, security reviews, and pentestingProven ability to design and deliver scalable, end-to-end security solutionsFamiliarity with integrating security controls into various stages of the SDLCFamiliarity with security tooling such as SAST, DAST, and network scannersSkilled at analyzing and transforming data into insights, and enjoy solving challenging problemsCommunicate effectively and clearly across diverse audiencesYou will succeed in this role if you:Thrive on solving large-scale challenges and owning the solutions you buildBalance short- and long-term priorities to make pragmatic, data-driven decisionsAre comfortable navigating ambiguity and tackling open-ended problems from concept to productionCare deeply about improving developer experience through effective security controlsBelieve that diverse and inclusive teams are critical for sustainable and effective workTake pride in leaving systems better than you found themInclusion is a Netflix value and we strive to host a meaningful interview experience for all candidates. If you want an accommodation/adjustment for a disability or any other reason during the hiring process, please send a request to your recruiting partner.We are an equal-opportunity employer and celebrate diversity, recognizing that diversity builds stronger teams. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.

https://explore.jobs.netflix.net/careers/job/790304612053?microsite=netflix.com