Security Engineer L5, Incident Response Team

Netflix is one of the world's leading entertainment services, with over 300 million paid memberships in over 190 countries enjoying TV series, films and games across a wide variety of genres and languages. Members can play, pause and resume watching as much as they want, anytime, anywhere, and can change their plans at any time.The TeamDetection and Response (D&R) is an organization that is responsible for building detections across the Netflix ecosystem, handling information security incidents and crises across the business, and providing threat intelligence to our stakeholders. D&R leverages the expertise of Detection Engineers to detect, triage and contain malicious behavior. Security Incident Responders are responsible for being investigators, security incident commanders, and providing training and tooling to scale incident response to mitigate a broad range of risks. We proactively use our experience and data to drive and advocate for investments that drive down risk.This position is fully remote for candidates located within Poland.The RoleWe are looking for an experienced Security Engineer with expertise as a Security Incident Responder. As a member of our EMEA Security Incident Response Team, you will actively lead security incident response as an Incident Commander and investigator as part of our on-call rotation in EMEA. You will also be expected to contribute to our data engineering and log pipelines as part of the role. You will apply lessons learned as part of the post-incident review process in order to improve incident handling and resolutionDesired BackgroundA combination of 5+ years of experience as a Security Engineer with hands on experience in Digital Forensics and Incident Response (MacOS and Cloud)2+ years of demonstrated experience in Incident Management as a Security Incident Commander responding to large scale security incidentsHands-on experience analyzing disparate log sources as part of security investigations2+ years Python experience and familiarity with deploying code in a continuous integration and continuous delivery, cloud-based environmentDemonstrated experience with big data platforms and their query languages (e.g. SQL)Excellent written and verbal communication skills, and can communicate complex concepts to a broad range of cross-functional partnersUnderstanding of adversary tactics, techniques, and procedures and how to pragmatically apply them in incident response and detection engineeringCulture: Netflix is a unique culture and environment. Learn more here.Inclusion is a Netflix value and we strive to host a meaningful interview experience for all candidates. If you want an accommodation/adjustment for a disability or any other reason during the hiring process, please send a request to your recruiting partner.We are an equal-opportunity employer and celebrate diversity, recognizing that diversity builds stronger teams. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.

https://explore.jobs.netflix.net/careers/job/790301007304?microsite=netflix.com