This job has expired, please see additional jobs below
Senior Security Intelligence and Response Team (SIRT) Responder-Developer
Netflix
Los Gatos, CA, United States
Job Details - this job has expired, please see similar jobs below
Working with the Netflix Security Intelligence and Response Team you will tackle unsolved problems shared by thousands of companies operating in the cloud. You will develop innovative techniques for forensic investigation, hunting operations, and incident response across Amazon Web Services and numerous third-party Software-as-a-Service providers. This is where every company will be in five years, and we are solving these problems today... then we collaborate with industry to open source the solution.
You will own your campaigns from collection through analysis to response. You will help us expand our raw information sources: from freeform intelligence gathered through open, deep and dark web research, to transactional information tapped off our massive Kafka queues. If you want to play with production scale security data, we have it. Since raw data cannot be acted upon, you will leverage your keen understanding of offensive techniques to build processes that produce intelligence. Finally, you will develop automated response mechanisms, within our environment and working with external partners, to disrupt activity that threatens our customers, employees and shareholders.
To be successful you should be familiar with:
• Offensive Techniques - initial infection vectors, exploits, and persistence.
• Logs - Comfortable reading logs of various formats to recreate what happened.
• Computer Systems Fundamentals - interaction of disk, memory and processor.
• Networking Fundamentals - TCP/IP, basic L7 protocols, you like PCAP.
• Scripting and basic coding - getting something working during an incident.
And curious about:
• AWS and 3rd party SaaS - Log formats generated, how to extract telemetry, how to operate in those environments.
• Big Data - SQL/Hive, Pig, Spark, data science, maybe some R. Turn lots of information into intelligence, with expert help.
• Threat Intelligence - The intelligence cycle, the difference between a signature and an IOC, how to measure value and best leverage these feeds.
• Forensics - How to capture and analyze disk and memory, of an AMI or Container, to figure out what happened.
• Reverse Engineering - Pull apart malware, or at least understand reports on RE from 3rd parties.
• Development - Turning Proof of Concept code into something production worthy.
• Security Controls - Host, network and other control points used to mitigate vulnerabilities, particularly how do we use them for automated response.
• Interview - Talking to humans about security incidents.
We are looking for thoughtful security professionals who enable mission and support our culture of freedom and responsibility. We are not in the business of compliance. You can learn more at Life at Netflix. As the leading provider in subscription streaming video, Netflix delivers a simple, reliable, and enjoyable experience to our customers. Providing this experience challenges us with massive scale while presenting ever-changing engineering and security challenges.