This job has expired, please see additional jobs below
Network Security Engineer
Netflix
Los Gatos, CA, United States
Job Details - this job has expired, please see similar jobs below
Netflix is responsible for over 37% of Internet traffic at peak times and we're working collaboratively with ISPs to deploy Open Connect, Netflix's Content Delivery Network. Open Connect delivers 100% of our video traffic today, but we're continually adding functionality to support more advanced applications and further improve the quality of experience for our customers. To support this, we have a global network connecting 75 sites and thousands of partners, and we're working with network hardware vendors and internal development teams to deliver innovative features at ever-increasing density.
We're seeking an experienced Network Security Engineer to help us identify, mitigate and prevent vulnerabilities within our CDN, and to handle incident response and analysis.
This position will focus on network hardware and software, but will work closely with our security teams on the CDN operations and platform security teams.
You'll be supported by top engineering talent, a thoughtful responsible disclosure program, and be part of a well-loved brand and product.
Responsibilities:
• Identify areas of risk prior to service rollout by collaborating with engineering and development
• Proactively seek, identify, explore and resolve vulnerabilities in the Netflix CDN, both on network hardware and internally and externally developed software
• Ensure that vulnerabilities identified internally, by vendors, or via our responsible disclosure program are mitigated
• Coordinate with Netflix's SIRT team, vendors and partners
• Perform incident analysis and recommend remediation steps
• Drive deployment of strong routing protocol authentication mechanisms
Required skills:
• Experience with DDoS detection and defense strategies at scale
• A deep understanding of network protocols, including IP and related transports, BGP, and IS-IS
• Solid understanding of application protocols, including DNS, DNSSEC, HTTP, and TLS
• Experience with and understanding of routing authentication mechanisms including RPKI
• Familiarity with network hardware and software, preferably including Arista EOS and Cisco IOS-XR
• Strong written and verbal communications skills