Key skills
Cloud SecurityAWS Account ManagementAWS ArchitectureGCP Security ArchitectureIdentity and Access Management (IAM)Cloud Security OperationsSecurity ArchitectureSecurity GuardrailsIdentity GovernanceService Account ManagementSecurity MetricsThreat AssessmentTooling and ScriptingAWSGCPCommunicationAccount Management
About this role
Netflix is a company dedicated to entertaining the world by pushing the boundaries of storytelling and technology. They are looking for a Cloud Security Engineer to join their Cloud Architecture, Tooling and Security team to design and implement secure cloud access patterns and solutions, focusing on AWS and GCP environments.
Responsibilities:
- Collaborate with software engineering teams to understand business needs and design and implement appropriate, scalable cloud security solutions
- Design and implement new cloud security strategies and archetypes to discover, self-serve, right-size, and manage cloud resources
- Develop internal tooling and scripting for GCP to build capabilities where few currently exist
- Perform threat assessments, apply knowledge of AWS architecture and new AWS services to address security requests, and contribute to operational excellence by reducing risks and eliminating tedious access management minutiae
Requirements:
- A broad and deep understanding of cloud security fundamentals, with a particular focus on CloudSec operations, AWS account management and Security Architecture
- GCP expertise is a must, specifically the ability to architect and implement organization-wide security guardrails, and identity governance
- Experience collaborating with product and engineering teams to design security solutions
- Strong verbal and written communication skills for conveying complex technical issues cross-functionally
- A pragmatic approach to security, engaging transparently with the nuances and tradeoffs of security risk
- Proven ability to identify high-leverage work and drive it independently without explicit direction
- Experience securing challenging 3rd-party cloud infrastructure access patterns, such as vendor integrations
- Experience defining insightful and meaningful metrics to gauge and guide cloud security posture or progress
- Prior experience in an L5 role driving mid-complexity projects independently and navigating ambiguity