Netflix is one of the world's leading entertainment services, with over 300 million paid memberships in over 190 countries enjoying TV series, films and games across a wide variety of genres and languages. Members can play, pause and resume watching as much as they want, anytime, anywhere, and can change their plans at any time.
The Security Services Engineering organization supports the Netflix workforce by creating and operating the security access control model, including authentication, authorization, and cryptographic software services. Our access control use cases will continue to become more complex as we increase investment in Netflix Originals content production ecosystems, including Content, GenAI, Ads, Gaming, Live streaming, and more. Our workforce and partners are global, and they access our information in different patterns and with varying needs from various locations and devices. With security and ease of information access in mind for our ongoing growth, we recognize that the traditional corporate network security perimeter no longer meets our requirements. Instead, we invest in identity as a perimeter on the open internet, with reliable, robust, and strong access-control models and services to protect our information.
The Role
This role focuses on building the access experience layer at Netflix — designing, building, and operating the services that make access control safe and straightforward for hundreds of internal engineering teams. You will be part of the Access Experience Engineering (AXE) team in Warsaw, Poland, focusing on the integration and experience layer that sits on top of Netflix's core access control infrastructure. You will partner closely with ACE and the Security Services Engineering organization, both primarily based in UCAN, as part of a follow-the-sun, async-first model.
You will work on a mix of projects encompassing ownership of system design, implementation, partner integration, rollout strategy, and maintenance of access tooling and integration services — including the adoption layer for Turnstile, Netflix's next-generation access management platform, as well as APIs, SDKs, and self-service workflows that enable internal teams to implement access securely and consistently.
One engineer on this team will serve as an in-time-zone security anchor — a technical lead who brings a pragmatic, risk-aware lens to AXE's designs and implementations and partners directly with ACE Core and ARC on security architecture decisions.
This role is based in Poland and can be performed remotely within the country.
What you’ll need to be successful
- Ability to work collaboratively to solve problems, navigate ambiguity, make and communicate self-directed decisions, and weigh trade-offs. You take ownership of problems and are able to influence others.
- Experience building scalable, reliable, high-availability, and low-latency services.
- Proficiency in modern languages (Java preferred, or Kotlin, Go, Python) and an openness to work across the tech stack as needed.
- Experience designing and building developer-facing APIs, SDKs, and integration patterns that make complex systems straightforward for other teams to adopt.
- Familiarity with access control and IAM concepts — identity, authentication, authorization, roles, groups, attributes, and resource models. Experience with auth protocols, including OpenID Connect, OAuth, SAML, and SCIM, is valuable; strong software engineering fundamentals with an interest in the domain are equally welcome.
- Experience with GraphQL, gRPC, REST, or similar technologies.
- Effective written communication skills and a product-focused mindset, with a security-first approach, enabling you to deliver practical solutions while working across EMEA and UCAN time zones in an async-first environment.
Nice to have
- Experience designing complex access control models using industry standards like RBAC, ABAC, or ReBAC.
- Experience with continuous integration and continuous deployment in a cloud platform.
- Experience with NoSQL technologies such as Hive, Presto, Spark, or Cassandra.
- Experience with graph databases.
- Experience with React or another modern frontend framework for full‑stack work.
Inclusion is a Netflix value and we strive to host a meaningful interview experience for all candidates. If you want an accommodation/adjustment for a disability or any other reason during the hiring process, please send a request to your recruiting partner.
We are an equal-opportunity employer and celebrate diversity, recognizing that diversity builds stronger teams. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.