• Manage the company’s safety, health, and environmental policy systems • Monitor work carried out by employees • Assist with environmental and occupational health policies • Conduct regulatory and occupational safety trainings

• Works with leadership to coordinate efforts and resolve issues • Works with the department prioritizing work assignments and act as a liaison with other departments • Performs a variety of tasks/projects that address the needs of the department • Participates in special projects and performs other duties as required • Assist in monitoring and analyzing security alerts and events across enterprise systems • Support vulnerability management and risk assessment activities • Participate in incident response investigations and documentation • Contribute to cybersecurity projects aimed at improving detection, response, and automation capabilities • Analyze security and operational data to identify trends, anomalies, or potential threats • Collaborate with global cybersecurity team members on cross-functional initiatives • Research emerging threats, vulnerabilities, and security technologies • Document findings, processes, and recommendations for both technical and business audiences

• Manage day to day, short and long term information security risks and ensure activities are within risk tolerance and in compliance with approved risk management policies, procedures and limits • Measure, monitor, and report on information security risks • Review and report on vendor/third party risk to support vendor risk management activities • Engage staff and/or vendors to develop information security risk mitigation plans to address risks identified in Vendor risk reviews • Monitor and report on information security risk mitigation plans to ensure timely execution • Engage employees in the management of information security risk and ensure they are aware of their accountabilities with regard to information security risk management • Regularly assess and report to management any exceptions to information risk management policies, procedures and limits • Engage with the Enterprise Risk Management office to ensure information risk management policies, procedures and limits are aligned with Enterprise Risk Management policies and guidance • Contribute and provide input to the development of operational department goals • Acts as technical expert in functional domain • Recommends technical advancements to improve CareSource customer and partner experiences • Perform any other job related instructions as requested

Netflix is one of the world's leading entertainment services, with over 300 million paid memberships in over 190 countries enjoying TV series, films and games across a wide variety of genres and languages. Members can play, pause and resume watching as much as they want, anytime, anywhere, and can change their plans at any time. About Security Platforms Engineering (SPE) The Security Platforms Engineering (SPE) team builds and operates foundational and scaled security services for Netflix, including asset inventory, vulnerability management, risk insights and a unified security experience. Our goal is to ensure strong foundations and resiliency to security threats, and we help Netflix be a place where security controls scale automatically, critical risks are systematically reduced, and our workforce is empowered to make confident, risk-informed decisions. We are expanding our team in Poland to help build and support our Vulnerability Management (VM) program, which owns vulnerability visibility, triage, and remediation for assets across Netflix’s ecosystem. About the Role As a Security Engineer 5 - Vulnerability Management Analytics you will analyze the vast data around our security posture and build insights leveraging data-driven solutions to advance our vulnerability management and strategic security insights programs. You will play a key role in designing robust and clear metrics and analytics, developing high-impact dashboards, and surfacing actionable intelligence that strengthens our security posture. The role is remote for candidates located in Poland. Key Responsibilities: - Own the end-to-end process: define, build, and maintain security metric dashboards, and conduct in-depth analyses to surface trends and insights in vulnerability data and security metrics. - Collaborate closely with security engineers to understand our program's posture and identify areas for improving identification, prioritization, and remediation workflows. - Partner with stakeholders to translate security needs into actionable recommendations. - Share your expertise and innovations with the broader security community, strengthening our collective capabilities and enabling best practices. About You: - Proven track record of defining, designing, and developing scalable analytic tools and systems, ideally in vulnerability management or security analytics. - High proficiency in Python, SQL, Spark, and experience with data visualization tools (e.g., Preset, Tableau). - Fluency with various aspects of security programs, including key metrics and questions - Strong foundation in statistical inference, data analysis, and data engineering best practices. - Experienced in orchestrating cross-functional stakeholders without direct authority and leveraging analytics to inform and steer security decisions. - Exceptional communication and collaboration skills. - Comfortable with ambiguity; able to take ownership and thrive with minimal oversight and process. - Netflix culture resonates with you. Inclusion is a Netflix value and we strive to host a meaningful interview experience for all candidates. If you want an accommodation/adjustment for a disability or any other reason during the hiring process, please send a request to your recruiting partner. We are an equal-opportunity employer and celebrate diversity, recognizing that diversity builds stronger teams. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.