This document provides an overview of senior software engineer roles within Netflix's Access and Identity Management (AIM) team. It summarizes Netflix's scale and impact as the world's leading internet TV network with over 998 million broadband households and 158 million paid members in over 190 countries. It then describes AIM's role in providing secure access to Netflix resources by managing customer identity and authentication across thousands of device types. The document outlines AIM's transition from managing multiple token types to a single, token-agnostic identity and highlights some of the team's recent conference presentations. It also lists three open senior software engineer positions within AIM and provides contact information for the hiring manager.

1. Senior Software
Engineer Overview

2. World’s Leading Internet TV Network
● Opportunity: > 998M Broadband Households
● 158M+ Paid Members
● 190+ Countries
● 2000+ Device Types
● 125M+ Viewing Hours / Day
● Commercial Free
○ TV
○ Movies
○ Original Content

3. Netflix: Streaming Service of Choice
● 23% of US adults stream
Netflix on a daily basis
● 51% of US streaming
subscribers use Netflix
● 77% of Video on
Demand (VoD) users
have Netflix

4. At Tremendous Scale
Source: 2019 Global Internet Phenomena Report
● Streaming video accounts for >60%
of all traffic on the internet
● Netflix accounts for 12.6% of total
downstream volume of traffic and
11.4% of all internet traffic!

5. Freedom & Responsibility Culture
Every Netflix employee has the freedom to do their best
work and the responsibility to achieve excellence.
Values Are What We Value
● Judgment
● Communication
● Impact
● Curiosity
● Innovation
● Courage
● Passion
● Integrity
● Selflessness
● Inclusion
See https://jobs.netflix.com/culture
for more information on our innovative
Freedom & Responsibility culture

6. Team Overview

7. Product Edge Systems
AIM is a part of the Product Edge Systems group at Netflix. For an overview of
the organization, see https://tiny.cc/NetflixPES.

8. Product & Edge
Access Services
Provide APIs and orchestrate
AuthN and token
management
Access & Identity Management
User Systems
& Data
Provide services and APIs to
manage customer identity
and device relationships
Enable secure and seamless access to Netflix
product resources by providing and
leveraging common Identity, Authentication
and Authorization infrastructure & Services
Device Identity
Systems
Provide server-side device
activation, identity, and
authentication

9. Identity Management
Clients present different token types with each request. AIM systems crack these
open at the Edge and generate an integrity-protected token agnostic identity
object (Passport) to propagate to downstream systems.
Cookies
MSL Tokens
CTicket
Partner
Tokens
(JWS, JWE)

10. Zuul
API
Device
Auth
Service
Legacy
API
Netflix
Microservices
SIGNUP
FLOW
SERVICE
User Identity
User AuthN
service
EDGE ORIGINS
MID-TIER
SERVICES
NodeJS
Services
Lolomo / Search
DRM
Other services
Discovery
API
Playback
API
Before: Multiple Token Types, Multiple Systems

11. Zuul
API
Device
Auth
Service
Legacy
API
Netflix
Microservices
SIGNUP
FLOW
SERVICE
User Identity
User AuthN
Service
EDGE ORIGINS
MID-TIER
SERVICES
NodeJS
Services
Lolomo /
Search
DRM
Other services
Discovery
API
Playback
API
Cookie
Service
MSL
Service
Partner
Service
EAS
EDGE AUTHENTICATION SERVICES
After: Passport Replaces Multiple Tokens

12. EDGE AUTHENTICATION SERVICES
Zuul
API
Device
Auth
Service
Legacy
API
Netflix
Microservices
SIGNUP
FLOW
SERVICE
User Identity
User AuthN
Service
EDGE ORIGINS
MID-TIER
SERVICES
NodeJS
Services
Lolomo /
Search
DRM
Other services
Discovery
API
Playback
API
Cookie
Service
MSL
Service
Partner
Service
EAS
User AuthN & Data

13. Device Activation & Authentication
?
?

14. For 2000+ Device Types (and growing)
http://devices.netflix.com

15. Recent Team Conference Talks
Team members recently presented some of the work of
the team at QCon San Francisco (and were two of the
top three attended talks at the conference!):
● Scaling Patterns for Netflix’s Edge
https://tiny.cc/NetflixScale
● User & Device Identity for
Microservices @ Netflix Scale
https://tiny.cc/TokenAgnosticIdentity

16. Access & Identity Management Technology Stack

17. Senior Software Engineer Roles

18. AIM Senior Software Engineer Roles
User Systems & Data: https://jobs.netflix.com/jobs/869522
Design & evolve systems to manage critical user & device identity for hundreds of millions of
users around the world!
Product Edge Access Systems: https://jobs.netflix.com/jobs/870053
Help develop Netflix’s cloud-based device and user authentication and authorization systems.
Device Identity Systems: https://jobs.netflix.com/jobs/871795
Build & operate cloud-based device activation, identity and authentication services & APIs.

19. Interested?
Contact me for more information!
Karen Casella
Engineering Director
kcasella@netflix.com
http://www.linkedin.com/in/kcasella
@kcasella