
Netflix
Mid
Turn fraud and device-security signals into detection systems that protect Netflix's product ecosystem
Netflix's Data & Insights team is hiring a Security Analytics Engineer to drive metrics, signal development, and dashboards that detect fraud and abuse (account compromise, piracy, DDoS) across a massive, diverse device ecosystem. This is an analytics-engineering role (SQL/Presto/SparkSQL/Python) sitting at the intersection of security and data, not a pure SOC or pentesting job. Expect a mock built around anomaly-detection signal design, quantifying device-level vulnerabilities from logs, and communicating fraud impact to cross-functional stakeholders.
Step into this interview
Free · a live voice mock calibrated to this exact role
What this interview tests
- Anomaly detection signal design for fraud/abuse (account compromise, piracy, DDoS)
- SQL/Presto/SparkSQL and Python for large-scale security analytics
- Quantifying device-level vulnerability from error/request logs across a diverse device ecosystem
- Metrics development and dashboarding to influence security strategy
- Cross-functional storytelling to product/engineering/data science stakeholders
Common question themes
Walk through designing a new anomaly-detection signal from raw request/device data
How would you distinguish a real fraud pattern from natural traffic variance at Netflix's scale
Describe a time you translated a security/data finding into a decision executives acted on
How would you characterize automation/bot traffic across a highly heterogeneous device fleet
Tradeoffs between blocking a suspicious pattern aggressively vs. protecting legitimate user experience
Related interviews

Netflix
Senior
Integrations Support Engineer 5 - Ads Conversion API

Netflix
Senior
Software Engineering 5 - Ads Conversion Attribution

Netflix
Senior
Software Engineer 5, Ads Reporting

Coinbase
Mid
Analytics Engineer, Compliance Data

Mid
Analytics Engineer, Consumer Data Science

Mid