Netflix Access & Identity Management

Netflix's cloud architecture is responsible for enabling a delightful Netflix experience for millions of members on thousands of supported devices. The first layer of that cloud architecture is called the "Edge".

The Product Edge Systems (PES) organization is responsible for the access management, identity, aggregation API, and playback components of Netflix's edge architecture.

Access & Identity Management (AIM) systems enable secure access to these services. The AIM team prides itself on building and operating highly scalable, performant and resilient distributed systems, that implement server-side security solutions in partnership with our Netflix security engineering teams.

Events

FUTURE Events

Coming Soon!

We are busy planning for AIM LIVE episode 3, where we plan to do a deep dive into some of our technology solutions. Stay tuned for more information!

Past Events

AIM LIVE Episode #2

Wednesday July 28th, 2021

Check out the recording and hear form AIM Engineers as they provide a view into our systems, architecture and challenges.

Thanks to those of you who joined us LIVE for our virtual panel!

Tuesday March 9th, 2021 @ 6PM PST (9PM EST)

This event has ended, but don't despair, you can watch the recording.

Join our virtual panel discussion to learn more about the Access & Identity Management team! The discussion will cover working remote, remote onboarding, culture at Netflix and personal experiences. There will be a live chat and Q/A so bring your questions!

Product Edge Systems

The videos below provide an excellent overview of the Netflix Edge and systems involved. The second video references an updated organization: the original Edge Engineering team was split and Product Edge Systems remained.

AIM Teams

AIM, currently led by Karen Casella, is organized into three teams, each responsible for a core component of our Access & Identity Management mandate.

Product Access Management (PAM)

PAM comprises two teams - PEAS and DIS.

Product Edge Access Services (PEAS)

PEAS is responsible for solutions that span both users and devices, e.g., API surface, AuthN orchestration, and token management. Focus areas for the team include terminating security protocols, token agnostic identity propagation, Authentication API service layer, solutions for member account protection, and Authorization solutions.

Device Identity Systems (DIS)

DIS services facilitate seamless device access experiences at Netflix scale. DIS systems enable secure access with device identity, authentication and access policy solutions. Areas of focus include multi-device experience, device metadata management, device history and user relationships to support analytics, increase member joy and drive membership growth.

User Systems & Data (USD)

Engineering Leader: Vishal Verma

USD owns services and APIs to manage user identity and associated data at Netflix scale. Focus areas for the team include user lifecycle, accounts, profiles, preferences, user data management, and enabling hundreds of services at Netflix to consume, and mutate user state through our APIs and systems.

Recent Publications & Presentations

Blog Posts

Edge Authentication and Token-Agnostic Identity Propagation

Conference Presentations

#1 attended talk at QConSF 2019!

Join Us!

We are currently hiring for engineers to work on our new games initiatives:

Senior Software Engineer - Games User Identity and Social

If you are interested in any of these roles, submit your application through the careers site

More...

For more information, visit the following pages: