Full Job Description
We are hiring a Staff Security Engineer for our Enterprise Security team. The threats facing modern organizations are evolving at an unprecedented pace - driven by AI, cloud complexity, and an ever-expanding attack surface. Our Enterprise Security team is responsible for protecting Snowflake, our employees, and our customers by designing, implementing, and maintaining robust endpoint security solutions at enterprise scale, defending not just endpoints and identities, but the AI-assisted workflows and intelligent systems that define how the modern enterprise operates.
AS A STAFF SECURITY ENGINEER AT SNOWFLAKE, YOU WILL:
• Design, Build, and Scale: Develop, maintain, and scale Snowflake's endpoint security solutions while actively contributing to architecture and strategy. This includes EDR, DLP, secure browser, MDM, and AI security solutions across a complex multi-cloud, multi-SaaS enterprise environment. Own the technical roadmap for endpoint security tooling as Snowflake rapidly grows.
• Automate and Engineer: Build intelligent security platforms and automate security operations using AI and robust software engineering. Identify opportunities to reduce toil, increase detection fidelity, and accelerate response through thoughtful, scalable automation.
• Detect and Prevent: Monitor security events, investigate incidents, and build real-time detection and prevention systems to protect against endpoint compromise and data exfiltration. Develop threat intelligence pipelines that keep us ahead of the adversary.
• Assess and Mitigate: Conduct regular risk and threat analyses to proactively identify and remediate vulnerabilities end-to-end. Apply zero-trust principles to continuously reduce the attack surface across the endpoint fleet.
• Policy and Compliance: Develop and implement unified security policies, procedures, and standards for endpoint protection. Ensure alignment with relevant regulatory and compliance frameworks.
• Collaborate and Guide: Partner across Security, Engineering, IT, and Product to define endpoint security strategy, drive secure engineering practices, and provide technical guidance to staff and end-users. Champion security culture through enablement and education.
• Raise the Bar: Establish and uphold the highest standards for security engineering - from threat modeling and secure design to detection quality and incident response rigor. Mentor engineers, introduce new techniques and adversarial perspectives, and continuously advance the team's craft.
OUR IDEAL STAFF SECURITY ENGINEER WILL HAVE:
• 5+ years of hands-on experience in information security - including security engineering, threat intelligence or detection, or incident response - with a strong focus on endpoint security.
• Proficiency in software development using Python, Go, Java, C, C++, or JavaScript, alongside strong experience with AI-assisted development.
• Hands-on experience designing, deploying, and maintaining endpoint security tools (e.g., EDR, DLP, MDM, secure browsers, AI security solutions) across Windows, macOS, and Linux environments.
• Strong understanding of operating systems, network protocols, application platforms, endpoint security concepts, and best practices.
• Experience leading technical projects independently, driving data-informed decisions, and executing end-to-end.
• A bachelor's degree in Computer Science, Information Security, or a related technical field, or equivalent practical experience.
BONUS POINTS FOR THE FOLLOWING:
• Master's degree in Information Security, Computer Science, or a related technical field.
• Experience with infrastructure from major cloud providers (AWS, GCP, Azure) and enterprise SaaS platforms at scale.
• Relevant industry certifications such as CISSP, CEH, or Security+.
• Demonstrated ability to communicate complex security concepts to both technical and non-technical audiences, including executive stakeholders.