Senior Software Engineer building Snowflake's core identity, access management, and AI-native security infrastructure for the Data Cloud. Design secure agent workflows, IAM systems, encryption, and policy enforcement tooling at massive scale.
200k – 288k
Hybrid5+ YOESecurity Engineering
About the role
Responsibilities
Design and implement critical AI security capabilities — including controlled, audited agent workflows, MCP server and client security, agent identity frameworks, and admin guardrails — that form the foundation for secure agentic enterprise adoption.
Build and evolve foundational identity and access management systems, including authentication protocols, SSO integrations, multi-factor authentication, OAuth/OIDC, SAML, SCIM, and fine-grained RBAC that scales to millions of objects and users.
Design and develop core security infrastructure spanning secret management, key management, service identity, and end-to-end encryption across a natively multi-cloud environment.
Build and maintain security tooling to define, monitor, enforce, and detect policy violations across the platform; implement automation and self-service processes that increase developer autonomy and promote secure-by-default engineering.
Design and implement extensible, plug-and-play platform components that enable first-, second-, and third-party security detectors, responders, and visualizations to be built on top of Snowflake's Trust Center.
Leverage industry-accredited benchmarks (e.g., CIS) to develop standards-based security posture assessments; contribute to behavioral analytics pipelines and PII attribution capabilities that help detect, prevent, and respond to threats and abuse vectors.
Partner with engineering teams across the company to understand security pain points and deliver solutions that reduce friction without compromising safety.
Lead the design and enforcement of secure network architectures to actively defend against ransomware attacks and detect sophisticated data exfiltration attempts.
Participate in design reviews, code reviews, and on-call rotations; hold a high bar for code quality, reliability, and sound technical decisions.
Requirements
5+ years of industry experience designing, building, and operating large-scale distributed systems in production cloud environments.
Strong foundational computer science skills — data structures, algorithms, systems design, and distributed computing.
Proficiency in one or more of Java, C++, Python, Golang, or Rust, with solid SQL skills for data-driven features.
Experience shipping and on-calling production services with a focus on availability, reliability, and observability.
A collaborative, low-ego approach to engineering — comfortable iterating quickly and working across PM, design, and peer engineering teams.
BS in Computer Science, Computer Engineering, or a related technical discipline, or equivalent practical experience.
Nice-to-Haves
Knowledge of identity and access management concepts and protocols — SAML, SCIM, OAuth, OIDC, Federation, MFA, or RBAC.
Familiarity with security infrastructure domains such as secret management, key management, service identity, authentication, or authorization.
Experience with database internals, query engines, or data platform systems.
Exposure to machine learning or AI systems, particularly applied to anomaly detection, behavioral analytics, or risk classification.
Contributions to developer platforms, SDKs, or multi-tenant extensibility frameworks.
Experience deploying and operating services on Kubernetes or production cloud platforms (AWS, Azure, or GCP).
Senior Software Engineer building real-time security detection, prevention, and intelligence systems to protect Snowflake's multi-cloud platform from abuse, account takeovers, data exfiltration, and AI threats using AI/ML and risk scoring. Requires 5+ years software engineering experience with security focus.
200k – 288k
On-site5+ YOESecurity Engineering
Threat Detection Researcher
WizNew York, NY
Threat Detection Researcher developing detections and tools to protect customers from cloud, AI, and malware threats. Requires 6+ years in security/threat research, deep OS internals knowledge (Windows/Linux/macOS), Python proficiency, and cloud familiarity.
200k – 250k
On-site6+ YOESecurity Engineering
Senior Software Engineer
SnowflakeBellevue, WA
Senior Software Engineer building critical Identity & Access Management features and AI security capabilities (agent workflows, authentication, authorization, RBAC) for Snowflake's cloud data platform. Requires 7+ years building large-scale distributed systems, IAM expertise, and strong CS fundamentals.
200k – 288k
On-site7+ YOESecurity Engineering
Senior Security Engineer
NovigNew York, NY
Senior Security Engineer building proactive, automated security systems including SOAR/SIEM workflows, AI agents, vulnerability management, and cloud hardening for a fast-growing sports prediction market platform.
200k – 250k
On-site5+ YOESecurity Engineering
Senior Security Engineer
NectarsocialPalo Alto, CA
First security engineer to own application security, compliance programs (SOC 2, ISO 27001), and enterprise customer security reviews for an AI-native social commerce platform.