# Senior Security Architect, Applied Field Engineering (AFE)

**Company:** [Snowflake](https://hotfix.jobs/companies/snowflake)
**Location:** Menlo Park, CA, Bellevue, WA, Chicago, IL
**Role:** Security Engineering
**Salary:** $172k – $226k/yr
**Experience:** 5+ years
**Skills:** Snowflake Cortex, Cortex Guard, RBAC, IAM, Oauth 2.0, Openid Connect, Kubernetes, SQL, Python, Zero Trust, Llm Security, Data Masking, SIEM, Otel, Apache Nifi
**Posted:** 2026-04-01

> Drives strategic customer engagements to architect secure AI and data platforms on Snowflake, transitioning from legacy security to unified architectures with AI governance, IAM, and compliance. Requires 5+ years in security, data, or AI engineering with strong customer-facing skills.

## Job Description

## Key Responsibilities

### Field Engineering & Security Architecture
- Drive strategic engagements focused on Security Architecture, ensuring robust foundations across Identity, Data, and Infrastructure for applications built on Snowflake.
- Support customer strategy for secure AI adoption, leveraging Snowflake Cortex to bring state-of-the-art LLMs directly to customer data within a secure environment.
- Architect trusted Agentic AI frameworks where Cortex Agents operate within governed boundaries, autonomously orchestrating tasks while inheriting Snowflake's native security perimeter.
- Deploy Cortex Guard and AI Observability to filter harmful content and provide transparent, explainable AI interactions through rigorous monitoring and tracing.
- Ensure AI governance by enforcing Role-Based Access Control (RBAC) and data masking across all AI-driven insights and automated actions.
- Deliver workshops and hands-on engagements to transition customers from legacy infrastructure to advanced SIEM Augmentation, Log Ingestion (Otel/Logs into Snowflake), and Cybersecurity Data Lake.
- Build repeatable reference architectures and frameworks for Identity (IAM), Data Governance, Row-Level Security, and Encryption to accelerate well-architected deployments.
- Guide customers through end-to-end journeys for BC/DR (Business Continuity/Disaster Recovery), including multi-region deployment patterns and measurable recovery outcomes.
- Drive the creation of relevant technical content and tooling to showcase security best practices, accelerate new use case deployments, and adoption of new platform functionality.
- Influence product roadmaps by serving as the Voice of the Field to Snowflake's product and engineering teams, translating customer needs into actionable feedback.

## Core Experience
- 5+ years of industry experience in Data, Security, Networking, Infrastructure or AI Engineering.
- Strong technical communications skills with the ability to deliver compelling demos, whiteboard sessions, and presentations to both technical and business stakeholders.
- Customer-facing skills: The ability to act as a trusted advisor and establish credibility with senior leadership and enterprise architects.

## Relevant Security Skill Sets
- Generative AI Security: Deep understanding of LLM security risks (e.g., prompt injection, data leakage) and mitigation strategies using tools like Cortex Guard.
- Agentic AI Governance: Expertise in governing Autonomous Agents, ensuring "Human-in-the-loop" controls and auditability for agent-driven actions.
- Data Privacy for AI: Mastery of techniques like Differential Privacy, Data Masking, and Secure Sandboxing to protect sensitive training and inference data.
- Platform Observability: Proficiency in observability techniques including logging, monitoring, and distributed tracing on a platform level.
- Identity and Access Management (IAM): Expertise in modern authentication/authorization protocols (OAuth 2.0, OpenID Connect) and implementing robust Role-Based Access Control (RBAC) models across cloud and on-premises environments.
- Secure Networking: Hands-on expertise in securing cloud and hybrid network architectures, including micro-segmentation, zero-trust principles, and secure deployment of services like Apache NiFi.
- Programming: Hands-on expertise with SQL, Python, and APIs.
- Container and Kubernetes Security: Proficiency in securing the container lifecycle, from build (image scanning) to runtime (Pod Security Standards, network policies, service mesh), and managing secrets within Kubernetes.
- Governance, Risk, and Compliance (GRC): Strong background in aligning security programs with regulatory frameworks (e.g., SOC 2, HIPAA, GDPR) and managing security risk through continuous monitoring and auditing.

## Compliance & Standards (nice to have)
- AI Regulatory Knowledge: Understanding of emerging AI regulations (e.g., EU AI Act) and their impact on enterprise data strategy.
- Trust Certifications: Familiarity with how Snowflake’s AI Trust Center maps to SOC2, HIPAA, and HITRUST requirements for AI/ML workloads.
- Industry Certifications: CISSP

## Similar roles

- [Senior Security Engineer, Endpoint](https://hotfix.jobs/jobs/c02e6a58-776e-461e-8bd3-ec1166ec40c8) - Ramp - New York, NY - $172k – $236k/yr
- [Senior Security Architect, Applied Field Engineering (AFE)](https://hotfix.jobs/jobs/e0bb51d6-509a-4b41-85b5-59ffafabf6e2) - Snowflake - New York, NY - $172k – $226k/yr
- [Senior Manager, Technology Risk](https://hotfix.jobs/jobs/55fd3e50-6546-4e60-8000-757f20c0ff01) - Upstart - Remote - $172k – $238k/yr
- [GRC Automation & Assurance Lead](https://hotfix.jobs/jobs/8413b7c3-5dc3-4909-81d6-821934e12890) - Rokt - New York, NY - $174k – $215k/yr
- [Sr. Threat Researcher](https://hotfix.jobs/jobs/12a7f854-0643-4ecc-ac5c-02cac18108b5) - Illumio - Sunnyvale, CA - $170k – $196k/yr

**Apply:** https://hotfix.jobs/jobs/2b949a31-bfc8-4d2b-aa6d-f0896ee0d04b
**Canonical:** https://hotfix.jobs/jobs/2b949a31-bfc8-4d2b-aa6d-f0896ee0d04b