# Principal Security Engineer - Threat Intelligence

**Company:** [Snowflake](https://hotfix.jobs/companies/snowflake)
**Location:** Remote
**Role:** Security Engineering
**Salary:** $249k – $311k/yr
**Experience:** 8+ years
**Skills:** Threat Intelligence, Python, Go, SQL, AWS, Azure, GCP, Osint, Threat Hunting, Ai/Ml Workflows
**Posted:** 2026-05-11

> Principal-level individual contributor leading Snowflake’s Threat Intelligence program. Combines deep intelligence expertise with strong engineering and AI/automation skills to track cloud-focused threat actors and drive actionable security outcomes.

## Job Description

## Responsibilities
- Define and mature Snowflake’s Threat Intelligence strategy, including investments in people, processes, engineering, and AI-enabled capabilities.
- Identify, profile, and track threat actors targeting Snowflake, customers, partners, and ecosystem; translate intelligence into actionable outcomes.
- Operationalize threat intelligence to prioritize security initiatives and drive action with Detection, Incident Response, Product Security, Cloud Security, and Anti-Abuse teams.
- Produce high-quality intelligence reports, assessments, briefs, and leadership-ready communications.
- Engineer solutions that improve efficiency, scale, and impact: automations, collection pipelines, enrichment workflows, and analyst tooling.
- Build and improve AI-assisted intelligence workflows for report triage, signal enrichment, summarization, vendor/customer monitoring, and threat-informed hunts, with strong measurement.
- Partner with Threat Detection and Incident Response to convert intelligence into detections, threat hunts, investigative pivots, and control recommendations.
- Monitor alerts, intelligence feeds, vendor reporting, and external developments for relevant threats.
- Drive standards for how intelligence is curated, evaluated, delivered, and measured.
- Mentor engineers and analysts to raise technical depth, analytic rigor, and operational maturity.

## Requirements
- Significant experience in threat intelligence, cyber threat research, intelligence engineering, or closely related security disciplines.
- Experience researching and tracking sophisticated threat actors targeting cloud-native and SaaS environments.
- Strong engineering skills: writing code in Python or Go; building automations and data-heavy security workflows.
- Experience handling data programmatically with SQL and Python against large datasets.
- Experience collaborating across security functions and communicating effectively with technical stakeholders and leadership.
- Strong understanding of enterprise security controls, threat hunting, and detection methodologies.
- Experience with at least one major cloud provider (AWS, Azure, GCP) and familiarity with cloud/SaaS risks.
- Deep knowledge in several of: adversary intelligence, intrusion intelligence, supply-chain intelligence, identity intelligence, domain intelligence, and threat-informed defense.
- Strong understanding of today’s threat actor ecosystem (nation-state, criminal, ransomware, fraud).
- Demonstrated ability to operationalize threat intelligence and influence security priorities.
- Experience building or driving AI-assisted workflows for intelligence analysis, research triage, summarization, collection, and prioritization.
- Ability to research threat actors’ TTPs, infrastructure, targets, and map risks to Snowflake’s environment.
- Experience with OSINT tools, data sources, investigative methodologies, and intelligence reporting for technical and executive audiences.
- Risk-based approach to security prioritization.

## Similar roles

- [Staff / Principal Product Engineer, Security](https://hotfix.jobs/jobs/18dfd38f-6bd1-4ec5-bb4d-26598cc48a29) - Radar Labs - New York, NY - $250k – $300k/yr
- [Principal Engineer, Identity Data Security and Trust](https://hotfix.jobs/jobs/0ff2672d-1150-4f90-811b-c5c8176f98ea) - Snowflake - Menlo Park, CA - $264k – $380k/yr
- [Principal Network Architect](https://hotfix.jobs/jobs/3584c0be-b75f-4706-b7b8-91e38b0d4c19) - Crusoe - San Francisco, CA - $265k – $310k/yr
- [Principal Engineer, Authentication](https://hotfix.jobs/jobs/cfc519a1-18ad-4c8a-a0a5-3eaef7bcb021) - Databricks - Remote - $266k – $366k/yr
- [Principal Software Engineer, AI Tools and Security (US West Coast)](https://hotfix.jobs/jobs/139c26cc-1d34-4071-8a9a-c98498b0122d) - Docker - Remote - $232k – $319k/yr

**Apply:** https://hotfix.jobs/jobs/c50e4ba9-1779-42e4-bbce-185298cdcb91
**Canonical:** https://hotfix.jobs/jobs/c50e4ba9-1779-42e4-bbce-185298cdcb91