# Senior Security Architect, Applied Field Engineering (AFE)

**Company:** [Snowflake](https://hotfix.jobs/companies/snowflake)
**Location:** New York, NY, Atlanta, GA
**Role:** Security Engineering
**Salary:** $172k – $226k/yr
**Experience:** 5+ years
**Skills:** Snowflake Cortex, Cortex Guard, RBAC, IAM, Oauth 2.0, Openid Connect, Kubernetes, SQL, Python, Zero Trust, Llm Security, Prompt Injection Mitigation, Data Masking, SIEM, Otel/Logs
**Posted:** 2026-04-01

> Drives strategic customer engagements to architect secure data platforms on Snowflake, focusing on AI security, identity management, and modern SecOps. Partners with sales and engineering to transition customers to unified security architectures with 5+ years experience in security or data engineering.

## Job Description

## Key Responsibilities

### Field Engineering & Security Architecture
- **Security Architecture Foundation**: Drive strategic engagements focused on the Security Architecture, ensuring robust foundations across Identity, Data, and Infrastructure for applications built on Snowflake.
- **AI Security & Trust Foundations**: Support customer strategy for secure AI adoption, leveraging Snowflake Cortex to bring state-of-the-art LLMs directly to customer data within a secure environment.
- Architect trusted Agentic AI frameworks where Cortex Agents operate within governed boundaries, autonomously orchestrating tasks while inheriting Snowflake's native security perimeter.
- Deploy Cortex Guard and AI Observability to filter harmful content and provide transparent, explainable AI interactions through rigorous monitoring and tracing.
- Ensure AI governance by enforcing Role-Based Access Control (RBAC) and data masking across all AI-driven insights and automated actions.
- **Modern Security Operations (SecOps)**: Deliver workshops and hands-on engagements to transition customers from legacy infrastructure to advanced SIEM Augmentation, Log Ingestion (Otel/Logs into Snowflake), and Cybersecurity Data Lake.
- **Governance & Identity**: Build repeatable reference architectures and frameworks for Identity (IAM), Data Governance, Row-Level Security, and Encryption to accelerate well-architected deployments.
- **Resilience & Compliance**: Guide customers through end-to-end journeys for BC/DR (Business Continuity/Disaster Recovery), including multi-region deployment patterns and measurable recovery outcomes.
- **Tooling and Content**: Drive the creation of relevant technical content and tooling to showcase security best practices, accelerate new use case deployments, and adoption of new platform functionality.
- **Voice of the Field**: Influence product roadmaps by serving as the Voice of the Field to Snowflake's product and engineering teams, translating customer needs into actionable feedback.

## Core Experience
- 5+ years of industry experience in Data, Security, Networking, Infrastructure or AI Engineering
- Strong technical communications skills with the ability to deliver compelling demos, whiteboard sessions, and presentations to both technical and business stakeholders.
- Customer-facing Skills: The ability to act as a trusted advisor and establish credibility with senior leadership and enterprise architects.

## Relevant Security Skill Sets
- Generative AI Security: Deep understanding of LLM security risks (e.g., prompt injection, data leakage) and mitigation strategies using tools like Cortex Guard.
- Agentic AI Governance: Expertise in governing Autonomous Agents, ensuring "Human-in-the-loop" controls and auditability for agent-driven actions.
- Data Privacy for AI: Mastery of techniques like Differential Privacy, Data Masking, and Secure Sandboxing to protect sensitive training and inference data.
- Platform Observability: Proficiency in observability techniques including logging, monitoring, and distributed tracing on a platform level.
- Identity and Access Management (IAM): Expertise in modern authentication/authorization protocols (OAuth 2.0, OpenID Connect) and implementing robust Role-Based Access Control (RBAC) models across cloud and on-premises environments.
- Secure Networking: Hands-on expertise in securing cloud and hybrid network architectures, including micro-segmentation, zero-trust principles, and secure deployment of services like Apache NiFi.
- Programming: Hands-on expertise with SQL, Python, and APIs.
- Container and Kubernetes Security: Proficiency in securing the container lifecycle, from build (image scanning) to runtime (Pod Security Standards, network policies, service mesh), and managing secrets within Kubernetes.
- Governance, Risk, and Compliance (GRC): Strong background in aligning security programs with regulatory frameworks (e.g., SOC 2, HIPAA, GDPR) and managing security risk through continuous monitoring and auditing.

## Nice to Have
- AI Regulatory Knowledge: Understanding of emerging AI regulations (e.g., EU AI Act) and their impact on enterprise data strategy.
- Trust Certifications: Familiarity with how Snowflake’s AI Trust Center maps to SOC2, HIPAA, and HITRUST requirements for AI/ML workloads.
- Industry Certifications: CISSP

## Similar roles

- [Senior Security Engineer, Endpoint](https://hotfix.jobs/jobs/c02e6a58-776e-461e-8bd3-ec1166ec40c8) - Ramp - New York, NY - $172k – $236k/yr
- [Senior Security Architect, Applied Field Engineering (AFE)](https://hotfix.jobs/jobs/2b949a31-bfc8-4d2b-aa6d-f0896ee0d04b) - Snowflake - Menlo Park, CA - $172k – $226k/yr
- [Senior Manager, Technology Risk](https://hotfix.jobs/jobs/55fd3e50-6546-4e60-8000-757f20c0ff01) - Upstart - Remote - $172k – $238k/yr
- [GRC Automation & Assurance Lead](https://hotfix.jobs/jobs/8413b7c3-5dc3-4909-81d6-821934e12890) - Rokt - New York, NY - $174k – $215k/yr
- [Sr. Threat Researcher](https://hotfix.jobs/jobs/12a7f854-0643-4ecc-ac5c-02cac18108b5) - Illumio - Sunnyvale, CA - $170k – $196k/yr

**Apply:** https://hotfix.jobs/jobs/e0bb51d6-509a-4b41-85b5-59ffafabf6e2
**Canonical:** https://hotfix.jobs/jobs/e0bb51d6-509a-4b41-85b5-59ffafabf6e2