# Principal Engineer, Identity Data Security and Trust **Company:** [Snowflake](https://hotfix.jobs/companies/snowflake) **Location:** Menlo Park, CA **Salary:** $264K-$380K **Experience:** 12+ years **Skills:** Java, Go, C++, AWS, GCP, Azure, Zero Trust, Dlp, Tls/Ssl, Vpc Service Controls, Private Link, Ai Models **Posted:** 2026-05-04 > Leads architecture and strategy for Data Exfiltration Protection (DXP) and Data Movement Policy (DMP) systems. Bridges security policy with scalable enforcement in multi-cloud environments, requiring 12+ years experience in distributed systems and security expertise. ## Job Description ## Responsibilities - Lead the design and implementation of the **Data Movement Policy (DMP)** framework, ensuring it can handle complex multi-cloud and hybrid environments. - Define the roadmap for **Data Exfiltration Protection (DXP)**, evolve and enhance ingress and egress controls, and intelligent anomaly detection for data egress. - Drive the technical effort to unify **Context-Aware Access** policies with egress perimeter controls, creating a single, cohesive policy engine for all data movement. - Author and review complex design documents for DMP and Perimeter Policy, ensuring high reliability, low latency, and auditability. - Partner with Product Management to refine the DXP product requirements and translate business goals into actionable engineering milestones. - Guide senior and staff engineers across multiple teams, fostering a culture of security-first engineering and rigorous design standards. ## Requirements - **12+ years** of experience in software engineering, with at least **5 years** in a principal or architect role focusing on infrastructure or security. - Deep understanding of network security protocols (**TLS/SSL**, **HTTP/S**, **DNS**), **Zero Trust** architectures, and **Data Loss Prevention (DLP)** technologies. - Proven track record of designing and deploying high-scale distributed systems (**Java**, **Go**, or **C++**). - Strong experience with cloud-native security controls in **AWS**, **GCP**, or **Azure** (e.g., **VPC Service Controls**, **Private Link**). - Effective deployment of **AI models** and tooling to improve team productivity and execution. - Excellent ability to communicate complex technical concepts to both executive leadership and individual contributors. **Apply:** https://hotfix.jobs/jobs/principal-engineer-identity-data-security-and-trust-at-snowflake-0ff2672d-1150-4f90-811b-c5c8176f98ea **Canonical:** https://hotfix.jobs/jobs/principal-engineer-identity-data-security-and-trust-at-snowflake-0ff2672d-1150-4f90-811b-c5c8176f98ea