Skip to content

Principal Security Engineer - Threat Intelligence

Principal-level individual contributor leading Snowflake’s Threat Intelligence program. Combines deep intelligence expertise with strong engineering and AI/automation skills to track cloud-focused threat actors and drive actionable security outcomes.

249k – 311kUnited StatesSecurity EngineeringRemote8+ YOE

About the role

Responsibilities

  • Define and mature Snowflake’s Threat Intelligence strategy, including investments in people, processes, engineering, and AI-enabled capabilities.
  • Identify, profile, and track threat actors targeting Snowflake, customers, partners, and ecosystem; translate intelligence into actionable outcomes.
  • Operationalize threat intelligence to prioritize security initiatives and drive action with Detection, Incident Response, Product Security, Cloud Security, and Anti-Abuse teams.
  • Produce high-quality intelligence reports, assessments, briefs, and leadership-ready communications.
  • Engineer solutions that improve efficiency, scale, and impact: automations, collection pipelines, enrichment workflows, and analyst tooling.
  • Build and improve AI-assisted intelligence workflows for report triage, signal enrichment, summarization, vendor/customer monitoring, and threat-informed hunts, with strong measurement.
  • Partner with Threat Detection and Incident Response to convert intelligence into detections, threat hunts, investigative pivots, and control recommendations.
  • Monitor alerts, intelligence feeds, vendor reporting, and external developments for relevant threats.
  • Drive standards for how intelligence is curated, evaluated, delivered, and measured.
  • Mentor engineers and analysts to raise technical depth, analytic rigor, and operational maturity.

Requirements

  • Significant experience in threat intelligence, cyber threat research, intelligence engineering, or closely related security disciplines.
  • Experience researching and tracking sophisticated threat actors targeting cloud-native and SaaS environments.
  • Strong engineering skills: writing code in Python or Go; building automations and data-heavy security workflows.
  • Experience handling data programmatically with SQL and Python against large datasets.
  • Experience collaborating across security functions and communicating effectively with technical stakeholders and leadership.
  • Strong understanding of enterprise security controls, threat hunting, and detection methodologies.
  • Experience with at least one major cloud provider (AWS, Azure, GCP) and familiarity with cloud/SaaS risks.
  • Deep knowledge in several of: adversary intelligence, intrusion intelligence, supply-chain intelligence, identity intelligence, domain intelligence, and threat-informed defense.
  • Strong understanding of today’s threat actor ecosystem (nation-state, criminal, ransomware, fraud).
  • Demonstrated ability to operationalize threat intelligence and influence security priorities.
  • Experience building or driving AI-assisted workflows for intelligence analysis, research triage, summarization, collection, and prioritization.
  • Ability to research threat actors’ TTPs, infrastructure, targets, and map risks to Snowflake’s environment.
  • Experience with OSINT tools, data sources, investigative methodologies, and intelligence reporting for technical and executive audiences.
  • Risk-based approach to security prioritization.

Skills

Threat IntelligencePythonGoSQLAWSAzureGCPOsintThreat HuntingAi/Ml Workflows

Staff / Principal Product Engineer, Security

Secures Radar's Protect product across mobile SDKs, web SDKs, server APIs, and desktop apps handling 1B daily API calls against sophisticated fraud. Acts as generalist engineer with experience in high-value app security and customer engagement.

250k – 300kNew York, NYSecurity EngineeringOn-siteC#AWS

Principal Engineer, Identity Data Security and Trust

Leads architecture and strategy for Data Exfiltration Protection (DXP) and Data Movement Policy (DMP) systems. Bridges security policy with scalable enforcement in multi-cloud environments, requiring 12+ years experience in distributed systems and security expertise.

264k – 380kMenlo Park, CASecurity EngineeringOn-site12+ YOEGoC++

Principal Network Architect

Principal-level individual contributor defining and owning network architecture strategy across Crusoe's AI infrastructure stack, from data center fabrics and RDMA to SDN, Kubernetes networking, and automation. Requires 12+ years experience with expert-level routing, SDN, and large-scale data center design.

265k – 310kSan Francisco, CA +2Security EngineeringOn-site12+ YOEBGPBfd

Principal Engineer, Authentication

Principal Engineer leads Authentication strategy at Databricks, crafting secure, scalable systems with 10+ years in data security, 15+ in distributed systems, and MS/PhD required. Mentors teams and drives executive decisions.

266k – 366kBellevue, WA +1Security EngineeringRemote10+ YOEKubernetesWeb Security

Principal Software Engineer, AI Tools and Security (US West Coast)

Leads technical direction for secure AI infrastructure gateway, building scalable backend services with distributed systems expertise. Requires 10+ years backend experience, Go fluency, cloud platforms, and technical leadership in remote teams.

232k – 319kSeattle, WA +1Security EngineeringRemote10+ YOEGoC++