Snowflake is a rapidly growing enterprise software company seeking a Staff Security Engineer for their Enterprise Security team. The role involves designing and implementing robust endpoint security solutions to protect the organization and its customers against evolving threats.
Responsibilities:
- Design, Build, and Scale: Develop, maintain, and scale Snowflake's endpoint security solutions while actively contributing to architecture and strategy. This includes EDR, DLP, secure browser, MDM, and AI security solutions across a complex multi-cloud, multi-SaaS enterprise environment. Own the technical roadmap for endpoint security tooling as Snowflake rapidly grows
- Automate and Engineer: Build intelligent security platforms and automate security operations using AI and robust software engineering. Identify opportunities to reduce toil, increase detection fidelity, and accelerate response through thoughtful, scalable automation
- Detect and Prevent: Monitor security events, investigate incidents, and build real-time detection and prevention systems to protect against endpoint compromise and data exfiltration. Develop threat intelligence pipelines that keep us ahead of the adversary
- Assess and Mitigate: Conduct regular risk and threat analyses to proactively identify and remediate vulnerabilities end-to-end. Apply zero-trust principles to continuously reduce the attack surface across the endpoint fleet
- Policy and Compliance: Develop and implement unified security policies, procedures, and standards for endpoint protection. Ensure alignment with relevant regulatory and compliance frameworks
- Collaborate and Guide: Partner across Security, Engineering, IT, and Product to define endpoint security strategy, drive secure engineering practices, and provide technical guidance to staff and end-users. Champion security culture through enablement and education
- Raise the Bar: Establish and uphold the highest standards for security engineering — from threat modeling and secure design to detection quality and incident response rigor. Mentor engineers, introduce new techniques and adversarial perspectives, and continuously advance the team's craft
Requirements:
- 5+ years of hands-on experience in information security — including security engineering, threat intelligence or detection, or incident response — with a strong focus on endpoint security
- Proficiency in software development using Python, Go, Java, C, C++, or JavaScript, alongside strong experience with AI-assisted development
- Hands-on experience designing, deploying, and maintaining endpoint security tools (e.g., EDR, DLP, MDM, secure browsers, AI security solutions) across Windows, macOS, and Linux environments
- Strong understanding of operating systems, network protocols, application platforms, endpoint security concepts, and best practices
- Experience leading technical projects independently, driving data-informed decisions, and executing end-to-end
- A bachelor's degree in Computer Science, Information Security, or a related technical field, or equivalent practical experience
- Master's degree in Information Security, Computer Science, or a related technical field
- Experience with infrastructure from major cloud providers (AWS, GCP, Azure) and enterprise SaaS platforms at scale
- Relevant industry certifications such as CISSP, CEH, or Security+
- Demonstrated ability to communicate complex security concepts to both technical and non-technical audiences, including executive stakeholders