Build the future of data. Join the Snowflake team.
The Global Security Engineering organization protects Snowflake from internal and external threats through proactive and reactive security functions. The Red Team in the Global Security Engineering org is responsible for conducting Red Team engagements against Snowflake’s diverse cloud environment and finding vulnerabilities in software, systems, and networks.
In this role, you will execute Red Team engagements across Snowflake’s corporate and product environments. You will partner with cross-functional teams to communicate gaps discovered during engagements and help drive remediation. You will develop tools, perform security research, and build infrastructure to augment the Red Team’s capabilities.
Our ideal candidate wakes up each morning thinking about different parts of the business that can benefit from Red Team engagements. Their goal is to identify relevant security risks and help the business understand them so they can build effective defenses and protect Snowflake customers and their data.
Snowflake is growing fast, and we’re scaling our team to help enable and accelerate our growth. We are looking for people who share our values, challenge ordinary thinking, and push the pace of innovation while building a future for themselves and Snowflake.
RESPONSIBILITIES:
- Develop tools, methodologies, and infrastructure to support Red Team engagements in a variety of cloud environments and novel platforms
- Participate in Red Team engagements against a diverse cloud environment and find vulnerabilities in software, systems, and networks
- Set scope, objectives, and timelines for Red Team engagements and leverage data to create meaningful metrics
- Work with security and engineering teams to communicate findings, recommendations, and knowledge to key stakeholders
- Play a critical role in building a Red Team that has a wide scope and impact
MINIMUM QUALIFICATIONS:
- 5+ years experience working in an information security discipline, preferably with a focus in offensive security
- You have a continuously learning mindset with a desire to dive and explore a wide range of security domains
- Strong communications skills to comfortably work cross-functionally across the organization
- Ability to document findings from engagements and create a narrative for technical and executive audiences
- Knowledge of common bugs or misconfigurations in software and cloud infrastructure (AWS, GCP, and Azure)
- Experience reading and writing code in one of the following languages:
- Golang, Python, Java, JavaScript, C++, C
PREFERRED QUALIFICATIONS:
- 7+ years experience working in an information security discipline, preferably with a focus in offensive security
- Prior experience leading Red Teams in a high growth, cloud native technology company
- Contributions to the security community, such as open source tools, research, papers, conference talks, etc.
- You can demonstrate a strong background in one of the following languages:
- Golang, Python, Java, JavaScript, C++, C
MANDATORY REQUIREMENTS FOR THE ROLE:
The position may require access to U.S. export-controlled technologies or technical data.Employment with Snowflake is contingent on Snowflake either verifying that you may legally access U.S. export-controlled technologies and technical data, or successfully obtaining by obtaining, in a timely manner, any necessary license or other authorization from the U.S. Government to allow you to have the ability to access U.S. export-controlled technology and technical data.
Every Snowflake employee is expected to follow the company’s confidentiality and security standards for handling sensitive data. Snowflake employees must abide by the company’s data security plan as an essential part of their duties. It is every employee's duty to keep customer information secure and confidential.