Where Data Does More. Join the Snowflake team.

We are seeking an experienced Senior Security Engineer to strengthen our offensive security capabilities and protect our enterprise environment. This role will focus on conducting penetration tests, managing our bug bounty program, and analyzing vulnerability patterns. The position involves leading critical security initiatives and ensuring robust protection against evolving threats while maintaining compliance with security policies.

IN THIS ROLE AT SNOWFLAKE, YOU WILL:

• Conduct white-box penetration tests on Snowflake's public web applications, internal tools, and APIs.

• Manage and enhance our bug bounty program, triaging findings, fostering strong relationships with security researchers, and driving program growth.

• Analyze vulnerability patterns from internal pentests and external reports and implement solutions to fix root causes across systems.

• Work closely with development teams to communicate vulnerabilities, provide actionable remediation guidance.

• Regularly present key security metrics, including penetration test results, bug bounty program metrics, and overall security posture, to enterprise leadership.

• Stay updated on attack techniques and AI/ML security threats, developing automation to streamline security workflows, enhance efficiency, and improve our overall security posture.

• Promote a strong security culture across Snowflake, emphasizing secure development practices.

WE WOULD LOVE TO HEAR FROM YOU IF YOU HAVE:

• Masters in Cyber Security/ Bachelor's degree in Cyber Security, Computer Science, Information Security, or a related field; or equivalent practical experience.

• 5+ years of experience in security engineering with a strong focus on penetration testing and application security

• Solid understanding of common web application vulnerabilities (OWASP Top 10) and network protocols.

• Proficiency in using a variety of penetration testing tools (e.g., Burp Suite, Kali Linux tools).

• Experience with scripting languages (e.g., Python, Bash, PowerShell) for automation and exploit development

• Excellent communication (written and verbal) and interpersonal skills, with the ability to articulate complex security issues clearly and concisely.

• Strong analytical and problem-solving skills with a keen eye for detail, especially in identifying common vulnerability patterns.

• Ability to work independently and as part of a collaborative team in a fast-paced, dynamic environment.

• A "hacker mindset" with a passion for discovering and exploiting vulnerabilities.

BONUS POINTS:

• Relevant security certifications (e.g., OSCP, OSWE, GWAPT, GPEN, CEH).

• Hands-on experience with AI red teaming methodologies and tools.

• Demonstrated experience managing a bug bounty program, including vulnerability triage and researcher interaction.

WHY JOIN OUR TEAM AT SNOWFLAKE?

Join a team at the forefront of enterprise security, working with cutting-edge technologies and solving complex challenges. You'll have the opportunity to make a significant impact on our security infrastructure while working alongside talented professionals. We offer continuous learning opportunities and the chance to shape the future of offensive security in a rapidly growing organization.

Snowflake is growing fast, and we’re scaling our team to help enable and accelerate our growth. We are looking for people who share our values, challenge ordinary thinking, and push the pace of innovation while building a future for themselves and Snowflake.

How do you want to make your impact?

For jobs located in the United States, please visit the job posting on the Snowflake Careers Site for salary and benefits information: careers.snowflake.com