Snowflake

Staff Security Engineer - Enterprise Security

Snowflake4 days ago
Location

US-CA-Bay Area-Remote

Workplace

Remote

Type

Full Time

Salary

USD 211,000 – 303,600

Level

Staff

Role

Security Engineer

Posted

Jul 15, 2026

Full TimeRemoteStaff

The role

Summary

Join Snowflake's Enterprise Security team as a Staff Security Engineer to design, build, and scale endpoint security solutions protecting enterprise endpoints, identities, and AI-assisted workflows across a complex multi-cloud environment. This role requires 5+ years of hands-on information security experience with strong software engineering skills in Python, Go, Java, C++, or JavaScript, and expertise in EDR, DLP, MDM, and endpoint security architectures. You'll architect security platforms, automate detection and response systems, conduct threat analysis, and mentor engineers while championing zero-trust security principles at one of the fastest-growing enterprise software companies.

What you'll do

Design and Scale Endpoint Security Architecture: Develop, maintain, and scale Snowflake's comprehensive endpoint security solutions including EDR, DLP, secure browser, MDM, and AI security solutions. Own the technical roadmap for endpoint security tooling and contribute to long-term security architecture strategy across a complex multi-cloud, multi-SaaS enterprise environment.
Build Intelligent Security Automation Platforms: Engineer robust software solutions using AI and machine learning to automate security operations, reduce operational toil, and accelerate incident response. Develop scalable automation frameworks that increase detection fidelity and response velocity.
Develop Real-Time Detection and Prevention Systems: Monitor security events across the enterprise, investigate security incidents, and build sophisticated detection and prevention systems to protect against endpoint compromise and data exfiltration. Create threat intelligence pipelines that anticipate and counter emerging threats.
Conduct Proactive Risk and Threat Assessment: Perform regular risk and threat analyses to identify and remediate vulnerabilities across the endpoint fleet. Apply zero-trust principles and security best practices to continuously reduce attack surface and strengthen security posture.
Establish Security Policies and Compliance Standards: Develop, implement, and maintain unified security policies, procedures, and technical standards for endpoint protection. Ensure organizational alignment with regulatory frameworks, industry compliance standards, and security best practices.
Partner Across Security and Engineering Teams: Collaborate with Security, Engineering, IT, and Product teams to define endpoint security strategy, drive secure engineering practices, and provide technical guidance to staff and end-users. Champion security culture through education and enablement initiatives.
Mentor and Advance Engineering Craft: Establish and uphold the highest standards for security engineering through threat modeling, secure design principles, and detection quality. Mentor junior engineers, introduce advanced techniques and adversarial perspectives, and continuously advance the team's technical capabilities.

What we look for

Technical

Software Development ProficiencyExpert-level proficiency in at least one programming language from Python, Go, Java, C, C++, or JavaScript. Strong experience with AI-assisted development tools and practices for accelerating secure code development.
Endpoint Security ExpertiseHands-on design, deployment, and maintenance experience with endpoint security tools including EDR (Endpoint Detection and Response), DLP (Data Loss Prevention), MDM (Mobile Device Management), and secure browsers across Windows, macOS, and Linux environments.
Operating Systems and Network KnowledgeDeep understanding of operating system internals, network protocols, application platforms, endpoint security concepts, and industry best practices. Knowledge of Windows, macOS, and Linux security architectures.
Cloud Infrastructure and SaaS Platform ExperienceHands-on experience with major cloud providers (AWS, GCP, Azure) and enterprise SaaS platforms. Understanding of cloud-native security considerations and multi-cloud security architectures.
Incident Investigation and Threat AnalysisStrong capability to investigate security incidents, analyze threat patterns, and develop comprehensive threat intelligence. Experience with security monitoring tools and techniques.

Education

Bachelor's Degree in Technical FieldBachelor's degree in Computer Science, Information Security, Cybersecurity, or a related technical field, or equivalent practical hands-on security experience and demonstrated expertise.
Advanced Degree or Industry CertificationsMaster's degree in Information Security, Computer Science, or related field is advantageous. Industry certifications such as CISSP (Certified Information Systems Security Professional), CEH (Certified Ethical Hacker), or Security+ are highly valued.

Experience

Information Security Leadership5+ years of hands-on information security experience including security engineering, threat intelligence, threat detection, or incident response with strong specialization in endpoint security.
Independent Technical Project OwnershipDemonstrated ability to lead technical projects independently from conception to execution, drive data-informed security decisions, and deliver end-to-end solutions at scale.
Enterprise Security OperationsExperience designing and implementing security solutions in enterprise environments at scale with focus on endpoint protection, threat detection, and compliance requirements.

Skills

Required skills

Python ProgrammingProduction-level expertise in Python for building security tools, automation frameworks, and detection systems. Experience with Python security libraries and packages.
Endpoint Detection and Response (EDR)Expert-level hands-on experience with EDR platforms, endpoint telemetry collection, threat hunting capabilities, and incident response workflows.
Data Loss Prevention (DLP)Deep understanding of DLP architecture, policy implementation, data classification, endpoint monitoring, and preventing sensitive data exfiltration.
Mobile Device Management (MDM)Comprehensive experience with MDM solutions, device policy enforcement, compliance management, and secure mobile security architecture.
Zero-Trust Security ArchitectureStrong understanding of zero-trust principles, continuous verification, least-privilege access models, and application to endpoint security.
Threat Intelligence and AnalysisAbility to develop threat intelligence pipelines, analyze attack patterns, conduct threat modeling, and stay current with emerging endpoint security threats.
Security Operations and Incident ResponseExperience with security monitoring, incident investigation, forensic analysis, and building effective response procedures and playbooks.

Nice to have

Go Programming LanguageProficiency in Go for building high-performance security tools, distributed systems, and cloud-native security solutions.
Java and C/C++ ProgrammingExperience with Java or C/C++ for low-level systems programming, endpoint agent development, or performance-critical security components.
AWS, GCP, or Azure Cloud PlatformsHands-on experience architecting and implementing endpoint security solutions across major cloud providers at enterprise scale.
Secure Browser TechnologyExperience designing or implementing secure browser solutions for protecting web-based attacks and controlling user access to web resources.
AI/Machine Learning for SecurityExperience with AI-assisted development, machine learning models for threat detection, anomaly detection algorithms, and behavioral analytics.
Security Policy and Compliance FrameworksKnowledge of regulatory frameworks including SOC2, ISO 27001, HIPAA, PCI-DSS, and ability to translate compliance requirements into technical security controls.
Executive Communication SkillsDemonstrated ability to communicate complex security concepts to both technical and non-technical audiences, including executive stakeholders and board-level presentations.
CISSP, CEH, or Security+ CertificationIndustry-recognized security certifications demonstrating comprehensive security knowledge and commitment to professional development.

Compensation & benefits

Salary

USD 211,000 – 303,600 (annual)

Stock options

Available

Benefits

Comprehensive Health and Wellness Coverage

Medical, dental, and vision insurance with competitive coverage for employees and dependents, including mental health and wellness programs.

Equity and Stock Options

Meaningful equity grants and stock options allowing you to participate in Snowflake's growth as one of the fastest-growing enterprise software companies.

Retirement and Financial Planning

401(k) retirement plan with employer matching contributions and access to financial planning resources.

Flexible Time Off

Generous paid time off policy including vacation days, holidays, and the flexibility to work remote when appropriate for work-life balance.

Professional Development and Learning

Tuition reimbursement, security certifications support (CISSP, CEH, Security+), and access to industry conferences and training programs.

Remote and Flexible Work Arrangements

Flexible working arrangements with opportunities for remote work where applicable, supporting distributed team collaboration.

Life and Disability Insurance

Comprehensive life insurance and short-term/long-term disability coverage to protect your financial security.

Parental Leave and Family Support

Generous parental leave policies and family support benefits including adoption assistance and family planning benefits.


Interview process

  1. 1
    Initial Recruiter Screening Phone or video call with Snowflake recruiter to discuss background, experience with endpoint security, software engineering skills, and career interests in security engineering.
  2. 2
    Technical Security Assessment Deep technical discussion covering endpoint security architecture, EDR/DLP implementation experience, threat detection approaches, and hands-on programming challenges related to security automation.
  3. 3
    Security Engineering Design Challenge Take-home or live coding assessment focused on designing security solutions using Python or preferred language, building detection systems, or architecting endpoint protection strategies.
  4. 4
    Senior Engineer Technical Interview Detailed conversation with current Staff or Senior Security Engineers about threat modeling, zero-trust architecture, incident response workflows, and technical decision-making at scale.
  5. 5
    Security Operations and Strategy Discussion Discussion with Enterprise Security team leads covering security roadmap, operational challenges, compliance requirements, and how you would approach building and scaling security programs.
  6. 6
    Cross-Functional Collaboration Meeting Conversation with stakeholders from Engineering, IT, or Product teams to assess collaboration skills, communication of security concepts, and ability to partner across organizational boundaries.
  7. 7
    Leadership and Culture Alignment Meeting with hiring manager or director-level stakeholder to discuss leadership philosophy, mentorship approach, team building, and alignment with Snowflake's security-first culture and AI-native principles.

Apply for this position

You'll be redirected to the company's application page


Snowflake

Snowflake

View all jobs

Snowflake is an American cloud computing company offering data warehousing and analytics platforms.

Bozeman, Montana, United StatesFounded 2012snowflake.com

Tech Stack

Languages
PythonGoJavaC/C++JavaScript
Frameworks
EDR PlatformsDLP SolutionsMDM FrameworksSecure Browser TechnologyAI Security Solutions
Databases
Snowflake Data WarehouseTime-Series Databases
Tools
Cloud Security MonitoringSIEM SolutionsThreat Intelligence PlatformsEndpoint Telemetry CollectionSecurity Automation and Orchestration
Other
Multi-Cloud ArchitectureZero-Trust Security ModelThreat Modeling and Risk AssessmentCompliance and Regulatory Frameworks

Interview Guides

11 guides available for Snowflake

Apply Now