Principle Anti-Abuse Architect - Product Security

The Anti-abuse team at Snowflake is responsible for protecting Snowflake and our customers from abuse on the Snowflake platform. You will have the opportunity to help set the direction for the anti-abuse roadmap and technical direction at Snowflake. 

We’re at the forefront of the data revolution, committed to building the world’s greatest data and applications platform. Our ‘get it done’ culture allows everyone at Snowflake to have an equal opportunity to innovate on new ideas, create work with a lasting impact, and excel in a culture of collaboration.

We’re at the forefront of the data revolution, committed to building the world’s greatest data and applications platform. Our ‘get it done’ culture allows everyone at Snowflake to have an equal opportunity to innovate on new ideas, create work with a lasting impact, and excel in a culture of collaboration.

AS A PRINCIPAL ANTI-ABUSE ARCHITECT AT SNOWFLAKE, YOU WILL:

• Understand the abuse risks faced by Snowflake and our customers.
• Design and deploy the anti-abuse controls for the newest, highest risk, features such as Snowpark, data sharing, and future engineering challenges as Snowflake grows.
• Work directly with senior engineers and management to illustrate abuse risks, threats, exploits, to guide business decisions.
• Research, plan, and build anti-abuse architectures for Snowflake products and features
• Provide designs and reference implementations for new anti-abuse features
• Research new services, controls, or features that can help protect the product and our customers from abuse.

OUR IDEAL PRINCIPAL SECURITY ARCHITECT WILL HAVE:

• Bachelor's degree in Computer Science or related technical field or equivalent practical experience.
• 10+ years of experience with anti-abuse AppSec, threat modeling, and/or secure architecture.
• In-depth knowledge of anti-abuse solutions, cloud, application security, network security, and/or infrastructure security.
• Applied knowledge of securing AWS, Azure, and other public cloud providers
• Experience performing source code reviews across various languages (e.g. Java, Go)
• Working knowledge of malware detection and best practices
• Ability to assess engineering designs and architecture diagrams for abuse risks
• Ability to assess abuse risks within an application of feature
• Experience communicating abuse risks and roadmaps to senior leadership
• Experience designing and implementing anti-abuse solutions
• Experience contributing to the security anti-abuse community such as presenting at conferences or meetups