Senior Incident Response Engineer

We’re at the forefront of the data revolution, committed to building the world’s greatest data and applications platform. Our ‘get it done’ culture allows everyone at Snowflake to have an equal opportunity to innovate on new ideas, create work with a lasting impact, and excel in a culture of collaboration.

Snowflake is growing fast and we’re scaling our team to help enable and accelerate our growth. We’re passionate about our people, our customers, our values and our culture! We’re also looking for people with a growth mindset and the pragmatic insight to solve for today while building for the future. And as a Snowflake employee, you will be accountable for supporting and enabling diversity and belonging.

Snowflake started with a clear vision: make modern data warehousing effective, affordable, and accessible to all data users. Because traditional on-premises and cloud solutions struggle with this, Snowflake developed an innovative product with a new built-for-the-cloud architecture that combines the power of data warehousing, the flexibility of big data platforms, and the elasticity of the cloud at a fraction of the cost of traditional solutions.

As an Incident Response Engineer at Snowflake you will:

• Join a high impact team of security experts to scale security at one of the fastest-growing software companies ever
• Monitor, identify, and respond to security events
• Analyze, triage, and report on security incidents and investigations
• Develop and maintain playbooks and checklists to ensure our work is consistent and repeatable
• Partner closely with our Threat Detection, Automation, ProductSecurity, Legal, HR, Cloud and Data teams
• Create and improve detections and threat signatures
• Participate in on-call rotation periodically which may involve non-traditional working hours

Our ideal Incident Response Engineer will have:

• Strong experience in IR, security investigations, and running incidents as the incident commander
• Experience using investigative tools such as EDR, DLP, SIEM, and SOAR
• Automation experience in Python and be comfortable with SQL 
• Excellent understanding of cloud security
• Ability to convert long term strategy into short and long-term objectives
• Significant experience leading security projects 
• Knowledge of network and web protocols, and an in-depth knowledge of Linux/Unix tools and architecture

Snowflake is growing fast, and we’re scaling our team to help enable and accelerate our growth. We are looking for people who share our values, challenge ordinary thinking, and push the pace of innovation while building a future for themselves and Snowflake. 

How do you want to make your impact?