Jobs
Snowflake Inc. logoSnowflake Inc.

Sr. Global Security & Compliance Analyst

Build the future of data. Join the Snowflake team.

Since Snowflake handles a wide variety of data for its customers, Snowflake has implemented a disciplined and strategic data protection program. The role of Senior Global Security & Compliance Analyst is a high-visibility, internal-facing individual contributor role within the Snowflake Security team, responsible for three primary objectives:

  • Partner with internal Snowflake product development, engineering, and operations teams to develop and implement rigorous and effective technical and operational cybersecurity controls within our Snowflake Service product and our organization
  • Support Snowflake Global Security Compliance & Risk (GSCR) programs, projects, compliance obligations, and audits, ensuring that the Snowflake Data Cloud product and internal security services adhere to  the widest selection of cybersecurity regulatory and compliance frameworks
  • Support market expansion by partnering to  driving design and implementation of requirements with partners across Snowflake

AS A SENIOR GLOBAL SECURITY & COMPLIANCE ANALYST AT SNOWFLAKE YOU WILL :

  • Perform and document control and requirement gap analysis for new certifications against existing Snowflake control posture
  • Work closely with Product and Engineering teams to develop Product Requirements Documents (PRDs) to support compliance market expansion. 
  • Achieve and maintain a comprehensive understanding of new and emerging compliance requirements and control gaps or risks. 
  • Drive implementation and maturity of security controls, and the resolution of controls deficiencies and gaps,  by working closely with  Engineering, Product, IT, Security, and TPM teams.
  • Ensure timely delivery of the necessary evidence to the audit teams to support our audit cycle.
  • Drive timely and transparent communication and reporting on progress on key deliverables, priorities, goals, and issues across the team and stakeholders
  • Support the development and operation of automated security compliance tools by regularly engaging with stakeholders to develop effective means to monitor, alert, and report on the security posture of the Snowflake Data Cloud in real time.
  • Become an expert on the customer enabled security features available within the Snowflake Data Cloud product, including best practices for implementation of regulatory required security features.
  • Coordinate with personnel across the GSCR team to ensure achievement of overall team objectives in the areas of customer trust, internal and external audit, change management, risk assessment and management, vulnerability management, and security training.

OUR IDEAL SENIOR GLOBAL SECURITY & COMPLIANCE ANALYST MUST HAVE :

  • Self-motivated problem solver who is eager to identify and learn the latest security technologies and methods to ensure that Snowflake is highly impervious to malicious threat actors and exploitation attempts.
  • Be comfortable engaging within a high-paced and complex engineering environment
  • Technical cloud solutions and security controls competence sufficient to understand and explain complicated security concepts to various Snowflake stakeholders possessing varying levels of cybersecurity skill and understanding.
  • Strong experience with the NIST Risk Management Framework (RMF), with an understanding and practical knowledge of the full NIST 800-53 High Security Controls Catalog.
  • Experience with cloud computing concepts and architectures.
  • Experience working with and implementing security controls within two or more of the following cybersecurity frameworks: PCI-DSS, SOC 1/2, HITRUST, ISO 27001, FedRAMP, GDPR.
  • Experience with global certs such as Cyber Essentials Plus (CE+), Germany C5, Canada Protected B, or Australia IRAP, is a plus.

OUR IDEAL SENIOR GLOBAL SECURITY & COMPLIANCE ANALYST MIGHT ALSO HAVE :

  • Software analytics and database architecture and operations experience
  • Familiarity with AWS, Microsoft Azure, and/or Google Cloud
  • Familiarity and understanding of implementing CIS Benchmarks
  • Achievements that demonstrate candidate is extremely detail oriented
  • Achievements that demonstrate exceptional written and verbal communication skills
  • Previous role that requires exceptional organizational skills
  • Project or program management experience
  • Extremely high ethical standards as proven by successful background checks and references
  • Experience working with C-level stakeholders within a large enterprise environment
  • Previous experience working with a variety of personalities from a variety of cultures
  • CISSP, CISM, CISA, or similar certification is a plus

Cyber Security Jobs by Category

Remote jobsFull Time jobsCISM jobsAudit jobsAnalyst jobs

Cyber Security Salaries

Remote SalaryFull Time SalaryCISM SalaryAudit SalaryAnalyst Salary