Sr. Red Team Engineer

The Global Security Engineering organization protects Snowflake from internal and external threats through proactive and reactive security functions. The Red Team in the Global Security Engineering org is responsible for conducting Red Team engagements against Snowflake’s diverse cloud environment and finding vulnerabilities in software systems and networks. In this role you will execute Red Team engagements across Snowflake’s corporate and product environments. You will partner with cross-functional teams to communicate gaps discovered during engagements and help drive remediation. You will develop tools perform security research and build infrastructure to augment the Red Team’s capabilities. Our ideal candidate wakes up each morning thinking about different parts of the business that can benefit from Red Team engagements. Their goal is to identify relevant security risks and help the business understand them so they can build effective defenses and protect Snowflake customers and their data. Snowflake is growing fast and we’re scaling our team to help enable and accelerate our growth. We are looking for people who share our values challenge ordinary thinking and push the pace of innovation while building a future for themselves and Snowflake.

RESPONSIBILITIES:

• Develop tools methodologies and infrastructure to support Red Team engagements in a variety of cloud environments and novel platforms

• Participate in Red Team engagements against a diverse cloud environment and find vulnerabilities in software systems and networks

• Set scope objectives and timelines for Red Team engagements and leverage data to create meaningful metrics

• Work with security and engineering teams to communicate findings recommendations and knowledge to key stakeholders

• Play a critical role in building a Red Team that has a wide scope and impact

MINIMUM QUALIFICATIONS: 5+ years experience working in an information security discipline preferably with a focus in offensive security

• You have a continuously learning mindset with a desire to dive and explore a wide range of security domains

• Strong communications skills to comfortably work cross-functionally across the organization

• Ability to document findings from engagements and create a narrative for technical and executive audiences

• Knowledge of common bugs or misconfigurations in software and cloud infrastructure (AWS GCP and Azure)

• Experience reading and writing code in one of the following languages:

  • Golang Python Java JavaScript C++ C

PREFERRED QUALIFICATIONS:

• 7+  years experience working in an information security discipline preferably with a focus in offensive security

• Prior experience leading Red Teams in a high growth cloud native technology company

• Contributions to the security community such as open source tools research papers conference talks etc.

• You can demonstrate a strong background in one of the following languages:

  • Golang Python Java JavaScript C++ C