Why This Job is Featured on The SaaS Jobs
Security roles in SaaS increasingly sit at the intersection of cloud infrastructure, platform engineering, and product delivery, and this posting reflects that shift. Snowflake operates a large-scale cloud data platform, which makes offensive security work less about isolated application testing and more about probing complex, multi-cloud systems, internal tooling, and novel services that customers depend on.
For a SaaS security career, the notable value here is the emphasis on building capability, not just running engagements. Developing red team tools and methodologies, defining scope and metrics, and translating findings to engineering partners are all experiences that map well to mature SaaS organizations where security outcomes are expected to be measurable and repeatable. The role also signals breadth across AWS, GCP, and Azure, which is increasingly transferable as SaaS companies standardize on cloud-agnostic patterns and shared control frameworks.
This position best fits a senior practitioner who prefers hands-on work and can move between code, cloud primitives, and adversarial thinking without losing sight of stakeholder communication. It also suits someone motivated by ambiguity and experimentation, particularly where the work includes shaping how an offensive security program operates rather than only executing predefined tests.
The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.
Job Description
At Snowflake, we are powering the era of the agentic enterprise. To usher in this new era, we seek AI-native thinkers across every function who are energized by the opportunity to reinvent how they work. You don’t just use tools; you possess an innate curiosity, treating AI as a high-trust collaborator that is core to how you solve problems and accelerate your impact. We look for low-ego individuals who thrive in dynamic and fast-moving environments and move with an experimental mindset — who rapidly test emerging capabilities to discover simpler, more powerful ways to deliver results. At Snowflake, your role isn't just to execute a function, but to help redefine the future of how work gets done.
WHAT YOU NEED:
You have a passion for writing code to solve problems combined with an interest in Offensive Security.
You have 7+ years of software or infrastructure development experience, preferably in a cloud environment.
Knowledge of common bugs or misconfigurations software and cloud infrastructure (AWS, GCP, and Azure).
You have a continuously learning mindset with a desire to dive and explore a wide range of security domains.
You can demonstrate a strong background in one of the following languages:
Golang, Python, Java, JavaScript, C++, C
Strong communications skills to comfortably work cross-functionally across the organization
Experience in Offensive Security is a plus but is not required for this role.
WHAT YOU WILL DO:
Develop tools, methodologies and infrastructure to support Red Team engagements in a variety of cloud environments and novel platforms.
Participate in red team engagements against a diverse cloud environment and find vulnerabilities in software, systems, and networks
Set scope, objectives, and timelines for red team engagements and leverage data to create useful metrics
Work with security and engineering teams to communicate findings, recommendations, and knowledge to key stakeholders
Play a critical role in building a Red Team that has a wide scope and impact
WHY YOU SHOULD WORK WITH US:
We are laser focused on doing security better, and we do not tolerate the status quo.
We are exploring new security domains across clouds and through the Snowflake platform.
We have strong demand from our customers, and support from the business for security.
We are a great team that combines a diverse set of backgrounds and skills.
Did we mention we are one of the fastest-growing software companies, ever? The opportunity for impact is enormous.
Principal Vulnerability Research & Development Engineer
WHAT YOU NEED :
You break things, and you want to break them anywhere, in any cloud.
You want your work to mean other people cannot break our things, and collaborate to get it done.
You eat and sleep offensive security research, bug bounties, CTFs, fuzzing, tools, and techniques.
You find and exploit bugs in:
C++, Java, JavaScript, Go, and Python
Kubernets, AWS, GCP, and Azure
Memory management, namespaces, cgroups, etc.
You have helped build, or contributed at a senior level to an offensive security program before, and have strong opinions for how to make it better.
You have a proven ability to manage yourself and produce results
You are a strong communicator who is comfortable working cross-functionally, with a track record of delivering results
WHAT YOU WILL DO :
Lead our offensive security team.
Break Snowflake before our adversaries can.
Work with threat hunters to make sure it, and all its variants can not happen again.
Prove it with data.
WHY YOU SHOULD WORK WITH US :
We are laser focused on doing security better, and we do not tolerate the status quo.
We have strong demand from our customers, and support from the business for security.
We are a great team that combines a diverse set of backgrounds and skills.
Did we mention we are one of the fastest-growing software companies, ever? The opportunity for impact is enormous.
Snowflake is growing fast, and we’re scaling our team to help enable and accelerate our growth. We are looking for people who share our values, challenge ordinary thinking, and push the pace of innovation while building a future for themselves and Snowflake.
How do you want to make your impact?
For jobs located in the United States, please visit the job posting on the Snowflake Careers Site for salary and benefits information: careers.snowflake.com
