Senior (Staff) Penetration Tester

Snowflake is about empowering enterprises to achieve their full potential — and people too. With a culture that’s all in on impact, innovation, and collaboration, Snowflake is the sweet spot for building big, moving fast, and taking technology — and careers — to the next level.

• You have a passion for writing code to solve problems combined with an interest in Offensive Security.

• You have 7+ years of software or infrastructure development experience, preferably in a cloud environment.

• Knowledge of common bugs or misconfigurations software and cloud infrastructure (AWS, GCP, and Azure).

• You have a continuously learning mindset with a desire to dive and explore a wide range of security domains.

• You can demonstrate a strong background in one of the following languages:

  • Golang, Python, Java, JavaScript, C++, C

• Strong communications skills to comfortably work cross-functionally across the organization

• Experience in Offensive Security is a plus but is not required for this role.

• Develop tools, methodologies and infrastructure to support Red Team engagements in a variety of cloud environments and novel platforms.

• Participate in red team engagements against a diverse cloud environment and find vulnerabilities in software, systems, and networks

• Set scope, objectives, and timelines for red team engagements and leverage data to create useful metrics

• Work with security and engineering teams to communicate findings, recommendations, and knowledge to key stakeholders

• Play a critical role in building a Red Team that has a wide scope and impact

• We are laser focused on doing security better, and we do not tolerate the status quo.

• We are exploring new security domains across clouds and through the Snowflake platform.

• We have strong demand from our customers, and support from the business for security.

• We are a great team that combines a diverse set of backgrounds and skills.

• Did we mention we are one of the fastest-growing software companies, ever? The opportunity for impact is enormous.

Principal Vulnerability Research & Development Engineer

• You break things, and you want to break them anywhere, in any cloud.

• You want your work to mean other people cannot break our things, and collaborate to get it done.

• You eat and sleep offensive security research, bug bounties, CTFs, fuzzing, tools, and techniques.

• You find and exploit bugs in:

  • C++, Java, JavaScript, Go, and Python

  • Kubernets, AWS, GCP, and Azure

  • Memory management, namespaces, cgroups, etc.

• You have helped build, or contributed at a senior level to an offensive security program before, and have strong opinions for how to make it better.

• You have a proven ability to manage yourself and produce results

• You are a strong communicator who is comfortable working cross-functionally, with a track record of delivering results

• Lead our offensive security team.

• Break Snowflake before our adversaries can.

• Work with threat hunters to make sure it, and all its variants can not happen again.

• Prove it with data.

• We are laser focused on doing security better, and we do not tolerate the status quo.

• We have strong demand from our customers, and support from the business for security.

• We are a great team that combines a diverse set of backgrounds and skills.

• Did we mention we are one of the fastest-growing software companies, ever? The opportunity for impact is enormous.

Snowflake is growing fast, and we’re scaling our team to help enable and accelerate our growth. We are looking for people who share our values, challenge ordinary thinking, and push the pace of innovation while building a future for themselves and Snowflake.

How do you want to make your impact?

For jobs located in the United States, please visit the job posting on the Snowflake Careers Site for salary and benefits information: careers.snowflake.com