Snowflake

Senior Incident Response Engineer

Snowflake

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $198,000 - $303,600 per year

Job Level

Senior

Tech Stack

CloudLinuxPythonSQLUnix

About the role

  • Join a high impact team of security experts to scale security at one of the fastest-growing software companies ever.
  • Work west coast hours, at a minimal 8am - 5pm PT.
  • Assume the role of incident commander, lead analyst, or investigator for incidents or insider threat investigations.
  • Respond to security incidents across various cloud service providers (CSP).
  • Maintain playbooks and develop comprehensive and well-structured incident reports.
  • Build scripts, tools, and methodologies to enhance Snowflake incident response.
  • Partner closely with our Threat Detection, Automation, ProductSecurity, Legal, HR, Cloud and Data teams.
  • Create and improve detections and threat signatures.
  • Participate in on-call rotation periodically which may involve non-traditional working hours.
  • Mentoring junior incident response engineers.

Requirements

  • Strong experience in IR, security/insider threat investigations, and running incidents as the incident commander
  • Experience using investigative tools such as EDR, DLP, SIEM, and SOAR
  • Automation experience in Python and be comfortable with SQL
  • Excellent understanding of cloud security across all cloud service providers
  • Knowledge of network and web protocols, and an in-depth knowledge of Linux/Unix tools and architecture
  • Experience conducting forensics investigations on Mac, Unix or Windows hosts.
  • Communicate well verbally and in writing
  • Has a strong growth mindset and team first attitude
  • Ability to convert long term strategy into short and long-term objectives
  • Experience leading security projects in a fast moving environment while maintaining collaboration with key stakeholders.
Benefits
  • Every Snowflake employee is expected to follow the company’s confidentiality and security standards for handling sensitive data.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
incident responsesecurity investigationsPythonSQLEDRDLPSIEMSOARforensics investigationsLinux/Unix
Soft skills
communicationmentoringgrowth mindsetteam collaborationleadershipstrategic planning