Principal or senior security testing engineer

Posted: May 11, 2022, 6:27 p.m. - Full Time - Pune

There is only one Data Cloud. Snowflake’s founders started from scratch and designed a data platform built for the cloud that is effective, affordable, and accessible to all data users. But it didn’t stop there. They engineered Snowflake to power the Data Cloud, where thousands of organizations unlock the value of their data with near-unlimited scale, concurrency, and performance. This is our vision: a world with endless insights to tackle the challenges and opportunities of today and reveal the possibilities of tomorrow.

Snowflake Corporate Security team is laser focused on making security better for all Corporate/IT products and services. As a member of this team you will be involved in driving the security strategies across the corporate environment that balances Snowflake’s business growth while effectively managing security risks. The Corporate Security Architecture is looking for passionate Security Engineers to join this team and raise the security bar for Snowflake.

WHAT YOU WILL DO

Conduct manual security testing assessments against a diverse cloud environment and find vulnerabilities in software, systems, networks, and logic Collaborate with Corporate Security Engineers/Architects to prioritize and scope security testing requirements Set scope, objectives, and timelines for executing security testing assessments and leverage data to create useful metrics Work with security teams to communicate findings, recommendations, and knowledge to key stakeholders Liaison with the Global Red Team to align with their roadmap and objectives. Play a critical role in building a corporate security testing program that has a wide scope and impact considering successes, progression and maturity, and posture of application portfolio as key KPIs. Create readable security findings and reports with recommendations from the security issues uncovered during the assessment and level of risk and impact they entail. Be a trusted advisor on how to minimize risks and provide advice on methods to fix or lower security risks to systems in cloud first environments To be able to clearly articulate risks to technical and business audiences respectively. Ensures testing procedures are compliant with industry specific standards. Develop scalable automated security testing tools and platforms

WHAT YOU NEED

You have expert knowledge of security testing tools and techniques You have helped build security testing program before, and have a clear vision for how you would make it better You have experience conducting internal and external security assessments on web applications, systems, and cloud networks You have experience with security testing and assessment of Cloud, SaaS, PaaS, IaaS environments You can learn and find bugs in any language, specifically Java, JavaScript, ReactJS, NodeJS, Apex You can develop scalable security tools and platforms Minimum 6+ years of experience in penetration testing, security assessments, cyber security You have a continuously learning mindset with a wide range of security domain knowledge Preferred Security Certifications - OSCP, GPEN, GXPN, OSCE You have a proven ability to manage yourself and produce results You are a strong communicator who is comfortable working cross-functionally, with a track record of delivering results and demonstrating strong ownership. Experience with threat modeling, and secure architecture is preferred

Snowflake is growing fast, and we’re scaling our team to help enable and accelerate our growth. We are looking for people who share our values, challenge ordinary thinking, and push the pace of innovation while building a future for themselves and Snowflake.

How do you want to make your impact?