Staff Software Engineer, Identity & Access Management

Snowflake•Bellevue, WA

10h

About The Position

Snowflake is about empowering enterprises to achieve their full potential — and people too. With a culture that’s all in on impact, innovation, and collaboration, Snowflake is the sweet spot for building big, moving fast, and taking technology — and careers — to the next level. There is only one Data Cloud. Snowflake’s founders started from scratch and designed a data platform built for the cloud that is effective, affordable, and accessible to all data users. But it didn’t stop there. They engineered Snowflake to power the Data Cloud, where thousands of organizations unlock the value of their data with near-unlimited scale, concurrency, and performance. Easily analyze your unstructured data, build data agents and create ML workflows using a comprehensive suite of AI services, all within the same secure and governed environment as your data. This is our vision: a world with endless insights to tackle the challenges and opportunities of today and reveal the possibilities of tomorrow. The identity & access management (IAM) team’s charter is to enable our customers to confidently bring their most sensitive data and workloads to Snowflake. We provide the authentication and authorization capabilities for customers to secure their Snowflake accounts. We are heavily focused on critical AI adoption and security capabilities like Snowflake Intelligence access control, MCP server and clients, Agent identity, Admin guardrails for agents etc. Our feature set includes capabilities like user management, secret-less authentication for both human and service users, SSO integration with numerous IdPs, MFA, OAuth and OIDC support for 3P applications, and RBAC for granular access control. Our systems are critical to customer trust and maintaining Snowflake’s security, reliability and performance. The team culture is very collaborative with ample opportunities for growth and mentorship from Principal engineers.

Requirements

10+ years of industry experience designing, building, and supporting large-scale distributed systems in production, with recent experience in building large scale cloud services.
Deep knowledge and experience with one or more areas of identity and access management such as authentication, authorization, etc. Knowledge of industry standard security concepts and protocols like SAML, SCIM, OAuth, OIDC, Federation and RBAC is a plus.
Extremely strong fundamental computer science skills.
Strong development skills in Java, C# or C++ preferred.
Advanced degree in Computer Science or related field.

Nice To Haves

Experience with database systems and database internals, such as query engines and optimizers are a big plus.

Responsibilities

Design and implement critical AI security capabilities for controlled, audited, restricted agent workflows, both inbound and outbound.
Design and implement features that provide critical identity and access management capabilities, including integration with the next generation identity providers and authentication protocols.
Build authorization frameworks to provide fine grained access control, which can scale to seamlessly managing millions of objects and users.
Design and develop solutions for seamless and secure data sharing, access to applications running in snowflake, and access via external applications
Lead and deliver multi-engineer x-team projects, including managing low-level project planning and execution
Actively guide the team and partners via high-quality code and design reviews
Play a critical role in shaping the strategic direction for your product focus area
Collaborate, influence and guide partner teams on IAM-related features and architecture
Showcase and hold a high bar for quality, speed, and sound technical decisions