We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
#alert
Back to search results
New

Security Triage Analyst II

Snowflake
$141,000 - $205,800
parental leave, paid time off, paid holidays, 401(k), retirement plan
United States, California, Dublin
Oct 25, 2025

Snowflake is about empowering enterprises to achieve their full potential - and people too. With a culture that's all in on impact, innovation, and collaboration, Snowflake is the sweet spot for building big, moving fast, and taking technology - and careers - to the next level.

Snowflake started with a clear vision: develop a cloud data platform that is effective, affordable, and accessible to all data users. Snowflake developed an innovative new product with a built-for-the-cloud architecture that combines the power of data warehousing, the flexibility of big data platforms, and the elasticity of the cloud at a fraction of the cost of traditional solutions. We are now a global, world-class organization with offices in more than a dozen countries and serving many more.

AS A SECURITY TRIAGE ANALYST II AT SNOWFLAKE, YOU WILL:
  • Serve as the front-line of our global Incident Response Team.

  • Triage security alerts for insider threats, product security incidents, and traditional security events.

  • Determine the scope and impact of incidents from various alerting systems that monitor corporate IT and production environments, while staying within SLAs.

  • Escalate validated threats or take remediation actions.

  • Contribute to and follow incident response playbooks and runbooks.

  • Provide incident support during major security incidents.

  • Hone your technical and analytical skills while gaining invaluable experience working with a global team and learning from industry experts.

OUR IDEAL SECURITY TRIAGE ANALYST II WILL HAVE:
  • Experience: 2+ years on a Global Security Operations, Incident Response Team, or in a similar role.

  • Education: A Bachelor's or Master's degree in Information Security or an equivalent discipline.

  • Location: Pacific Time Zone

  • Analysis Skills:

    • Experience analyzing phishing reports, including email headers, URLs, and dynamic & static file analysis.

    • Ability to analyze host logs (Windows, Linux, MacOS) and identify abnormal patterns, such as processes running from non-standard folders, attempts to bypass security controls, and unusual network connections/requests.

  • Cloud & Networking Knowledge:

    • Experience with one or more of the top three cloud providers (AWS, Azure, GCP).

    • Experience with console audit log investigations (e.g., CloudTrail).

    • Strong understanding of networking fundamentals (TCP/IP, HTTP, DNS, Subnetting, VLAN, NAT) and basic network and system forensic principles.

  • Linux & Command Line:

    • Experience with the Linux CLI, including the ability to navigate the OS, execute basic commands, and interact with logs and directories.

    • Knowledge of important files and directories (e.g.,
      /etc/shadow, /var/log/) and an understanding of user and file permissions.

  • Programming & Databases:

    • The ability to read, write, and modify SQL queries.

    • Proven understanding of the fundamentals of object-oriented programming.

  • Containerization:

    • Basic understanding of containerization, with the ability to explain its benefits and drawbacks, and experience running a Dockerized application.

  • Tools: Experience using security tools and platforms such as Snowflake, CrowdStrike, GitHub, GitLab, Sublime, Google Workspace Admin logs, Obsidian Security, Code42, Tines, and GitGuardian.

  • Soft Skills:

    • A team-first, no-ego mindset.

    • Excellent written and verbal communication skills.

    • Self-starter with a mindset of ownership and curiosity.

ADDITIONAL ROLE DETAILS:
  • On-Call Rotation: This role requires an on-call rotation of approximately once per quarter.

Every Snowflake employee is expected to follow the company's confidentiality and security standards for handling sensitive data. Snowflake employees must abide by the company's data security plan as an essential part of their duties. It is every employee's duty to keep customer information secure and confidential.

Snowflake is growing fast, and we're scaling our team to help enable and accelerate our growth. We are looking for people who share our values, challenge ordinary thinking, and push the pace of innovation while building a future for themselves and Snowflake.

How do you want to make your impact?

For jobs located in the United States, please visit the job posting on the Snowflake Careers Site for salary and benefits information: careers.snowflake.com

The following represents the expected range of compensation for this role:

  • The estimated base salary range for this role is $141,000 - $205,800.
  • Additionally, this role is eligible to participate in Snowflake's bonus and equity plan.

The successful candidate's starting salary will be determined based on permissible, non-discriminatory factors such as skills, experience, and geographic location. This role is also eligible for a competitive benefits package that includes: medical, dental, vision, life, and disability insurance; 401(k) retirement plan; flexible spending & health savings account; at least 12 paid holidays; paid time off; parental leave; employee assistance program; and other company benefits.

To comply with pay transparency requirements and other statutes, you can notify us if you believe that a job posting is not compliant by completing this form.

Applied = 0

(web-675dddd98f-zqw5m)