Director of Enterprise Security Trust (Certifications & Audit)

Where Data Does More. Join the Snowflake team.

Snowflake is seeking a highly experienced and strategic Director, Enterprise Security Trust, specializing in Certifications and Audit. This pivotal role will be responsible for leading Snowflake's efforts in achieving and maintaining a broad spectrum of security certifications, navigating complex public sector compliance, influencing regulatory standards, and working with others to drive the realization of optimized security audit and certifications. Reporting directly to the Senior Director of Security Trust, this role will be instrumental in enabling new markets and workloads, and fostering and maintaining trust with Snowflake's global customer base.

• Commercial Certifications: Lead strategy, execution, and maintenance of all commercial security certifications (e.g., ISO 27001, SOC 2 Type 2, PCI DSS). This includes managing and optimizing the entire certification lifecycle, from initial assessment and readiness to audit execution and ongoing compliance.

• Public Sector Certifications: Lead our Public Sector team to drive the acquisition and maintenance of critical public sector certifications and authorizations (e.g., FedRAMP, CMMC, DoD SRG) to enable Snowflake's expansion into government and regulated industries.

• Regulator Influence: Working with Strategic Market Enablement and Commercial and Govmt Public Relations stakeholders, define and help execute a regulator-influencer strategy - actively engaging with regulatory bodies, industry working groups, and standards organizations to influence the development of security frameworks and ensure Snowflake's voice is heard in evolving compliance landscapes.

• Statutory Audit: Oversee all statutory security audits, coordinating with internal teams and external auditors to ensure timely and successful completion. This includes financial audits, privacy audits, and other legally mandated assessments.

• Auditor Management: Build and maintain strong relationships with external audit firms, manage and optimize audit engagements and global delivery models, and ensure efficient and effective delivery and collaboration throughout the audit process.

• Automation and AI: Co-develop, champion, implement and drive strategies to streamline audit processes, improve control and audit effectiveness, reduce audit fatigue, and leverage automation. Establish and help drive AI across security audit, certification, and compliance.

• Metrics and Reporting: Establish and drive certification and audit team operations metrics that helps leadership identify and prioritize opportunities for improved execution. Work with teams and leadership to provide executive-level reporting and communications across all certification and security audit areas. Establish and ensure risk reporting and remediation from security certification and audit processes. Leverage Snowflake's capabilities for robust data analysis, reporting, and driving data-driven insights to optimize security certifications and audit processes.

• People Development: Lead, mentor, and grow a team of security professionals focused on certifications, audit, and compliance.

• Experience with cloud security platforms and architectures (e.g., AWS, Azure, GCP).

• Strong program management skills, with experience managing complex, cross-functional security initiatives.

• Public speaking, publications or presentations on security certifications, audit, or compliance topics.

• Demonstrated experience utilizing Snowflake (or similar analytics and data platforms / tools) for data analysis, reporting, and dashboarding related to security compliance and audit metrics.

• Provide expert guidance on security compliance risks and opportunities to senior leadership.

• Stay abreast of emerging security threats, regulatory changes, and industry best practices to continuously enhance Snowflake's security posture.

• Familiarity with data privacy regulations such as GDPR, CCPA, etc.

• 10+ years of experience in security governance, risk, and compliance (GRC), with a strong focus on security certifications and audit management.

• Proven track record of successfully leading organizations through complex security certifications, compliance, and security governance (e.g., FedRAMP, ISO 27001, SOC 2, PCI DSS).

• Deep understanding of commercial and public sector security compliance frameworks and requirements.

• Experience engaging with and influencing regulatory bodies.

• Strong knowledge of audit methodologies and experience managing external audit relationships.

• Strong understanding of leveraging data and automation to deliver high efficiency and quality audits.

• Demonstrated ability to build, lead, and develop high-performing teams.

• Exceptional communication, interpersonal, collaboration, and presentation skills, with the ability to articulate complex security and compliance concepts to diverse audiences.

• Ability to thrive in a fast-paced, dynamic, and rapidly growing environment.

• Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred.

• Relevant industry certifications such as CISM, CISA, CISSP, or equivalent are highly desirable.

Every Snowflake employee is expected to follow the company's confidentiality and security standards for handling sensitive data. Snowflake employees must abide by the company's data security plan as an essential part of their duties. It is every employee's duty to keep customer information secure and confidential.

Snowflake is growing fast, and we're scaling our team to help enable and accelerate our growth. We are looking for people who share our values, challenge ordinary thinking, and push the pace of innovation while building a future for themselves and Snowflake.

How do you want to make your impact?

For jobs located in the United States, please visit the job posting on the Snowflake Careers Site for salary and benefits information: careers.snowflake.com

The following represents the expected range of compensation for this role:

• The estimated base salary range for this role is $211,000 - $315,000.
• Additionally, this role is eligible to participate in Snowflake's bonus and equity plan.

The successful candidate's starting salary will be determined based on permissible, non-discriminatory factors such as skills, experience, and geographic location. This role is also eligible for a competitive benefits package that includes: medical, dental, vision, life, and disability insurance; 401(k) retirement plan; flexible spending & health savings account; at least 12 paid holidays; paid time off; parental leave; employee assistance program; and other company benefits.