At Snorkel AI, we’re redefining how people and organizations build AI applications. Snorkel started as a research project in the Stanford AI Lab in 2016, creating a higher-level interface to machine learning through programmatically labeled and managed training data. From deploying in some of the world’s largest and most sophisticated tech organizations, to empowering scientists, doctors, and journalists — we’ve seen firsthand how this approach democratizes and accelerates AI. Now, we’re building Snorkel Flow to bring our technology to everyone!

Building Snorkel Flow requires outstanding engineers and technologies across the stack, including scalable data pipelines, elegant and intuitive interfaces (both visual and programmatic), state-of-the-art ML modeling techniques, and best practices for seamless deployment. Modern AI approaches require large labeled training datasets to learn from. While traditional approaches typically rely on armies of human annotators to label by hand, Snorkel Flow empowers users to programmatically label and build training data sets to drive a radically faster, more flexible, and higher quality end-to-end AI development process. Snorkel Flow is an end-to-end development platform, complete with a GUI and powerful programmatic interfaces for driving the development process for full AI application workflows: from preprocessing, to programmatic training data creation, to ML model training, to analysis, and deployment. It's the data-first platform for enterprise AI.

Excited to help us redefine how AI applications are built? Apply to be the newest Snorkeler!

As the first and leading Security Engineer at Snorkel AI, you will establish the security bar and standardize security practices at Snorkel AI. You will achieve that by working and collaborating with cross-functional teams to provide guidance on security best practices. The security team is responsible for leading and implementing the various initiatives that relate to improving Snorkel AI's product and infrastructure security.

Main Responsibilities

Implement and enhance software security SDLC tools and processes
Drive and implement continuous security practices and posture for infrastructure such as K8s and AWS
Find and remove outdated and vulnerable code and code libraries.
Develop security training and guidance to internal development teams
Provide subject matter expertise on architecture, authentication and system security
Create and maintain artifacts in a protected repository established as a single source of truth
Assess security tools and integrate tools as needed, particularly open-source tools
Drive and collaborate on security and compliance certification such as SOC2, ISO27001, PCI, HIPAA, etc.
Handle communications with independent vulnerability researchers and design appropriate mitigation strategies for reported vulnerabilities.
Assist with customer engagements regarding security policies communication, documentation and vendor questionnaires

Preferred Qualifications

Familiar with common security libraries, security controls, and common security flaws that apply to software products, SaaS and public clouds
Ability to discover and patch SQLi, XSS, CSRF, SSRF, authentication and authorization flaws, and other web-based security vulnerabilities (OWASP Top 10 and beyond).
Knowledge of common authentication technologies including OAuth, SAML, CAs, OTP/TOTP.
Knowledge of browser-based security controls such as CSP, HSTS, XFO.
Experience with standard security scanning, testing and monitoring tools such as Bandit, Twistlock, Aqua Security, Snyk, AWS GuardDuty, among others.
Familiarity with public cloud best practices for security.
Ability to clearly and professionally handle communications with outside researchers, users, and customers.

The salary range for our Tier 1 locations of San Francisco, Seattle, Los Angeles & New York is $191,000.00 - $225,000.00.

Be Your Best At Snorkel

Snorkel AI is on a mission to make machine learning practical for everyone, and it starts with building a team that welcomes, represents and gives opportunity to all. We work at the frontier of AI and software engineering, and believe that underrepresented communities need to play a part in shaping the future of these fields. At Snorkel AI, we actively work to create an environment that values end-to-end ownership, diverse forms of impact, and opportunities for personal growth.

Snorkelers are supported by an amazing team and an amazing set of benefits. We offer comprehensive medical, dental, and vision plans for Snorkelers and their families, plus a yearly wellness stipend. Our 401k program lets Snorkelers plan for their future and our parental leave program lets new parents take up to 20 weeks of paid time off. Learn more about these benefits and more — like our workstation setup allowance — on our Careers page.

Snorkel AI is proud to be an Equal Employment Opportunity employer and is committed to building a team that represents a variety of backgrounds, perspectives, and skills. Snorkel AI embraces diversity and provides equal employment opportunities to all employees and applicants for employment. Snorkel AI prohibits discrimination and harassment of any type on the basis of race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local law. All employment is decided on the basis of qualifications, performance, merit, and business need.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Apply for this Job

* Required

First Name *

Last Name *

Email *

Phone *

Resume/CV *

Dropbox Google Drive

(File types: pdf, doc, docx, txt, rtf)

Cover Letter

Dropbox Google Drive

(File types: pdf, doc, docx, txt, rtf)

LinkedIn Profile

Website

Current Company

Twitter URL

GitHub URL

Other website

When would you be able to start?

How did you hear about us?

Additional Information

GDPR Disclosure *

Personal Information Protection Notice for EU and UK Applicants

1. Introduction

Snorkel AI and its subsidiaries and affiliates (“Company” or “We”) [operate/may operate] in many different countries. Some of these countries have laws related to the collection, use, transfer and disclosure of the personal information of individuals, including applicants. We take these obligations very seriously and are committed to protecting the privacy of our current and former applicants.

The purpose of this Personal Information Protection Notice for EU and UK Applicants (“Notice”) is to give applicants who are based in the EU and UK, (“EU and UK Applicants”) information about: what personal information we collect; how we collect, use and disclose that information and the legal grounds for us doing this; and their rights in respect of their personal information.

Snorkel AI is the data controller of your personal information and is responsible for how your personal information is processed.

This Notice does not form part of your application or any future contract of employment and may be updated at any time. We will provide you with a revised Notice if we make any substantial updates. It is important you read this Notice, so that you are aware of how and why we are using your personal information.

2. What Information We Collect About EU and UK Applicants

Before, during and after their application to the Company, including time spent on the Careers section of our website (located at https://snorkel.ai/company/ (“Snorkel Careers”) we may collect and process information about EU and UK Applicants. We refer to such information in this Notice as “EU and UK Personal Information.” We collect the following EU and UK Personal Information:

Personal Details: Name, home contact details (email, phone numbers, physical address) languages(s) spoken, gender, date of birth, national identification number, social security number, disability status, emergency contact information and photograph;
Documentation Required under Immigration Laws: Citizenship and passport data, details of residency or work permit;
Talent Management Information: Details contained in letters of application and resume/CV (previous employment background, education history, professional qualifications and memberships, language and other relevant skills, certification, certification expiration dates), information necessary to complete a background check, information relating to references such as referees’ names and contact details, details on performance management ratings, development programs planned and attended, e-learning programs, performance and development reviews, willingness to relocate, driver’s license information, and information used to populate employee biographies;
Any other information you provide to us: such as current salary, desired salary, employment preferences; and
Sensitive Information: EU and UK Personal Information revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data or biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a person’s sex life or sexual orientation, and criminal conviction data. Data concerning health may include your body temperature, health symptoms and other screening information in connection with the Company’s health and safety plans and protocols, including screening required to access Company offices/facilities and other measures designed to prevent the transmission of COVID-19 or other infectious diseases.

We ask that you avoid submitting Sensitive Information, unless such information is legally required and/or the Company requests you to submit such information.

Any information you submit through the Careers Site must be true, complete and not misleading. Submitting inaccurate, incomplete or misleading information may lead to a rejection of your application during the recruitment process or disciplinary action including immediate termination of your employment. In addition, it is your responsibility to ensure that the information you submit does not violate any third party’s rights.

If you provide us with personal information of a referee or any other individual as part of your application, it is your responsibility to obtain consent from that individual prior to providing the information to us.

3. Sources of EU and UK Personal Information

We collect EU and UK Personal Information from the following sources:

EU and UK Applicants: in person, online, by telephone, or in written correspondence and forms;
Third-party websites: where you can apply for jobs at the Company;
Previous employers and other referees: in the form of employment references;
Background and credit check vendors: as part of the recruitment process;
Employment agencies and recruiters; and
Providers of sanctions and “politically exposed persons” screening lists.

4. How we use and disclose EU and UK Personal Information

Legal Basis for Processing

We will only use EU and UK Personal Information when the law allows us to. Most commonly, we will use your EU and UK Personal Information in the following circumstances:

where it is necessary in order to take steps at your request prior to entering into an employment contract;
where it is necessary to comply with a legal obligation (including, in respect of Sensitive Information, obligations under employment law) on us; and
where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. For example, the Company has a legitimate interest in conducting certain background checks on applicants to ensure that it is offering employment to those individuals whom it considers are most likely to be successful when working for the Company.

We may also use your EU and UK Personal Information in the following situations, which are likely to be rare:

where it is necessary to protect your (or someone else's) vital interests (and, in the case of Sensitive Information, where you are incapable of consenting);
where it is necessary for us to defend, prosecute or make a claim against you, us or a third party; and
in the case of Sensitive Information, where you have made the information public.

In particular, we may use your Sensitive Information, such as health/medical information, in order to accommodate a disability or illness during the recruitment process, and reduce the risk of transmission of COVID-19 or other infectious diseases should you be visiting the Company offices, your diversity-related EU and UK Personal Information (such as race or ethnicity) in order to comply with legal obligations relating to diversity and anti-discrimination, and your criminal conviction data only where it is appropriate (given the role for which you are applying) and we are legally able to do so.

Purposes of Processing

We process EU and UK Personal Information for the following purposes:

Managing Workforce: Managing recruitment and assessing your suitability, capabilities and qualifications for a job with us, processing your application and performing background checks if we offer you a job, such as credit checks, anti-fraud checks and checks to prevent fraud and money laundering;
Communications: Facilitating communication with you regarding your application;
Taking legal action: Pursuing legal rights and remedies, defending litigation and managing any internal complaints or claims, conducting investigations and complying with internal policies and procedures; and
Compliance and safety: Complying with legal (including, in respect of Sensitive Information, obligations under employment law) and other requirements, such as record-keeping and reporting obligations, conducting audits, compliance with government inspections and other requests from government or other public authorities, responding to legal process such as subpoenas. This includes complying with applicable public health guidelines and requirements related to the prevention and control of COVID-19 or other infectious diseases, as well as ensuring the health and safety of employees by controlling access to and monitoring our physical premises (e.g. by requiring health screenings to access Company offices/facilities).

There may be more than one purpose that justifies our use of your EU and UK Personal Information in any particular circumstance.

We will only use your EU and UK Personal Information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your EU and UK Personal Information for an unrelated purpose, we will notify you and explain the legal basis which allows us to do so.

If you fail to provide certain EU and UK Personal Information when requested, we may not be able to review your application, or we may be prevented from complying with our legal obligations.

Disclosures to third parties

We share EU and UK Personal Information with the following unaffiliated third parties:

Service Providers: Companies that provide products and services to the Company such as human resources services, IT systems suppliers and support and background check providers, recruiters and headhunters, and hosting service providers; and
Public and Governmental Authorities: Entities that regulate or have jurisdiction over the Company such as regulatory authorities, public bodies, and judicial bodies, including to meet national security or law enforcement requirements.

5. Transfer of EU and UK Personal Information

The Company may disclose EU and UK Personal Information throughout the world to fulfill the purposes described above. This may include transferring EU and UK Personal Information to other countries (including countries other than where an EU or UK Applicant is based and located outside the European Economic Area (“EEA”) and UK) that have different data protection regimes and which are not deemed to provide an adequate level of protection for EU and UK Personal Information. To ensure that EU and UK Personal Information is sufficiently protected when transferred outside the EEA and UK the Company has put in place protective measures. Further information regarding the Company’s protective measures is available from our Data Protection Officer.

6. Data Security

The Company will take appropriate measures to protect EU and UK Personal Information that are consistent with applicable privacy and data security laws and regulations, including requiring service providers to use appropriate measures to protect the confidentiality and security of EU and UK Personal Information.

Access to EU and UK Personal Information within the Company will be limited to those who have a need to know the information for the purposes described above, and may include personnel in HR, IT, Compliance, Legal, Finance and Accounting. Such personnel will generally have access to EU and UK Applicants’ business contact information such as name, desired position, telephone number, postal address and email address.

The Company has put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach of your EU and UK Personal Information where we are legally required to do so.

7. Data Retention

The Company’s retention periods for EU and UK Personal Information are based on business needs and legal requirements. We retain EU and UK Personal Information for as long as is necessary for the processing purpose(s) for which the information was collected, as set out in this Notice, and any other permissible, related purposes. For example, we may retain certain information to comply with regulatory requirements regarding the retention of such data, or in the event a litigation hold is imposed. When EU and UK Personal Information is no longer needed, we [either irreversibly anonymise the data (and we may further retain and use the anonymized information) or] securely destroy the data. [For more information on specific retention periods, please refer to the Company’s Data Retention Policy].

8. Data Accuracy

The Company will take reasonable steps to ensure that the EU and UK Personal Information processed is reliable for its intended use and is accurate and complete for carrying out the purposes described in this Notice.

9. Automated Decisions

The Company does not envisage that you will be subject to decisions that will have a significant impact on you based solely on automated decision-making. The Company will notify you in writing if this position changes.

10. Your Rights

You have the right, in certain circumstances, to object to the processing of your EU and UK Personal Information. You can exercise this right by contacting Shwetha Alampalli, Head of Talent at shwetha.alampalli@snorkel.ai.

You also have the right, in certain circumstances, to access your EU and UK Personal Information, to correct inaccurate EU and UK Personal Information, to have your EU and UK Personal Information erased, to restrict the processing of your EU and UK Personal Information, to receive the EU and UK Personal Information you have provided to the Company in a structured, commonly used and machine-readable format for onward transmission, and to object to automated decision-making. If you wish to exercise any of these rights, please contact Shwetha Alampalli, Head of Talent at shwetha.alampalli@snorkel.ai. Please note that certain EU and UK Personal Information may be exempt from such access, correction, erasure, restriction and portability requests in accordance with applicable data protection laws or other laws and regulations.

You also can file a complaint with your local data protection supervisory authority. Please contact Shwetha Alampalli, Head of Talent at shwetha.alampalli@snorkel.ai for details of the relevant authority.

11. Your Obligations

You should keep your EU and UK Personal Information up to date and inform us of any significant changes to your EU and UK Personal Information.

12. Questions or Complaints

Please contact the Head of Talent at shwetha.alampalli@snorkel.ai with any questions or complaints regarding this Notice or the Company’s privacy practices.

Applicant’s Acknowledgment

I acknowledge that I have received a copy of the Company’s Personal Information Protection Notice for EU and UK Applicants and that I have read and understood it.

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Snorkel AI’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Gender

Are you Hispanic/Latino?

Please identify your race

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Veteran Status

Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

Autism
Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
Blind or low vision
Cancer
Cardiovascular or heart disease
Celiac disease
Cerebral palsy
Deaf or hard of hearing
Depression or anxiety
Diabetes
Epilepsy
Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
Intellectual disability
Missing limbs or partially missing limbs
Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

Disability Status

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.