Case Study: Snowflake achieves passwordless, risk-based protection of critical SaaS resources with Beyond Identity

Securing Critical SaaS Resources With Passwordless, Risk-Based Authentication

Snowflake, the cloud data platform, faced a growing security gap as employees accessed critical SaaS applications from unmanaged personal devices that could bypass MFA, SSO, and MDM controls. To close that gap without adding user friction, Snowflake engaged Beyond Identity to provide passwordless, risk-based authentication and device-bound identity enforcement for their SaaS resources.

Beyond Identity deployed a TPM-backed, cryptographic passwordless MFA and device-posture solution integrated with Snowflake’s SSO and device management (JAMF/Intune), enforcing policies that only authorized, compliant devices can access company data. The rollout enrolled all 2,800 employees (750 in the first 24 hours) with 100% adoption, removed password-based MFA circumvention, and delivered real-time, risk-based access controls that protect Snowflake’s critical cloud resources.

Snowflake

Mario Duarte

Vice President of Security