Case Study: Snowflake achieves modern insider risk management and non-disruptive data visibility with Code42 (Incydr)

How Snowflake built a modern Insider Risk Management program

Snowflake, a fast-growing cloud data company with 2,000+ employees, needed a way to protect critical IP without hampering the collaborative, productivity-driven culture that fueled its growth. Facing a tight 90–120 day timeline before going public, the security team found traditional DLP and CASB tools too intrusive and brittle, offering limited endpoint visibility while disrupting engineering workflows.

They deployed Code42’s Incydr to gain full, non-blocking visibility into data movement and integrate endpoint telemetry into their Data Cloud. Incydr enabled faster, more accurate detection and response—surfacing patterns like code uploads to personal cloud storage so teams could remediate exposures quickly—while preserving collaboration and becoming a central piece of Snowflake’s Insider Risk Management program.

Snowflake

Mario Duarte

VP of Security