Case Study: Snowflake achieves insider-risk visibility and protects critical data without disrupting collaboration with Mimecast Incydr

How Snowflake keeps their critical IP safe without disrupting employee productivity

Snowflake, a cloud data platform with 2,000+ employees across 19 countries, needed to lock down insider risk without disrupting the fast-paced collaboration that drives its engineering culture. Facing a 90–120 day timeline before going public, the security team found traditional DLP and CASB tools too brittle and productivity‑breaking, so they sought a solution that provided full visibility into data movement without blocking legitimate work.

They deployed Mimecast Incydr to integrate endpoint and SaaS telemetry into their Data Cloud, giving the team contextualized visibility and the ability to anticipate risky behavior. Incydr helped surface patterns—such as a LinkedIn profile change combined with a source‑code upload to personal cloud storage—so Snowflake could quickly remediate an unintentional exposure, reduce exfiltration risk, and preserve collaboration; the vendor’s technical services also accelerated implementation, making Incydr central to their insider risk program.

Snowflake

Mario Duarte

VP of Security