Secure Snowflake data, roles, and integrations with Obsidian Security

Get a demoFree Trial

Snowflake MFA bypass & token misuse leads to major breaches

Attackers used stolen customer credentials without MFA to breach hundreds of businesses. 

Obsidian makes it easy for organizations to automate workflows and ensure security of their Snowflake environments are in line with best practices.

Privileged users, OAuth apps & external tools create blind spots in Snowflake

Without guidance, security teams can’t keep pace with fast-changing permissions and integrations within Snowflake.

  • User accounts that bypass MFA lack security oversight and increase risk of unauthorized access 
  • Hidden long-term third-party access through external integrations (e.g. ETL tools, BI platforms) using OAuth or persistent tokens 
  • Inactive privileged users with ACCOUNTADMIN, SECURITYADMIN, or custom roles with broad privileges go unnoticed

Automate Snowflake posture management with Obsidian Security

  • Identify privileged accounts without MFA and local accounts bypassing your IdP
  • Revoke dormant accounts and unnecessary access permissions
  • Discover and monitor Snowflake integrations with high-volume queries or unusual access patterns to sensitive data
  • Enforce data masking policies to limit access to sensitive data

Mitigating Modern SaaS Threats in Snowflake with Obsidian

Snowflake empowers data innovation, but also introduces risks from excessive access and third-party code. Obsidian’s SaaS-native security stack continuously monitors token usage, enforces secure configurations, and delivers identity-aware detection to help organizations mitigate modern SaaS threats.

Related Resources

Incident Watch Cover

Whitepaper

How to Secure Your Snowflake Environment

Incident Watch Cover

Blog

Securing Your Snowflake Deployments

Blog

A Practical Guide for Handling Unauthorized Access to Snowflake