Column-Level Data Security with Snowflake Tags
At Cyera, a data security platform (DSPM), I designed a feature that integrates Snowflake tags at the column level, enabling security teams to detect and remediate sensitive data exposure with much higher precision.
Security teams manage massive Snowflake environments where:
- Fragmented and complex security tools led to manual, error-prone workflows
- Sensitive data is hard to pinpoint
- Table-level remediation is too broad
At the same time, Snowflake tags are a core convention - but were not reflected in the product.
I led the product direction and UX, focusing on:
- Aligning with existing user workflows (Snowflake tags)
- Simplifying decision-making by reducing cognitive load in high-stakes security environments
- Prioritizing actionable flows over exploratory ones
A key decision was to focus on remediation, not data mapping.
1. OOTB Policy
I integrated Snowflake's native tagging into Cyera's existing policy builder, allowing users to map security categories directly to data columns for automated detection and masking.
2. Actionable Issues and Remediation Flow
Issues are tied to specific columns, making risks clear and localized, and users can take direct action on affected data with minimal friction.
3. System Feedback
A feedback loop communicates remediation progress and status
- Shipped to production
- Addressed a highly requested customer need
- Improved alignment with Snowflake-native workflows
- Enabled faster, more precise remediation