Defending Your Enterprise at the Speed of AI

Defending Your Enterprise at the Speed of AI

Skip to content

Blog / Product and Technology / Defending Your Enterprise at the Speed of AI

JUN 02, 2026 / 7 min read Product and Technology Defending Your Enterprise at the Speed of AI

Nitika Gupta +1

The shift toward autonomous AI agents with the power to carry out critical business decisions is accelerating innovation, but it is also amplifying security risks across your data and AI estate. A recent Snowflake report reveals that 96% of businesses continue to struggle with critical hurdles, including data quality, skills gaps and legacy system integration.

To successfully move AI projects into production, securing data is nonnegotiable. It requires careful consideration of how AI agents interact with your data and measures to defend against malicious prompt injections. Security leaders must constantly ask: "Is our platform built to govern production-grade AI and can it defend our enterprise at the speed of AI?"

At Snowflake, we are committed to providing native, proactive, enterprise-grade security capabilities for all your data and AI workloads. Our approach is designed to provide security leaders and platform architects/administrators the confidence they need to deploy agentic applications at scale while maintaining data integrity and supporting regulatory compliance.

“As AI becomes increasingly embedded across the marketing industry, having the right security foundations in place is critical to our business scaling innovation responsibly. Snowflake’s new AI security capabilities have the potential to provide greater visibility and control over how AI systems access and interact with personally identifiable data, helping us scale AI adoption responsibly while maintaining the trust our clients expect.” Ankur Jain

Chief Cloud and Data Modernization Officer, Acxiom

Last week, we announced the intent to acquire Natoma to bring governed model context protocol (MCP) access to the enterprise. At Summit 2026, we’re announcing many enhancements to our security portfolio that focus on three core areas, all of which are vital to AI success and business growth:

Agent security for managing agent identity and AI posture, including prompt injection protection

Data security focusing on sensitive data protection, data exfiltration protection and ransomware prevention

Platform-level security with features like single sign-on (SSO)/provisioning, role-based access control (RBAC)/ABAC authorization and network security

Our AI security features complement and support Snowflake Horizon Catalog , which serves as a central control plane for consistent context, security and governance for AI over all your data, both inside and outside of Snowflake.

Figure 1: Snowflake Horizon Catalog.

Let’s take a look at our latest innovations and how they help you deploy enterprise-grade AI agents securely by delivering AI-ready access controls, management capabilities and defense-in-depth for your entire data estate.

Controls to secure access for your agents

Agentic security requires a new set of security controls. When an agent oversteps its bounds due to a malicious prompt or a misconfiguration, the result can be catastrophic. We are introducing purpose-built controls to govern agent identity and interaction.

Agent Identity

Agent Identity (public preview) provides a recognizable, distinct signal that identifies actions performed by an AI agent on behalf of a user. This new context is what enables auditability , where every action taken by the agent is explicitly tagged and near real-time restriction on agent access to sensitive data.

Figure 2: Agent Identity enables auditability and near real-time access restriction.

We are scaling our latest security capabilities to third-party agents across the security ecosystem, empowering them to deliver advanced security solutions with Snowflake.

Horizon AI Guardrails

Prompt injection has become one of the defining LLM security challenges. Adversaries craft inputs that override a model’s system instructions, allowing them to extract sensitive information or trigger unintended actions. Horizon AI Guardrails (generally available) offer a zero-day style prompt injection defense layer, integrated into the Horizon Catalog.

Figure 3: Horizon AI Guardrails provides granular, context-aware control over LLM interactions.

CoCo CLI Sandbox

When AI systems run code, a sandbox is essential to block data exfiltration and malicious code execution. CoCo CLI Sandbox (private preview) provides client-side isolation. This sandbox mitigates the risk of data exfiltration and malicious actions, enforcing strong isolation and resource limits for agent tools.

Simplifying end user access

To enable frictionless and secure scale of applications, we are simplifying user access and onboarding flows with Just-in-Time user provisioning and builder-initiated Request Access Workflows (both in private preview). Additionally, end users and administrators can now quickly resolve access control errors with guided, conversational troubleshooting using the Access Troubleshooter skill in CoCo.

Figure 4: Access Troubleshooter skill in CoCo provides natural-language troubleshooting capabilities.

Defense in depth for your AI data estate

AI's need for consistent access to data resources increases and accelerates the volume of demands for data access, making the risk of unauthorized data movement a top concern. Snowflake helps protect the entire AI data estate with layered, enterprise-grade protections designed to support the security demands of most regulated environments by targeting data residency, resilience and advanced threat vectors like ransomware and sophisticated data exfiltration attempts.

Data exfiltration protection

Snowflake offers a multi-layered approach to help defend against data exfiltration before it happens. Data Movement Policies (private preview) are designed to prevent configured data movement from Snowflake agents to outside the Snowflake trust boundary. They provide the necessary granular controls to protect sensitive data from unauthorized movement.

We are also delivering a new Data Exfiltration Detection (private preview) package via Snowflake Trust Center. These packages include anomaly detections that target unusual data transfer to internal and external stages, excessive data downloads via UI, and sensitive data fetch via an agent.

These detections are managed and triaged centrally via the…