Data Lineage and Trust Center

Snowflake Management, Governance & Collaboration

Emily Melhuish

Technical Curriculum Developer, Snowflake

The Visibility Problem

  • A compliance dashboard stops returning data: what changed upstream?
  • Without a dependency map, tracing the cause is manual and slow
  • A security audit asks who holds ACCOUNTADMIN and whether service accounts use MFA
  • Data lineage and the Trust Center make both problems traceable
Snowflake Management, Governance & Collaboration

What is Data Lineage?

data lineage

  • A map of object relationships in your Snowflake account
Snowflake Management, Governance & Collaboration

Reading the Lineage Graph in Snowflake

data lineage

Snowflake Management, Governance & Collaboration

Access History

  • A log a log of which objects were accessed, by which user, and at what time
SELECT user_name,
       query_id,
       query_start_time,
       direct_objects_accessed,
       base_objects_accessed
FROM SNOWFLAKE.ACCOUNT_USAGE.ACCESS_HISTORY
ORDER BY user_name, query_start_time DESC;
  • Helps answer questions like "who accessed the credit scores table in the last 30 days"
Snowflake Management, Governance & Collaboration

What is the Trust Center?

  • Built-in security monitoring hub Trust Center
Snowflake Management, Governance & Collaboration

Scanner Packages and Findings

  • Checks organized into scanner packages

Three main scanners:

  • CIS Snowflake Benchmark: maps to Center for Internet Security standards
  • Snowflake Security Essentials: Snowflake's own baseline checks
  • Threat Intelligence: identifies risky users and suspicious activity patterns

Findings are ranked by severity - a configuration gap, not a breach

  • Security Essentials Scanners

Trust center scanner packages.png

  • Example: CIS Benchmarks

Screenshot 2026-05-17 at 7.13.14 pm.png

1 https://docs.snowflake.com/en/user-guide/trust-center/overview#scanner-packages
Snowflake Management, Governance & Collaboration

Acting on Findings

  • Includes summary of violation and a recommended remediation
    • Example: Moving all users to SSO
  • Doesn't fix things for you but gives you a clear and prioritized list

placeholder: Trust Center finding detail panel in Snowsight showing a high-severity finding recommending that users be migrated from password-only authentication to SSO, with a remediation description and link to documentation

Snowflake Management, Governance & Collaboration

Let's practice!

Snowflake Management, Governance & Collaboration

Preparing Video For Download...