SnowPro Advanced: Data Engineer — Question 65

A Data Engineer needs to be able to create new databases and objects as required for a Proof of Concept (POC).

The sandbox Snowflake account where the POC is tested does not have Role-Based Access Control (RBAC) in place, but it belongs to an organization where some other accounts have RBAC.

What is the LEAST-privileged system role that needs to be granted to this Engineer so they can work on this POC?

Answer options

• A. ORGADMIN
• B. PUBLIC
• C. SECURITYADMIN
• D. SYSADMIN

Correct answer: D

Explanation

The SYSADMIN role has the necessary privileges to create new databases and objects in Snowflake, making it the least-privileged role suitable for the engineer's needs. The ORGADMIN role is too powerful, while PUBLIC does not provide sufficient permissions, and SECURITYADMIN is focused on managing security and access rather than object creation.