From Optimization to Protection: Adding a Security and Governance Agent to Your Snowflake Multi-Agent Team (Part 3) A developer built a Security and Governance Agent as the third specialist in a multi-agent team for Snowflake administration, adding the ability to answer security-related questions. The agent uses specialized views over Snowflake's account usage data and Cortex Analyst tools to detect login anomalies, excessive privileges, unauthorized access attempts, and user-role audits. The orchestrator routes security questions to this agent, enabling a unified response for operations, cost optimization, and security governance. In Part 1 https://dev.to/swaroop krishna e2f4b83b2/ask-your-snowflake-account-anything-build-an-ai-admin-agent-with-cortex-github-copilot-1mk6 , we built an Admin Agent for usage and cost visibility. In Part 2 https://dev.to/swaroop krishna e2f4b83b2/from-one-agent-to-many-building-a-multi-agent-team-for-snowflake-administration-part-2-379d , we added a Cost Optimizer Agent and an Orchestrator that routes questions to specialists. Now we close the loop with the third specialist: a Security and Governance Agent . This turns your assistant from "what happened" and "what to optimize" into a full team that also answers "what is risky right now". By the end of this post, you will have: The first two agents are strong for operations and spend, but security requires a different lens: Could one large agent do everything? Sometimes. But specialized agents are easier to maintain, safer to evolve, and easier to test. User Question natural language | Orchestrator Agent / | \ Admin Cost Security Agent Optimizer Governance Agent \ | / Unified Response Create security-focused views over SNOWFLAKE.ACCOUNT USAGE , including: Implementation file: sql/08 create security governance views.sql Map these views into natural language dimensions, facts, and metrics so Cortex Analyst can reason over them. Examples: SV LOGIN ANOMALIES SV EXCESSIVE PRIVILEGES SV UNAUTHORIZED ACCESS ATTEMPTS SV USER ROLE AUDIT Implementation file: sql/09 create security governance semantic views.sql Define a dedicated agent with explicit analyst tools for each security domain: CREATE OR REPLACE AGENT