Ingest Enterprise
Ingest Enterprise is a custom-contract engagement for teams that need contracted terms around the platform Ingest already runs, per-client tenant isolation, BYO S3, OIDC service authentication, and continuous monitoring. Reach out to discuss what that looks like for your team.
Setting up Snowflake and S3
Ingest connects to your Snowflake account and writes Iceberg files either to an Ingest-managed S3 bucket or your own (BYOB). Setup happens inside the Ingest dashboard:
- Snowflake. Click Connect Snowflake in the dashboard. Ingest generates the SQL for a service user, role, and warehouse. Authentication uses OIDC via GitHub Actions tokens, no password or key files to rotate.
- S3 (BYOB). Enter your bucket name. Ingest generates the IAM policy you paste into your AWS console, then verifies the connection automatically.
Security posture
For a description of the infrastructure controls Ingest's codebase actually implements, per-client tenant isolation, least-privilege IAM, AWS Secrets Manager, OIDC service authentication, FIFO + DLQ processing, CloudWatch monitoring, and CloudTrail-backed change-detection, see SOC 2 compliance.
Talking to us
The Enterprise engagement is structured around your specific procurement and compliance requirements. Reach out and we'll work through what your team needs.