What the Natoma Acquisition Says About Enterprise AI Priorities
Snowflake’s acquisition of Natoma is a strategic bet that the next wave of enterprise AI will depend on secure, governed AI agents tightly linked to a cloud data platform and existing business applications. Rather than focusing only on model performance, Snowflake is building what CEO Sridhar Ramaswamy calls an “agentic control plane” in which AI systems can act across tools like email, calendars, Slack, and Jira while staying inside enterprise security and compliance boundaries. Natoma adds a governance gateway for Model Context Protocol (MCP) servers, verifying identity, enforcing access policies, and logging every tool call AI agents make. This move highlights a clear shift: enterprises want AI that operates on their own data, within their own policies, and across their current SaaS stack. The Snowflake acquisition signals that agent safety and control now rank alongside analytics and storage as core buying criteria.
Sixth Acquisition Since June 2025: A Rapid Portfolio Build-Out
Natoma is Snowflake’s sixth acquisition since June 2025, underscoring how quickly the company is expanding beyond its core cloud data platform. Earlier deals targeted PostgreSQL provider Crunchy Data, database migration specialist Datometry, data discovery firm Select Star, AI-powered observability platform Observe, and data pipeline planner TensorStax. Taken together, these transactions sketch a clear roadmap: Snowflake is stitching together infrastructure for data ingestion, migration, observability, and now agent governance, all tied to its AI services like Snowflake Intelligence and Cortex Code (Coco). Rather than leaving customers to assemble their own stack of niche tools, Snowflake is building an integrated suite that blurs the line between database, analytics engine, and enterprise AI security platform. For buyers, the message is that Snowflake wants to be the primary environment where data pipelines, AI agents, and monitoring all converge.
Natoma’s Governance Layer and the Rise of Enterprise AI Security
Natoma’s gateway technology addresses one of the most pressing enterprise AI security problems: how to govern AI agents that can call APIs, touch SaaS applications, and trigger workflows without human review. Its MCP-based infrastructure creates a unified identity and policy layer for tools exposed to AI, tracking who requested each action, what permissions they have, and whether the action should be allowed. This fits Snowflake’s vision of AI agents that send emails, summarize Slack threads, open Jira tickets, and query data from a single, governed interface. Snowflake cited internal research that “96% of organizations still face significant barriers” when trying to scale AI, and many of those obstacles relate to permissions, auditability, and shadow AI. By embedding Natoma’s controls into its own AI products, Snowflake aims to make enterprise AI security a built-in feature rather than a separate add-on or afterthought.
Expanded AWS Partnership and Cloud Infrastructure Consolidation
Announced alongside the Natoma deal, Snowflake’s expanded AWS partnership includes a five-year, USD 6 billion (approx. RM27.6 billion) commitment to AWS infrastructure, centered on Graviton-powered compute and AI workloads. This signals rising demand for AI-ready infrastructure that sits close to governed enterprise data, rather than sending data out to external systems. According to AWS CEO Matt Garman, enterprises are “rapidly moving from experimenting with AI to putting intelligent agents to work that drive real business outcomes.” The deeper AWS collaboration also reinforces a broader trend toward cloud consolidation: customers want integrated solutions where data storage, AI model execution, and enterprise AI security live in one environment. By binding its agentic AI ambitions tightly to AWS, Snowflake positions itself as a foundational layer for AI agents that must be both powerful and compliant, reducing the need for enterprises to stitch together multiple clouds and point solutions.