Answer: SECURITYADMIN

According to Snowflake documentation and best practices, the SECURITYADMIN role should be used to enforce network policies on a Snowflake account. The SECURITYADMIN role is specifically designed to manage security-related objects and policies, including network policies that control which IP addresses can access the Snowflake account. While ACCOUNTADMIN has broader privileges and could also perform this action, using SECURITYADMIN follows the principle of least privilege and is the recommended best practice. SYSADMIN focuses on system administration tasks like creating warehouses and databases, while USERADMIN handles user and role management, neither of which are appropriate for network policy enforcement.

Author: LeetQuiz Editorial Team