Security Engineer, Corporate Security

Security Engineer, Corporate Security at 1Password

1Password is experiencing rapid growth, surpassing $400M in ARR and consistently earning a spot on the Forbes Cloud 100. We partner with iconic brands like Oracle Red Bull Racing and the Utah Mammoth, building the foundation for a safe, productive digital future.

Our mission is to empower employee productivity without compromising security by ensuring every identity is authentic, every application sign-in is secure, and every device is trusted. As pioneers in Extended Access Management, we offer a human-centric approach in cybersecurity, trusted by over 180,000 businesses globally.

If you are excited about contributing to digital safety, collaborating with a curious and driven team, and solving complex problems in a dynamic environment, we encourage you to apply. Join us in shaping a safer, simpler digital future.

About the Role

The Security Operations team is dedicated to protecting 1Password by securing the systems, tools, and processes that drive our work. Our objective is to maintain 1Password's productivity, resilience, and safety through proactive controls, thoughtful risk management, and continuous improvement across all security operations.

As a Security Engineer on the Corporate Security team, you will be instrumental in implementing and enhancing identity and access management solutions across the organization. You will collaborate closely with IT Engineering and other Corporate Security team members to support authentication, access controls, identity lifecycle management, and secure access to internal and SaaS systems. This role offers significant hands-on technical work, opportunities to automate and refine identity workflows, and a supportive environment for skill development alongside experienced engineers.

This position reports to the Manager of Corporate Security and is a remote opportunity for candidates located in Canada and the US.

Your primary focus will be on securing and improving our identity ecosystem. You will work extensively with identity providers such as Okta, Google Workspace, and Azure AD, and collaborate with IT Engineering’s Identity squad to strengthen authentication, access provisioning, and access control. You will also help “dogfood” and enhance 1Password’s identity-related products, including Trelica, 1Password, and Kolide. The ideal candidate is comfortable navigating evolving problem spaces, proactively driving tasks and small projects to completion, and collaborating effectively with partner teams. This role requires hands-on technical expertise, a knack for automating and improving identity processes, and a willingness to grow through mentorship and teamwork with senior engineers. Proficiency in scripting (e.g., Python, Bash) and infrastructure/configuration as code (e.g., Terraform, CI/CD) is essential. Strong communication and collaboration skills are equally important, as you will work closely with Procurement, GRC, and other business teams, driving company-wide changes as an enabler rather than a gatekeeper. Expect potential night or weekend work in the event of a significant security incident.

What We’re Looking For

• 3–5 years of combined experience in IT or security, with a strong focus on corporate or enterprise identity management.
• Hands-on experience administering and securing identity providers like Okta, Google Workspace, or Azure AD, including SSO, federation, MFA, SCIM provisioning, and access policies.
• Strong understanding of identity security fundamentals, including RBAC, access governance, lifecycle management, and how identity supports secure SaaS adoption.
• Experience working in a remote-first environment where identity and device posture are central to access control.
• Hands-on experience configuring or supporting conditional access policies, leveraging device posture signals (via tools such as Kandji, Jamf, CrowdStrike, or SentinelOne), and working with ZTNA or modern VPN solutions (e.g., Tailscale, Twingate, Palo Alto Prisma Access, Zscaler).
• Experience using scripting or automation (e.g., Python, Bash, Terraform) for identity operations, configuration as code, or workflow automation; familiarity with SOAR platforms (Tines, Torq, Splunk) is a plus.
• Experience being “customer zero” – internally dogfooding security or identity products and providing feedback to enhance both internal use and customer value.
• Strong collaboration and communication skills, essential for working effectively within the Identity squad, across IT Engineering, and with partner teams such as Procurement and GRC.
• A growth mindset, ownership mentality, and a commitment to continuous skill development and contributing to the maturity of the Corporate Security team.

What You Can Expect

• Work as part of the Identity Security squad, driving improvements to identity processes for secure and efficient access for all users.
• Collaborate closely with IT Engineering’s Identity squad to support identity lifecycle management, automate access provisioning/deprovisioning, and align on identity roadmap priorities.
• Use and help improve 1Password’s identity-related products (1Password, Trelica, Kolide) by acting as a customer zero, identifying gaps, and providing actionable feedback.
• Assist in developing and maintaining configuration standards and governance for identity platforms, including detection and remediation of configuration drift.
• Leverage scripting, automation, and configuration as code to make identity management more scalable, repeatable, and auditable.
• Partner with other Corporate Security squads (SaaS and Endpoint Security) to integrate identity controls into broader security initiatives.
• Work cross-functionally with Procurement and GRC to align identity controls with vendor onboarding, compliance needs, and organizational risk posture.
• Support identity-related projects from planning through execution, coordinating with IT Engineering and application owners to meet security and business requirements.
• Participate in security audits, tabletop exercises, and identity-related incident response activities.
• Grow your skills through mentorship and collaboration, contributing to the Corporate Security team’s maturity while advancing your professional development.

Compensation

USA-based roles only: The annual base salary for this role is between $123,000 USD and $167,000 USD, plus immediate participation in 1Password's comprehensive benefits program (health, dental, 401k, etc.), generous paid time off, an equity grant, and participation in incentive programs where applicable.

Canada-based roles only: The annual base salary for this role is between $111,000 CAD and $150,000 CAD, plus immediate participation in 1Password’s generous benefits program (health, dental, RRSP, etc.), generous paid time off, an equity grant, and participation in incentive programs where applicable.

At 1Password, we ensure compensation reflects fair market value and internal equity, commensurate with experience and specific skill set.

Our Culture

At 1Password, we value collaboration, clear communication, openness to feedback, and alignment with our core values: simplicity, honesty, and people-first. We are a team that challenges the status quo, embraces experimentation, and strives for excellence in a fast-paced environment. We seek individuals who are keen to tackle challenging problems, driven to make an impact, and adaptable to ambiguity and change. While our work is demanding, we are looking for proven experts and highly adaptable individuals who deliver results.

How We Work With AI

We are committed to leveraging cutting-edge technology, including AI, to achieve our mission. We encourage team members at all levels to learn AI best practices, identify application opportunities, and drive innovative solutions. Embracing AI is an essential part of success at 1Password. Candidates are welcome to use AI tools responsibly and thoughtfully during the application process.

Our Approach to Remote Work

We believe in the power of remote work and have built an expert remote culture since our founding in 2005. While remote-first, in-person connection is important, and travel for engagement is part of almost all roles. This may include annual department offsites, team meetings, and industry events. Remote work at 1Password means working from your home country.

What We Offer

We reward hard work with comprehensive benefits:

• Health and wellbeing: Maternity and parental leave top-up programs, competitive health benefits, generous PTO policy.
• Growth and future: RSU program for most employees, retirement matching program, free 1Password account.
• Community: Paid volunteer days, peer-to-peer recognition through Bonusly, remote-first work environment.

1Password is an equal opportunity employer committed to fostering an inclusive, diverse, and equitable workplace. Accommodation is available upon request at any point during our recruitment process. Successful applicants will be required to complete a background check. 1Password uses AI and ML technologies in the initial screening of applications; applicants may opt out of AI/ML features by completing a form.

Key skills/competency

• Identity and Access Management (IAM)
• Okta, Google Workspace, Azure AD
• Single Sign-On (SSO)
• Multi-Factor Authentication (MFA)
• SCIM Provisioning
• Role-Based Access Control (RBAC)
• Python Scripting
• Terraform / Infrastructure as Code (IaC)
• Security Operations
• Conditional Access Policies