Senior Privacy Engineer

About 1Password

1Password is experiencing rapid growth, exceeding $400M in ARR and consistently earning a spot on the Forbes Cloud 100 for four consecutive years. We are a leading cybersecurity brand, building the foundation for a safe and productive digital future by ensuring every identity is authentic, every application sign-in is secure, and every device is trusted. We pioneered Extended Access Management and take a human-centric approach in all aspects of our product and user experience. Over 180,000 businesses, including Fortune 100 leaders and innovative AI companies, rely on 1Password for secure SaaS and AI tool adoption.

We invite curious, driven individuals eager to contribute to the digital safety of millions and solve complex problems in a fast-paced, dynamic environment to join us in shaping a safer, simpler digital future.

We are seeking a Senior Privacy Engineer to join our team. Trust is paramount to our mission, and privacy is a fundamental component of that trust. In this role, you will leverage strong data engineering and big data systems experience to develop and operate privacy-preserving data practices at scale, focusing on data ingestion, governance, and pipeline processing within a modern SaaS environment.

As part of the Privacy Engineering group, within GRC and Security, and in close collaboration with Engineering, Product, Data, and Legal/Privacy teams, you will help define how 1Password collects, processes, stores, accesses, and deletes data across various services, telemetry, analytics, support tooling, third-party integrations, and emerging AI/ML solutions. This involves translating privacy requirements into durable engineering controls.

This is a remote opportunity available within Canada and the US.

What We're Looking For

• 5+ years of experience in software engineering, data engineering, or data analytics within SaaS companies, with a strong focus on data ingestion, governance, and pipeline processing.
• Demonstrated expertise in building and operating production systems at scale, including debugging, reliability, and operational ownership.
• Experience implementing data access control and data obfuscation layers on data lakes or large analytics environments, covering policy-based access, row/column-level controls, tokenization/masking, and privacy-aware query patterns.
• Proficiency in implementing these controls using commodity governance/authorization offerings (e.g., Databricks Unity Catalog, Okera, Privacera, or similar technologies), including integration into real-world data workflows.
• Experience performing analytics and investigations using Python and SQL for tasks such as validating data minimization, auditing datasets, and supporting privacy reviews.
• Experience building or supporting privacy-safe controls, infrastructure, and analysis for AI/ML solutions, including data provenance, access controls for training/evaluation datasets, inference telemetry hygiene, and mitigation of leakage risks.
• Familiarity with DLP-style controls and privacy-aware analytics patterns.
• Proficiency in one or more backend languages (e.g., Go, Rust, Java, TypeScript) and a proven track record of delivering production-quality code.
• Practical privacy engineering experience implementing controls like minimization, access controls, encryption, retention/deletion, and privacy-safe analytics/telemetry.
• Ability to translate privacy requirements (GDPR / CCPA / CPRA concepts) into concrete engineering work, moving beyond “paper compliance”.
• Strong cross-functional communication skills and comfort partnering with Product, Legal/Privacy, Security, Data, and Engineering teams.

Bonus Points For

• Experience building data governance platforms (classification, catalogs, automated retention/deletion, policy enforcement).
• Experience with distributed systems and their operational tradeoffs (availability, performance, observability, rollout safety).
• Security company experience or familiarity with threat modeling and secure development practices.
• Familiarity with compliance/security frameworks and audits (e.g., ISO 27001, ISO 27701, SOC 2) translated into engineering controls.

What You Can Expect

• Work on challenging privacy engineering problems at scale, involving pipelines, telemetry/analytics, and data stores with robust privacy protections.
• Build practical controls for data access governance and obfuscation in large datasets, including policy enforcement, row/column controls, masking/tokenization, and privacy-aware query patterns.
• Improve retention/deletion and logging/telemetry hygiene to maintain strong privacy as systems evolve.
• Help enable privacy-safe AI/ML use by implementing controls, infrastructure, and analysis that reduce data exposure and support responsible product development.
• Collaborate across teams to embed privacy by default through templates, guardrails, and automation.

Build privacy-by-design into data systems and pipelines

• Partner with Product and Legal/Privacy to translate requirements (e.g., DPIAs/PIAs, consent, data subject rights) into concrete technical controls and deliverable plans.
• Influence the design and evolution of data ingestion and processing pipelines, ensuring privacy-safe collection and downstream use.
• Help teams implement privacy-safe patterns for data flows, access boundaries, and storage decisions.

Implement scalable access controls and data protection in large datasets

• Design and implement policy-based access controls for analytics and data platforms, including row/column-level controls where appropriate.
• Build or improve data obfuscation layers (e.g., tokenization, masking, pseudonymization) and define privacy-aware query patterns.
• Partner with data/platform teams to ensure controls are reliable, testable, and operationally supported.

Enable privacy-safe AI/ML solutions

• Partner with product and engineering teams to design privacy-safe data flows for AI/ML use cases, including training, evaluation, and inference.
• Implement guardrails that support safe data use in AI/ML systems (e.g., minimization, access controls, dataset curation, logging/telemetry hygiene, retention/deletion alignment).
• Contribute to reviews and analysis that assess privacy risk in AI/ML solutions (e.g., data provenance, leakage risks, and appropriate protections for sensitive data).

Improve lifecycle controls and telemetry hygiene

• Strengthen retention and deletion across production databases, logs, analytics, backups, and relevant third-party systems.
• Improve observability and telemetry practices by tightening protections and ensuring collection remains consent-aware.

Lead through hands-on execution and collaboration

• Provide technical leadership through code reviews, design reviews, and pragmatic guidance across multiple teams.
• Contribute to privacy tooling, service templates, and CI/CD automation that prevent regressions and make safe choices easy.

Our culture

At 1Password, we foster a culture of collaboration, clear communication, receptiveness to feedback, and alignment with our core values: keep it simple, lead with honesty, and put people first. We challenge the status quo, experiment, and iterate to find the best solutions. Our work is demanding, striving for excellence at a fast pace. We seek individuals keen on tackling challenging problems, seeking feedback for growth, and driven to make an impact. We value proven experts who are highly adaptable, thrive in ambiguity, are curious, and consistently deliver results.

How We Work With AI

1Password is committed to leveraging cutting-edge technology, including AI, to achieve its mission. We encourage team members at all levels to learn AI best practices, identify application opportunities, and drive innovative solutions. Embracing the future of AI is essential to our success. Candidates are welcome to use AI tools responsibly during the application process.

Our approach to remote work

We are a remote-first company founded remotely in 2005, making us experts in building remote culture. While remote, in-person engagement is important, and travel for annual offsites, team meetings, and customer/industry events is part of almost all roles. Remote work at 1Password means working from your home country.

What We Offer

We believe in rewarding hard work through our benefits:

Health and wellbeing

• Maternity and parental leave top-up programs.
• Competitive health benefits.
• Generous PTO policy.

Growth and future

• RSU program for most employees.
• Retirement matching program.
• Free 1Password account.

Community

• Paid volunteer days.
• Peer-to-peer recognition through Bonusly.
• Remote-first work environment.

1Password is an equal opportunity employer committed to fostering an inclusive, diverse, and equitable workplace. Accommodation is available upon request during the recruitment process. Successful applicants will be required to complete a background check. 1Password uses AI/ML technologies for initial application screening, with an opt-out option available.

Key skills/competency

• Data Engineering
• Privacy-Preserving Systems
• Data Governance
• Access Control
• AI/ML Privacy
• Pipeline Processing
• SQL
• Python
• Backend Languages (Go, Rust, Java, TypeScript)
• GDPR / CCPA / CPRA