Senior Security Engineer

About 1Password

1Password is experiencing unprecedented growth, having surpassed $400M in Annual Recurring Revenue (ARR) and consistently earning a spot on the Forbes Cloud 100 for four consecutive years. We're dedicated to building a safe, productive digital future by enabling secure identity, application sign-in, and device trust, pioneering the Extended Access Management category.

As one of the most trusted brands in cybersecurity, 1Password serves over 180,000 businesses, from Fortune 100 enterprises to cutting-edge AI companies. Our human-centric approach ensures both product excellence and user experience, helping teams securely adopt the SaaS and AI tools essential for their best work.

If you are passionate about contributing to the digital safety of millions, collaborating with a driven team, and solving complex problems in a dynamic environment, we encourage you to join us in shaping a simpler, safer digital future.

The Role of a Senior Security Engineer at 1Password

At 1Password, security is paramount. The Security Operations team protects the business by securing the systems, tools, and processes that underpin our work. As a Senior Security Engineer on the Corporate Security team, you will be crucial in implementing and enhancing identity and access management solutions across the organization. This role involves close collaboration with IT Engineering and other Corporate Security team members to support authentication, access controls, identity lifecycle management, and secure access to internal and SaaS systems. You will engage in hands-on technical work, automate identity workflows, and grow your expertise alongside experienced engineers.

This is a remote opportunity available within Canada and the US.

What We're Looking For

• Minimum of 5 years of combined experience in IT or security, with a deep focus on corporate or enterprise identity and access management.
• Strong hands-on experience administering and securing identity providers such as Okta or Google Workspace, including SSO, federation (SAML/OIDC), MFA, SCIM provisioning, and access governance.
• Advanced understanding of identity security concepts and their application, including RBAC, conditional access, least privilege, JIT, identity lifecycle management, and identity’s role in securing SaaS platforms.
• Experience working in a remote-first environment where identity and device posture form the basis of access control.
• Hands-on experience configuring or supporting conditional access policies, leveraging device posture signals (via tools such as Device Trust (Kolide), Iru (Kandji), Jamf, Intune, CrowdStrike, or SentinelOne), and working with ZTNA or modern VPN solutions (e.g., Tailscale, Twingate, Palo Alto Prisma Access, Zscaler).
• Proven ability to design and deliver medium-to-large security initiatives, owning outcomes from planning through implementation and ongoing operation.
• Experience using scripting, automation, and configuration as code (Python, Bash, Terraform, CI/CD) to scale identity operations and improve reliability; familiarity with SOAR platforms (Tines, Torq, Splunk) is a plus.
• Ability to identify gaps in quality, testing, or documentation, and raise the bar for maintainability, observability, and operational excellence.
• Strong collaboration and communication skills, with the ability to align cross-functional partners (IT Engineering, Procurement, GRC, Detection & Response) on priorities, risks, and timelines.
• Demonstrated commitment to mentoring peers, sharing best practices, and contributing to a culture of shared ownership and continuous improvement.
• Experience being customer zero - dogfooding security or identity products internally and providing actionable feedback to improve both internal workflows and customer-facing value.

What You Can Expect

• Lead medium-to-large identity security initiatives by translating ambiguous problems into well-scoped, executable projects, overseeing delivery from design through implementation and operation.
• Operate as a technical leader, contributing to the Corporate Security roadmap definition.
• Design and implement scalable identity and access management solutions, covering authentication, access controls, identity lifecycle management, and secure access to internal and SaaS systems.
• Identify and drive improvements in the reliability, scalability, and maintainability of identity platforms through automation, configuration as code, and operational best practices.
• Partner closely with IT Engineering’s Identity team to align on identity architecture, lifecycle processes, and platform ownership.
• Collaborate with the broader Corporate Security team to integrate identity controls into wider security initiatives.
• Work cross-functionally with Procurement and GRC to align identity security solutions with vendor onboarding, compliance, and organizational risk posture.
• Provide technical leadership within the Identity Security squad through design reviews, feedback, and shared problem-solving.
• Participate in security audits, tabletop exercises, and identity-related incident response activities.

Our Culture and Perks

At 1Password, we foster a culture of collaboration, transparent communication, and receptiveness to feedback, guided by our core values: keep it simple, lead with honesty, and put people first. We challenge the status quo, experiment, and iterate to find optimal solutions. While demanding and fast-paced, we seek experts who are adaptable, thrive in ambiguity, are curious, and consistently deliver results. We are committed to leveraging AI responsibly and encourage team members to learn AI best practices and drive innovative solutions.

We are a remote-first company, founded remotely in 2005, with expertise in building a strong remote culture. Travel for in-person engagement is a part of almost all roles, including annual department-wide offsites, team meetings, and industry events. We offer competitive health benefits, generous PTO, maternity and parental leave top-up, an RSU program, retirement matching, paid volunteer days, and a free 1Password account.

Key skills/competency

• Identity and Access Management
• Okta/Google Workspace Administration
• SSO & Federation (SAML/OIDC)
• Multi-Factor Authentication (MFA)
• SCIM Provisioning
• Zero Trust Architecture
• Scripting & Automation (Python, Bash)
• Infrastructure as Code (Terraform)
• Security Operations
• Risk Management