Senior Security Engineer

Senior Security Engineer 1Password is growing faster than ever. We’ve surpassed $400M in ARR and we’re continuing to accelerate, earning a spot on the Forbes Cloud 100 for four years in a row and teaming up with iconic partners like Oracle Red Bull Racing and the Utah Mammoth. About 1Password At 1Password, we’re building the foundation for a safe, productive digital future. Our mission is to unleash employee productivity without compromising security by ensuring every identity is authentic, every application sign-in is secure, and every device is trusted. We innovated the market-leading enterprise password manager and pioneered Extended Access Management, a new cybersecurity category built for the way people and AI agents work today. As one of the most loved brands in cybersecurity, we take a human-centric approach in everything from product strategy to user experience. Over 180,000 businesses, from Fortune 100 leaders to the world’s most innovative AI companies, trust 1Password to help their teams securely adopt the SaaS and AI tools they need to do their best work. If you're excited about the opportunity to contribute to the digital safety of millions, to work alongside a team of curious, driven individuals, and to solve hard problems in a fast-paced, dynamic environment, then we want to hear from you. Come join us and help shape a safer, simpler digital future. At 1Password, security isn’t just a feature - it’s our foundation. The Security Operations team’s mission is to protect the business by securing the systems, tools, and processes that power how we work. Our goal is to keep 1Password productive, resilient, and safe through proactive controls, thoughtful risk management, and continuous improvement across our security operations. As a Senior Security Engineer on the Corporate Security team, you will contribute to the implementation and improvement of identity and access management solutions across 1Password. You will work closely with IT Engineering and other Corporate Security team members to support authentication, access controls, identity lifecycle management, and secure access to internal and SaaS systems. This role offers hands-on technical work, opportunities to automate and improve identity workflows, and space to grow your skills alongside more senior engineers. This is a remote opportunity within Canada and the US. What we're looking for: - Minimum of 5 years of combined experience in IT or security, with deep focus on corporate or enterprise identity and access management. - Strong hands-on experience administering and securing identity providers such as Okta or Google Workspace, including SSO, federation (SAML/OIDC), MFA, SCIM provisioning, and access governance. - Advanced understanding of identity security concepts and their application, including RBAC, conditional access, least privilege, JIT, identity lifecycle management, and identity’s role in securing SaaS platforms. - Experience working in a remote-first environment where identity and device posture form the basis of access control. Hands-on experience configuring or supporting conditional access policies, leveraging device posture signals (via tools such as Device Trust (Kolide), Iru (Kandji), Jamf, Intune, CrowdStrike, or SentinelOne), and working with ZTNA or modern VPN solutions (e.g., Tailscale, Twingate, Palo Alto Prisma Access, Zscaler). - Proven ability to design and deliver medium-to-large security initiatives, owning outcomes from planning through implementation and ongoing operation. - Experience using scripting, automation, and configuration as code (Python, Bash, Terraform, CI/CD) to scale identity operations and improve reliability; familiarity with SOAR platforms (Tines, Torq, Splunk) is a plus. - Ability to identify gaps in quality, testing, or documentation, and raise the bar for maintainability, observability, and operational excellence. - Strong collaboration and communication skills, with the ability to align cross ... (truncated, view full listing at source)