Staff Security Engineer

About the Role: At 1Password, we are looking for a Staff Security Engineer to found and lead the DevSecOps function within our Corporate Security team. You will have real ownership to set the technical vision, drive the standards, and build a developer security program that scales securely across CI/CD and software supply chains.

What You'll Do

• Own the DevSecOps function and harden 1Password's GitHub Enterprise environment and CI/CD pipelines.
• Define the security model and governance standards for AI-assisted development tools (e.g., Copilot, Cursor).
• Harden the software supply chain, including dependency hygiene, secret management, and SBOM generation.
• Build secure templates, baseline configurations, and developer-friendly guardrails.
• Partner with Platform Engineering to ensure developer tooling evolves with security embedded in the design.

What You Bring

• Minimum of 8 years of experience in security engineering, DevSecOps, or platform security.
• Deep expertise in GitHub Enterprise security, CI/CD pipelines, and software supply chain security.
• Strong scripting and automation skills (Python, Bash, Terraform, or similar).
• Practical experience solving security challenges introduced by AI-assisted and agentic development.
• Proven ability to design and implement security controls that integrate without degrading developer velocity.

Benefits

• Base salary of $192,000 - $278,000 USD (USA) or $167,000 - $242,000 CAD (Canada) plus equity grants.
• Competitive health, dental, and wellbeing benefits.
• Retirement matching program (401k/RRSP) and generous PTO policy.
• Paid volunteer days, peer-to-peer recognition, and a free 1Password account.
• 100% remote work environment within the US or Canada.