1Password is hiring a Senior Security Engineer for our Corporate Security team. In this role, you will focus on identity and access management solutions, implementing and improving authentication, access controls, identity lifecycle management, and secure access to internal and SaaS systems. This is a remote opportunity for candidates within Canada and the US.
What You'll Do
- Lead medium-to-large identity security initiatives from problem framing through implementation, rollout, and steady-state operation.
- Operate as a technical leader by helping define the Corporate Security roadmap.
- Design and implement scalable identity and access management solutions.
- Identify opportunities to improve reliability, scalability, and maintainability of identity platforms through automation and operational best practices.
- Partner closely with IT Engineering’s Identity team on identity architecture, lifecycle processes, and platform ownership.
- Collaborate with the Corporate Security team to integrate identity controls into broader security initiatives.
- Work cross-functionally with Procurement and GRC to align identity security with vendor onboarding, compliance, and organizational risk.
- Provide technical leadership within the Identity Security squad through design reviews, feedback, and shared problem-solving.
- Participate in security audits, tabletop exercises, and identity-related incident response.
What We're Looking For
- Minimum of 5 years of combined experience in IT or security, with deep focus on corporate or enterprise identity and access management.
- Strong hands-on experience administering and securing identity providers such as Okta or Google Workspace, including SSO, federation (SAML/OIDC), MFA, SCIM provisioning, and access governance.
- Advanced understanding of identity security concepts: RBAC, conditional access, least privilege, JIT, identity lifecycle management, and identity’s role in securing SaaS platforms.
- Experience in a remote-first environment where identity and device posture form the basis of access control.
- Hands-on experience configuring or supporting conditional access policies, leveraging device posture signals, and working with ZTNA or modern VPN solutions.
- Proven ability to design and deliver medium-to-large security initiatives, owning outcomes from planning through implementation and ongoing operation.
- Experience using scripting, automation, and configuration as code (Python, Bash, Terraform, CI/CD) to scale identity operations and improve reliability.
- Ability to identify gaps in quality, testing, or documentation, and raise the bar for maintainability, observability, and operational excellence.
- Strong collaboration and communication skills, with ability to align cross-functional partners on priorities, risks, and timelines.
- Demonstrated commitment to mentoring peers, sharing best practices, and contributing to a culture of shared ownership and continuous improvement.
- Experience being customer zero - dogfooding security or identity products internally and providing actionable feedback.
Nice to Have
- Familiarity with SOAR platforms (Tines, Torq, Splunk).
Technical Stack
- Identity: Okta, Google Workspace, SAML, OIDC, SCIM
- Device Trust: Kolide, Kandji (Iru), Jamf, Intune
- Security: CrowdStrike, SentinelOne
- Access: ZTNA, Tailscale, Twingate, Palo Alto Prisma Access, Zscaler
- Automation: Python, Bash, Terraform, CI/CD
- SOAR: Tines, Torq, Splunk
Team & Environment
You'll be part of the Corporate Security team, specifically within the Identity Security squad.
Benefits & Compensation
- Compensation: USA: $153,000 USD - $214,000 USD; Canada: $144,000 CAD - $202,000 CAD + equity grant.
- Health, dental, and 401k/RRSP benefits.
- Generous PTO policy.
- Equity grant.
- Incentive programs.
- Maternity and parental leave top-up programs.
- Retirement matching program.
- Free 1Password account.
- Paid volunteer days.
- Peer-to-peer recognition through Bonusly.
- Remote-first work environment.
Work Mode
This is a remote-first position open to candidates in Canada and the US.
1Password is proud to be an equal opportunity employer. We are committed to fostering an inclusive, diverse and equitable workplace that is built on trust, support and respect. We welcome all individuals and do not discriminate on the basis of gender identity and expression, race, ethnicity, disability, sexual orientation, colour, religion, creed, gender, national origin, age, marital status, pregnancy, sex, citizenship, education, languages spoken or veteran status.
