1Password

Staff Security Engineer, Detection and Response

Remote US
USD 168k - 253k
Python Bash Terraform AWS GCP
Description
About 1Password:
We all have important information we need to manage, and protecting it should be easy. Over 150,000 businesses and millions of people log in to 1Password to unlock smart, simple access to everything they care about. Our vision is to create a safer, simpler digital future for everyone, and our culture values simplicity, honesty and a human-centric approach to solving problems. Come help us unlock peace of mind so everyone can stay safer online.

At 1Password, customer privacy and security come first and foremost; this commitment informs everything we do, and the Security Team is responsible for upholding this commitment. We are a passionate team that truly cares about protecting our customers, and we’re looking for new team members that share this passion.

As a Staff Security Engineer on the Detection and Response team, you will be responsible for leading the development and implementation of strategies to detect and respond to security threats across 1Password. You will work closely with cross-functional teams to ensure the continuous improvement of our security posture and the protection of our assets against emerging threats. This role offers the opportunity to make a significant impact in safeguarding our systems and data against cyber threats.

Join us and unleash the excitement of protecting the digital world.

This is a Remote opportunity within Canada and the US.

What we're looking for:

  • Minimum 7 years of experience in a security role with a focus on Detection Engineering, Incident Response, Digital Forensics and/or Threat Intelligence
  • Expertise in designing, building, and fine-tuning systems and processes for detection engineering
  • Expertise in SIEM and SOAR solutions for enhancing behavior analytics and security automations
  • Expertise with Detection-as-Code to automate detection engineering workflows
  • Experience in building logging pipelines for log ingestion into a centralized system
  • Experience leading and collaborating on complex and ambiguous cross-functional projects from design through implementation
  • Experience in leading security incidents to resolution with various incident responders and stakeholders
  • Experience with runtime security, EDR and forensic analysis tools on various operating systems
  • Strong understanding of current threat landscape and threat actor TTPs
  • Experience with threat hunting and log analysis to identify potential security or privacy impacts
  • Experience deploying cloud services (e.g., AWS, GCP) and a strong understanding of cloud security principles
  • Experience in scripting and programming languages (e.g., Python, Bash) for data analysis, automation and tool development
  • Experience with software development lifecycle, project management, Terraform and CI/CD in GitLab or GitHub
  • Excellent communication skills with a drive for collaboration and leveling up team members
  • Passion for fostering psychological safety and stability in high stress environments

What you can expect:

  • Operate as a technical lead to advance the Detection Engineering program
  • Define the team roadmap through collaboration with the manager and Security leaders
  • Establish the scope, timeline, milestones and success criteria for projects, ensuring deliverables are met and in alignment with Security OKRs
  • Build strong relationships with partner and stakeholder teams in order to advise on improvements to detection capabilities and response procedures
  • Manage security incidents through the incident response process from identification to resolution
  • Design and build systems to automate security processes and workflows to improve efficiency and scalability
  • Participate in an on-call rotation with potential for work on nights or weekends in the event a significant security issue is identified
  • Partner with developers, engineers and other departments to improve security logging and address security issues for the product
  • Develop and maintain threat intelligence sources to stay informed about emerging threats and attack vectors
  • Standardize, write and execute response playbooks that can be utilized by all members of the team
  • Mentor and train team members to uphold a high team standard
  • Participate in security audits, vendor assessments and security tabletop exercises
  • Be a subject matter expert on the team’s security tooling, processes and procedures
USA-based roles only: The Annual base salary for this role is between $187,000 USD and $253,000 USD, plus immediate participation in 1Password's benefits program (health, dental, 401k and many others), utilization of our generous paid time off, an equity grant and, where applicable, participation in our incentive programs.

Canada-based roles only: The Annual base salary for this role is between $168,000 CAD and $228,000 CAD, plus immediate participation in 1Password’s generous benefits program (health, dental, RRSP and many others), utilization of our generous paid time off, an equity grant and, where applicable, participation in our incentive programs.

At 1Password, we approach each individual's compensation with a promise of fair market value and internal equity commensurate with experience and specific skill set.

We believe in the power of remote work, but we also recognize that in-person connection is sometimes important to help us achieve our mission. While we are a remote-first company, occasional travel for in-person engagement will be a part of this role. Frequency will depend on role and responsibilities, and may include, but is not limited to, annual department-wide offsites, team meetings, and customer/industry events. These events will typically be held in varying locations across Canada and the US.


What we offer:

We believe in working hard, and resting hard. We’re always looking for new ways to support our team members, but here’s a glance at what we currently offer:

Health and wellbeing
> 👶 Maternity and parental leave top-up programs
> 👟 Wellness spending account
> 🏝 Generous PTO policy 
> 💖 Company-wide wellness days off scheduled throughout the year 
> 🧠 Wellness Coach membership
> 🩺 Comprehensive health coverage

 Growth and future 
> 📈 Employee stock option program for all full-time employees 
> 💸 Retirement matching program
> 💡 Training budget, 1Password University access, and learning sessions 
> 🔑 Free 1Password account (and friends and family discount!) 

Flexibility and community
> 🤝 Paid volunteer days 
> 🌎 Employee-led DEIB programs and ERGs and ECGs
> 🏠 Fully remote environment
> 🏆 Peer-to-peer recognition through Bonusly

You belong here.

1Password is proud to be an equal opportunity employer. We are committed to fostering an inclusive, diverse and equitable workplace that is built on trust, support and respect. We welcome all individuals and do not discriminate on the basis of gender identity and expression, race, ethnicity, disability, sexual orientation, colour, religion, creed, gender, national origin, age, marital status, pregnancy, sex, citizenship, education, languages spoken or veteran status. Be yourself, find your people and share the things you love.

Accommodation is available upon request at any point during our recruitment process. If you require an accommodation, please speak to your talent acquisition partner or email us at nextbit@agilebits.com and we’ll work to meet your needs.

Remote work is a part of our DNA. Given that our company was founded remotely in 2005, we can safely say we're experts at building remote culture. That said, remote work at 1Password does mean working from your home country. If you've got questions or concerns about this, your talent partner would be happy to address them with you.

Successful applicants will be required to complete a background check that may consist of prior employment verification, reference checks, education confirmation, criminal background, publicly available social media, credit history, or other information, as permitted by local law.

1Password uses an automated employment decision tool as a part of the recruitment process. See the latest bias audit information. A reasonable accommodation, reasonable alternative selection process, appeal or to exercise your right to opt-out of AADM may be requested by emailing nextbit@agilebits.com with subject "AI accommodation request". For additional information see our Candidate Privacy Notice.

There are more than 50,000 engineering jobs:

Subscribe to membership and unlock all jobs

Engineering Jobs

60,000+ jobs from 4,500+ well-funded companies

Updated Daily

New jobs are added every day as companies post them

Refined Search

Use filters like skill, location, etc to narrow results

Become a member

🥳🥳🥳 401 happy customers and counting...

Overall, over 80% of customers chose to renew their subscriptions after the initial sign-up.

To try it out

For active job seekers

For those who are passive looking

Cancel anytime

Frequently Asked Questions

  • We prioritize job seekers as our customers, unlike bigger job sites, by charging a small fee to provide them with curated access to the best companies and up-to-date jobs. This focus allows us to deliver a more personalized and effective job search experience.
  • We've got about 70,000 jobs from 5,000 vetted companies. No fake or sleazy jobs here!
  • We aggregate jobs from 5,000+ companies' career pages, so you can be sure that you're getting the most up-to-date and relevant jobs.
  • We're the only job board *for* software engineers, *by* software engineers… in case you needed a reminder! We add thousands of new jobs daily and offer powerful search filters just for you. 🛠️
  • Every single hour! We add 2,000-3,000 new jobs daily, so you'll always have fresh opportunities. 🚀
  • Typically, job searches take 3-6 months. EchoJobs helps you spend more time applying and less time hunting. 🎯
  • Check daily! We're always updating with new jobs. Set up job alerts for even quicker access. 📅

What Fellow Engineers Say