[Remote] Staff Security Engineer, DevSecOps (Corporate Security)

Remote Full-time
Note: The job is a remote job and is open to candidates in USA. 1Password is a rapidly growing company focused on building a secure digital future. They are seeking a Staff Security Engineer to lead the DevSecOps function within their Corporate Security team, responsible for setting technical standards and ensuring security in developer environments and CI/CD pipelines.ResponsibilitiesOwn the DevSecOps function: You'll have the latitude and mandate to build a well-run, properly owned developer security program at 1Password. You'll set the technical direction, define the operating model, and drive it with a counterpart in Infrastructure Security. This is a high-ownership, high-impact role, and the decisions you make here will shape how engineering builds securely for yearsOwn GitHub and CI/CD security: Lead the program to harden 1Password's GitHub Enterprise environment and CI/CD pipelines. This includes governance frameworks, repository standards, Actions security, audit visibility, and the controls that make secure defaults the easy path for engineering teamsDefine AI-assisted development security: As 1Password's engineering teams adopt AI coding tools and agentic workflows, you'll own the security model for how that happens. You'll build the guardrails, define the governance standards, and ensure that agentic and AI-generated code workflows meet our risk and compliance requirements. This is a genuinely novel problem space and you'll be setting the direction, not following a playbookHarden the software supply chain: Drive and work with partner teams on improvements to dependency hygiene, secret management practices, token governance, and secure package consumption across the engineering organization. Design controls that scale and that teams can adopt with minimal frictionSet standards engineering teams actually use: Build secure templates, baseline configurations, and developer-friendly guardrails that engineering teams adopt because they make their work easier, not just because security requires it. Good DevSecOps is invisible when it worksPartner with Platform Engineering: Work closely with Platform Engineering as a peer-level security partner, ensuring that developer tooling and platform infrastructure evolve with security embedded in the design rather than added after the factElevate the team and the org: Mentor engineers across Corporate Security and the broader Security Operations organization. Actively distribute ownership to scale your impact and create growth opportunities for others. Contribute to the hiring process and help develop how we assess candidatesSupport Corporate Security operations: Participate in the Corporate Security on-call rotation. Contribute to investigations involving developer tooling, credential exposure, or workflow misuse when they ariseSkillsMinimum of 8 years of combined experience in security engineering, DevSecOps, platform security, or closely related engineering roles, with deep focus on securing developer environments, CI/CD, or software supply chainsDeep, hands-on expertise in GitHub Enterprise security and governance, including branch protections, secret scanning, access controls, repository standards, Actions security, and audit logging at scaleProven ability to design and implement security controls that integrate into CI/CD pipelines without meaningfully degrading developer velocity. Experience with GitHub Actions and familiarity with how pipeline security scales across a large engineering organizationSolid understanding of software supply chain security within developer environments, including dependency hygiene (npm, pip, and similar), token and secret management, secure package consumption practices, and SBOM generationPractical experience solving security challenges introduced by AI-assisted and agentic development. We are looking for evidence that you've engaged seriously with the problem: you've made real calls about how to govern AI coding tools in a production environment, defined policy and technical controls for tools like Copilot, Cursor, or Claude CodeComfortable making architectural decisions that span multiple teams. You set standards and patterns that other engineers adopt; you don't just produce individual deliverables. Experience designing scalable, reusable security controls that prevent entire classes of future problemsStrong scripting and automation skills in Python, Bash, Terraform, or similar, with demonstrated ability to build tooling that scales security controls without proportional manual effortAbility to build alignment with Platform Engineering and other engineering stakeholders, translate security requirements into developer-friendly implementations, and influence engineering-wide standards without direct authorityA track record of elevating the people around you through mentorship, documentation, and deliberately creating growth opportunities for other engineers. Staff-level impact means the team gets better because you're in itExperience participating in on-call rotations and contributing to investigations involving developer tooling, source control, or credential exposure. Familiarity is a must, expertise is a nice to haveBenefitsImmediate participation in 1Password's benefits program (health, dental, 401k and many others)Utilization of our generous paid time offAn equity grantParticipation in our incentive programsImmediate participation in 1Password’s generous benefits program (health, dental, RRSP and many others)Utilization of our generous paid time offAn equity grantParticipation in our incentive programsMaternity and parental leave top-up programsCompetitive health benefitsGenerous PTO policyRSU program for most employeesRetirement matching programFree 1Password accountPaid volunteer daysPeer-to-peer recognition through BonuslyRemote-first work environmentCompany Overview1Password operates as a password manager for documents, credit card information, and addresses. It was founded in 2005, and is headquartered in Toronto, Ontario, CAN, with a workforce of 1001-5000 employees. Its website is https://1password.com.Company H1B Sponsorship1Password has a track record of offering H1B sponsorships, with 1 in 2023, 2 in 2022. Please note that this does not guarantee sponsorship for this specific role.

Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Experienced Customer Support Specialist – Email and Chat Representative for Exceptional Client Service

Remote

BUSINESS TAXES SPECIALIST I, BOARD OF EQUALIZATION

Remote

Resource Manager (PLADS Leave/STD) (Remote, US, 31999)

Remote

Technical Recruiter

Remote

[Work From Home] [Hiring] Cybersecurity Watch Analyst @Onebrief

Remote

Senior Manager, Political Affairs REMOTE, DC, US, 20215

Remote

Compensation Analyst

Remote

Claims Resolution Analyst - Remote

Remote

Experienced Data Entry Specialist – Entry Level Opportunity for Career Growth and Development in a Dynamic Retail Environment at arenaflex

Remote

**Experienced Customer Service Representative for Loan Servicing – Remote Opportunity**

Remote
← Back