1Password is hiring a Senior Security Engineer, Detection and Response

1Password is looking for a Senior Security Engineer on the Detection & Response team to detect, investigate, and respond to security threats. You'll be responsible for maturing our detection capabilities, responding to complex incidents, and improving overall security systems and processes.

What You'll Do

• Design, build, and continuously improve threat detections across 1Password’s infrastructure, products, internal tools, and corporate environments.
• Lead and support security incident response activities, including investigation, containment, remediation, and post-incident learning.
• Apply threat intelligence and knowledge of attacker TTPs to detection development, threat hunting, alert triage, and response prioritization.
• Collaborate with Security, Infrastructure, and IT teams to improve security visibility, logging quality, and response readiness.
• Use automation, scripting, and Detection-as-Code practices to scale detection and response workflows and improve reliability.
• Own end-to-end security projects aligned with Detection & Response initiatives and broader security strategy.
• Participate in a shared on-call rotation and support high-severity incidents as needed.
• Contribute to operational maturity through playbooks, mentoring, tabletop exercises, audits, and cross-functional initiatives.

What We're Looking For

• 5+ years of experience in security technical engineering roles.
• 3+ years focused on security operations, detection engineering or incident response.
• Hands-on experience with detection engineering and automation, including SIEMs, SOAR platforms, behavior analytics, and Detection-as-Code workflows.
• Strong understanding of modern attacker techniques and how they apply to cloud-native, SaaS, and identity-centric environments.
• Experience with endpoint, runtime, and forensic tools across multiple operating systems.
• Knowledge of cloud environments (e.g., AWS, GCP) and security best practices for cloud-native systems.
• Proficiency with scripting and infrastructure tools (e.g., Python, Bash, Terraform, CI/CD pipelines) to support automation and internal tooling.
• Strong written and verbal communication skills, with the ability to explain complex security issues to both technical and non-technical audiences.

Technical Stack

• SIEMs, SOAR platforms
• Python, Bash
• Terraform, CI/CD pipelines
• AWS, GCP

Team & Environment

You'll report to the Manager of Detection & Response.

Benefits & Compensation

• Compensation: USA: $156,000 USD - $210,000 USD. Canada: $143,000 CAD - $193,000 CAD. Plus an equity grant.
• Health, dental, 401k/RRSP and many other benefits.
• Generous paid time off.
• Maternity and parental leave top-up programs.
• RSU program for most employees.
• Retirement matching program.
• Free 1Password account.
• Paid volunteer days.
• Peer-to-peer recognition through Bonusly.

Work Mode

This is a remote-first position open to candidates in the USA and Canada.

1Password is proud to be an equal opportunity employer committed to fostering an inclusive, diverse and equitable workplace. They do not discriminate on the basis of gender identity and expression, race, ethnicity, disability, sexual orientation, colour, religion, creed, gender, national origin, age, marital status, pregnancy, sex, citizenship, education, languages spoken or veteran status.