1Password - Senior Security Engineer, GRC Automation

• 5+ years of experience in security engineering, DevSecOps, solutions engineering, or GRC automation roles. • Proven experience working with GRC, compliance, or audit teams to build automation that supports evidence collection, control testing, or security monitoring. • GRC, compliance, or audit teams • Direct experience implementing and integrating GRC platforms (e.g., Drata, Vanta, Tines, JupiterOne) into production environments. • implementing and integrating GRC platforms • Strong scripting and integration skills using Python, JavaScript, APIs, webhooks, or workflow automation tools. • Python, JavaScript, APIs, webhooks • Ability to work cross-functionally with security, compliance, legal, and infrastructure teams to translate policies into scalable technical systems. • security, compliance, legal, and infrastructure teams • Familiarity with compliance frameworks such as SOC 2, ISO 27001, or NIST 800-53, and how they map to real-world infrastructure and operations. • compliance frameworks • Hands-on experience with event-driven automation platforms like Tines and their use in control validation and alerting. • event-driven automation platforms • Expertise in building evidence pipelines, tagging telemetry, or creating GRC dashboards in tools like Looker or Metabase. • evidence pipelines • Strong understanding of cloud-native security architecture and its relationship to compliance controls (e.g., AWS IAM, encryption, logging). • cloud-native security architecture • Experience working in customer trust, privacy engineering, or supporting sales/GTM teams with compliance assurance content. • customer trust, privacy engineering • What you can expect: • Lead the implementation and integration of our GRC platform, ensuring it is fully operationalized across key systems and workflows. • Lead the implementation and integration of our GRC platform • Build out automated workflows for control testing, evidence collection, and audit readiness. • automated workflows • Develop and maintain integrations between the GRC platform and systems of record (e.g., ticketing systems, IAM, asset inventories, configuration management). • integrations • Design dashboards and reporting to track control health, trust signals, and audit performance. • control health, trust signals, and audit performance • Collaborate with teams across Security, GRC, and Engineering to embed compliance into operational processes like employee onboarding, change management, and incident response. • employee onboarding, change management, and incident response • Shape the roadmap for automated, resilient internal assurance infrastructure that grows alongside the business. • automated, resilient internal assurance infrastructure • USA-based roles only: The annual base salary for this role is between $156,000 USD and $210,000 USD, plus immediate participation in 1Password's benefits program (health, dental, 401k and many others), utilization of our generous paid time off, an equity grant and, where applicable, participation in our incentive programs. • Canada-based roles only: The annual base salary for this role is between $143,000 CAD and $193,000 CAD, plus immediate participation in 1Password’s generous benefits program (health, dental, RRSP and many others), utilization of our generous paid time off, an equity grant and, where applicable, participation in our incentive programs. • At 1Password, we approach each individual's compensation with a promise of fair market value and internal equity commensurate with experience and specific skill set. • Our culture • At 1Password, we prioritize collaboration, clear and transparent communication, receptiveness to feedback, and alignment with our core values: keep it simple, lead with honesty, and put people first. • You’ll be part of a team that challenges the status quo, and is excited to experiment and iterate in search of the best solution. That said, 1Password is not for everyone . Our work is demanding, we strive for excellence, and the pace is fast. We need people who are keen to take on challenging problems, who seek feedback to grow, and who are driven to make an impact. If you're looking for a place where you can settle into a comfortable routine, this might not be the right fit for you. We’re looking for individuals who are proven experts in their fields, as well as those who are highly adaptable, can thrive in ambiguity and through change, are curious, and above all deliver results. • We are committed to leveraging cutting-edge technology—including AI—to achieve our mission. We also understand that thinking critically about AI in its current forms will help us create better solutions for our customers and ourselves with its future forms, which will help us continue to close the gap between security and privacy and achieve our mission. We want team members at all levels to take the approach of actively learning AI best practices, identifying opportunities to apply AI in meaningful ways, and driving innovative solutions in their daily work. Embracing the future of AI isn't just encouraged at 1Password—it's an essential part of how we will be successful at 1Password. • Our approach to remote work • We believe in the power of remote work, but recognize that in-person connection is important to help us achieve our mission. While we are a remote-first company, travel for in-person engagement is a part of almost all roles, and we require our employees to be ready and willing to take part. Frequency will depend on role and responsibilities, and may include, but is not limited to: annual department-wide offsites, team meetings, and customer/industry events.