Staff Security Engineer, DevSecOps (Corporate Security) at 1Password

📋 Description

• Own the DevSecOps function; set direction and operating model.
• Lead GitHub Enterprise and CI/CD security governance.
• Define AI-assisted development security; guardrails and policy.
• Harden the software supply chain; improve dependency hygiene.
• Set standards; build secure templates and guardrails for developers.
• Partner with Platform Engineering to embed security in tooling.

🎯 Requirements

• 8+ years in security engineering, DevSecOps, or related roles.
• Deep GitHub Enterprise security; branch protections, secrets, audits.
• Design CI/CD security controls without hurting velocity.
• Strong software supply chain security; dependencies, tokens, SBOM.
• Experience with AI-assisted development; governance of AI tools.
• Architectural leadership; scalable, reusable security controls.
• Automation: Python, Bash, Terraform; build tooling.
• Collaborate with Platform Engineering; translate security needs for developers.

🎁 Benefits

• Remote-first with occasional in-person engagement.
• Comprehensive health benefits and parental leave top-up.
• RSU program and retirement matching.
• Free 1Password account for employees.
• Paid volunteer days and peer recognition.