Senior Security Engineer

Summary

Join 1Password's Governance, Risk, and Compliance (GRC) team as a Security Engineer and contribute to world-class GRC programs. Collaborate with cross-functional teams to build automation solutions, streamline evidence collection, and monitor security and privacy controls. Analyze data for security risks and compliance, and communicate technical concepts to non-technical audiences. This remote opportunity (Canada/US) requires 5+ years of experience in security, GRC, or a related field with hands-on automation experience. The role involves managing GRC programs, engaging with stakeholders, assisting with audits, and establishing security guidelines. 1Password offers competitive salaries, comprehensive benefits, generous PTO, equity grants, and opportunities for professional growth.

Requirements

• Minimum of 5+ years of combined experience in security, GRC, risk, or a related space with hands-on technical work building automation solutions as they relate to compliance controls, evidence, GRC platforms, etc
• Experience in effectively analyzing data and programs for security risk, compliance, and maturity
• Willingness to wear different hats and work on areas where needed
• Excel in communication, and demonstrate the ability to explain technical security concepts to a non-technical audience
• Have a highly collaborative and teamwork-focused approach, as well as a heart for mentoring and leveling up your teammates
• Be able to assess and mitigate corporate risk within the organization
• Possess sophisticated program/project management abilities

Responsibilities

• Own, design and manage the continued enhancement of various GRC programs including but not limited to strategy, roadmap, and controls to address regulatory requirements across multiple jurisdictions
• Communicate our compliance framework and various program requirements to all relevant stakeholders (internal and external)
• Engage cross-functionally (with groups such as Engineering, Finance, Legal, Product, and Sales) to establish a thoughtful, strategic and tactical approach to multiple GRC programs and related processes
• Assist with analysis and preparation for internal and external audits
• Accurately and effectively communicate our compliance position and programs to auditors and customers
• Partner with other members of the security team to establish security guidelines that enable the organization to move fast in a safe and secure manner
• Operate as a technical leader by helping define the GRC roadmap and by leveling up junior employees
• Build strong relationships with partner and stakeholder teams in order to build a scalable GRC program

Preferred Qualifications

Experience with Drata and/or Vanta (integrations, automation, onboarding as a GRC platform)

Benefits

• Maternity and parental leave top-up programs
• Wellness spending allowance
• Generous PTO policy
• Company-wide wellness days off scheduled throughout the year
• Wellness Coach membership
• Comprehensive health coverage
• Company equity for all full-time employees
• Retirement matching program
• Training budget, 1Password University access, and learning sessions
• Free 1Password account (and friends and family discount!)
• Paid volunteer days
• Employee-led DEIB programs and ERGs and ECGs
• Fully remote environment
• Peer-to-peer recognition through Bonusly
• Health, dental, 401k and many others
• Generous paid time off
• Equity grant
• Participation in our incentive programs
• Health, dental, RRSP and many others