Staff Security Engineer, Detection and Response

Summary

Join 1Password's Detection and Response team as a Staff Security Engineer and lead the development and implementation of threat detection and response strategies. You will collaborate with cross-functional teams to enhance security posture and protect assets. This remote role (Canada/US) requires at least 7 years of security experience, expertise in detection engineering, SIEM/SOAR solutions, and cloud security. You'll manage security incidents, automate processes, and mentor team members. 1Password offers competitive salaries, comprehensive benefits (health, dental, retirement, paid time off), equity grants, and opportunities for professional development.

Requirements

• Minimum 7 years of experience in a security role with a focus on Detection Engineering, Incident Response, Digital Forensics and/or Threat Intelligence
• Expertise in designing, building, and fine-tuning systems and processes for detection engineering
• Expertise in SIEM and SOAR solutions for enhancing behavior analytics and security automations
• Expertise with Detection-as-Code to automate detection engineering workflows
• Experience in building logging pipelines for log ingestion into a centralized system
• Experience leading and collaborating on complex and ambiguous cross-functional projects from design through implementation
• Experience in leading security incidents to resolution with various incident responders and stakeholders
• Experience with runtime security, EDR and forensic analysis tools on various operating systems
• Strong understanding of current threat landscape and threat actor TTPs
• Experience with threat hunting and log analysis to identify potential security or privacy impacts
• Experience deploying cloud services (e.g., AWS, GCP) and a strong understanding of cloud security principles
• Experience in scripting and programming languages (e.g., Python, Bash) for data analysis, automation and tool development
• Experience with software development lifecycle, project management, Terraform and CI/CD in GitLab or GitHub
• Excellent communication skills with a drive for collaboration and leveling up team members
• Passion for fostering psychological safety and stability in high stress environments

Responsibilities

• Operate as a technical lead to advance the Detection Engineering program
• Define the team roadmap through collaboration with the manager and Security leaders
• Establish the scope, timeline, milestones and success criteria for projects, ensuring deliverables are met and in alignment with Security OKRs
• Build strong relationships with partner and stakeholder teams in order to advise on improvements to detection capabilities and response procedures
• Manage security incidents through the incident response process from identification to resolution
• Design and build systems to automate security processes and workflows to improve efficiency and scalability
• Participate in an on-call rotation with potential for work on nights or weekends in the event a significant security issue is identified
• Partner with developers, engineers and other departments to improve security logging and address security issues for the product
• Develop and maintain threat intelligence sources to stay informed about emerging threats and attack vectors
• Standardize, write and execute response playbooks that can be utilized by all members of the team
• Mentor and train team members to uphold a high team standard
• Participate in security audits, vendor assessments and security tabletop exercises
• Be a subject matter expert on the team’s security tooling, processes and procedures

Benefits

• USA-based roles only: The Annual base salary for this role is between $187,000 USD and $253,000 USD, plus immediate participation in 1Password's benefits program (health, dental, 401k and many others), utilization of our generous paid time off, an equity grant and, where applicable, participation in our incentive programs
• Canada-based roles only: The Annual base salary for this role is between $168,000 CAD and $228,000 CAD, plus immediate participation in 1Password’s generous benefits program (health, dental, RRSP and many others), utilization of our generous paid time off, an equity grant and, where applicable, participation in our incentive programs
• Maternity and parental leave top-up programs
• Wellness spending account
• Generous PTO policy
• Company-wide wellness days off scheduled throughout the year
• Wellness Coach membership
• Comprehensive health coverage
• Employee stock option program for all full-time employees
• Retirement matching program
• Training budget, 1Password University access, and learning sessions
• Free 1Password account (and friends and family discount!)
• Paid volunteer days
• Employee-led DEIB programs and ERGs and ECGs
• Fully remote environment
• Peer-to-peer recognition through Bonusly