Senior Security Engineer

Remote (US or Canada)

1Password logo
1Password
Apply now Apply later

Posted 4 weeks ago

60,000 businesses and millions of people use 1Password to protect their most important information. We’re a kind, curious, and customer-focused team on a mission to build the world's most-loved password manager and give people more control over their data.
1Password has a long-standing commitment to customer privacy and security, and the Security Team is responsible for upholding this commitment. We are a passionate team that really cares about protecting our customers, and we’re looking for new team members that share this passion.
As a Senior Security Engineer with a focus on Development, you’ll be working with both our Security Team, as well as the development teams to help us to continue to raise the bar for security. This includes working with developers on security-critical features, identifying and correcting security issues, and working on other initiatives to improve the security of our applications.

What we're looking for:

  • Experience working in a remote environment.
  • Excellent written and verbal communication skills.
  • Significant experience writing software in at least one of the following: Rust, Go, C#, Java, C/Obj-C/C++.
  • Significant experience performing code reviews, with a focus on identifying security issues.
  • Experience automating tasks using a scripting language such as Python.
  • Experience using git and related tools.
  • Experience working with cryptographic libraries, and an understanding of applied cryptography.
  • Experience with CI/CD systems.

Bonus points for:

  • Development experience with Rust/Go.
  • Experience with TypeScript/JavaScript.
  • Experience with Burp Suite, ZAP, or other similar security testing tools.

What you can expect:

  • Performing code reviews in a variety of languages, primarily Rust, Go, TypeScript and JavaScript.
  • Providing guidance on the design and development of new features to ensure that they are built to the highest standards.
  • Working with the development teams on security-critical features, implementing secure protocols, and other code that is important to the security of the applications.
  • Helping to develop security training material for developers.
  • Developing specialized tools / automation for internal use.
  • Identifying security issues, and providing recommendations to remediate issues identified by yourself or from penetration tests or bug bounty programs.
Job tags: Automation Burp Suite C Cryptography Go Java JavaScript Python