Staff Security Engineer, DevSecOps - 1password

Key Responsibilities

• Architect, build, and maintain secure CI/CD pipelines that integrate automated security testing, code analysis, and compliance checks.
• Design and enforce cloud security controls for AWS and Kubernetes environments, ensuring adherence to industry standards and internal policies.
• Collaborate with cross‑functional teams to conduct threat modeling, risk assessments, and secure code reviews for new features and releases.
• Develop and maintain Infrastructure as Code (IaC) templates, leveraging tools such as Terraform or CloudFormation, with a focus on security hardening.
• Lead incident response efforts, perform root cause analysis, and implement preventive measures to reduce future risk.
• Mentor and coach engineering teams on secure coding practices, security tooling, and DevSecOps principles.

Requirements

• 10+ years of experience in security engineering, with a strong focus on DevSecOps and cloud security.
• Proficiency with AWS, Kubernetes, and IaC tools (Terraform, CloudFormation).
• Hands‑on experience with CI/CD platforms (GitHub Actions, GitLab CI, Jenkins) and security scanning tools (Snyk, Trivy, OWASP ZAP).
• Deep understanding of threat modeling, secure architecture, and compliance frameworks (ISO 27001, SOC 2, NIST).
• Excellent communication skills and a proven ability to influence technical direction across multiple teams.