Privacy Engineer

1Password is growing faster than ever. We’ve surpassed $400M in ARR and we’re continuing to accelerate, earning a spot on the Forbes Cloud 100 for four years in a row and teaming up with iconic partners like Oracle Red Bull Racing and the Utah Mammoth.

About 1Password

At 1Password, we’re building the foundation for a safe, productive digital future. Our mission is to unleash employee productivity without compromising security by ensuring every identity is authentic, every application sign-in is secure, and every device is trusted. We innovated the market-leading enterprise password manager and pioneered Extended Access Management, a new cybersecurity category built for the way people and AI agents work today. As one of the most loved brands in cybersecurity, we take a human-centric approach in everything from product strategy to user experience. Over 180,000 businesses, from Fortune 100 leaders to the world’s most innovative AI companies, trust 1Password to help their teams securely adopt the SaaS and AI tools they need to do their best work.

If you're excited about the opportunity to contribute to the digital safety of millions, to work alongside a team of curious, driven individuals, and to solve hard problems in a fast-paced, dynamic environment, then we want to hear from you. Come join us and help shape a safer, simpler digital future.

We are excited to welcome a Privacy Engineer to join 1Password’s Privacy Engineering team within GRC, part of the broader Security organization. Our mission is to build products people trust—and privacy is a core part of that trust. In this role, you’ll use full stack engineering skills to deliver privacy-by-design controls and tooling that help 1Password build and operate privacy-preserving practices across our product and platform in a modern SaaS environment.

You’ll work day-to-day as a member of Privacy Engineering, partnering closely with Engineering, Product, Data, and Legal/Privacy. You’ll help shape how we collect, process, store, access, and delete data across core services, user experiences, telemetry, support tooling, third-party integrations, and emerging AI-assisted functionality—translating privacy requirements into durable, implemented engineering controls.

This is a remote opportunity within Canada and the US.

What you can expect:

• A hands-on engineering role on the Privacy Engineering team within GRC & Security, focused on building real controls—not policy-only work

• Work on privacy engineering problems where product and platform decisions matter: user-facing flows, APIs, services, and supporting infrastructure that handles customer data

• Build practical privacy guardrails across the stack (data minimization, purpose limitation, access boundaries, consent-aware collection, and safe defaults)

• Improve retention/deletion workflows and logging/telemetry hygiene so privacy remains strong as systems evolve

• Help enable privacy-safe AI-assisted features by implementing technical guardrails that reduce data exposure and improve data handling discipline

• Collaborate across teams to make privacy the default through patterns, templates, guardrails

What you'll do:

Build privacy-by-design into product features and services

• Partner with Product and Legal/Privacy to translate requirements (e.g., DPIAs/PIAs, consent, data subject rights) into concrete Privacy Engineering deliverables and implementation plans

• Implement privacy-safe patterns for data flows, access boundaries, storage decisions, and user experiences, driving changes into production systems

• Contribute to technical designs and reviews so privacy is addressed early, with GRC & Security Privacy Engineering providing consistent guidance and reusable patterns

Implement privacy controls across the stack

• Build and improve backend controls such as authorization checks, data scoping, encryption usage, and privacy-aware service interfaces in collaboration with Security engineering partners

• Build and improve frontend experiences that support privacy requirements (clear choices, consent signaling, privacy-respecting defaults, and user controls where applicable)

• Improve data handling in logs/telemetry by limiting sensitive fields, and ensuring collection remains consent-aware, supporting goals for visibility without over-collection

Improve lifecycle controls and operational hygiene

• Strengthen retention and deletion across production databases, logs, and relevant third-party systems with an engineering-first approach

• Improve observability practices while reducing exposure (e.g., safer diagnostics, redaction, structured logging patterns)

• Build and maintain tooling and automation (service templates, CI checks, linting/guardrails) that prevent regressions and make safe choices easy across engineering teams

Grow through hands-on execution and collaboration

• Contribute production-quality code, tests, and documentation for privacy-related features and controls as a core member of the privacy engineering function

• Participate in code reviews and design reviews, and work with teammates to iterate toward pragmatic solutions

• Learn and apply privacy and regulatory concepts in an engineering context, supported by close partnership with privacy-minded stakeholders

What we're looking for:

• 3–5 years of experience building and shipping software in a SaaS environment

• Full stack engineering experience delivering customer-facing functionality and supporting backend services (APIs, services, and data flows)

• Proficiency in one or more backend languages (e.g., Go, Rust, Java, TypeScript) and comfort working across the stack

• Experience with modern web application patterns (authentication/authorization concepts, API design, frontend state/data handling)

• Practical experience implementing privacy- and security-adjacent controls such as data minimization, access controls, encryption usage, retention/deletion, and privacy-safe telemetry/logging

• Ability to translate privacy requirements (GDPR / CCPA / CPRA concepts) into engineering tasks

• Strong collaboration skills and comfort partnering with GRC & Security, Product, Legal/Privacy, Data, and Engineering teams

• A track record of writing reliable, maintainable code with testing and operational awareness (debugging, monitoring, incident follow-up)

Bonus points for:

• Experience building or supporting data subject rights workflows (export, delete, correction) and related automation

• Familiarity with threat modeling, secure development practices, and privacy/security reviews

• Experience with third-party integrations and building safe data handling patterns for vendors and support tooling

• Exposure to compliance/security frameworks and audits (e.g., ISO 27001, ISO 27701, SOC 2) in ways that translate into real engineering controls

• Interest in privacy-safe AI-assisted features (data minimization, provenance, logging/telemetry hygiene, retention alignment)
  

USA-based roles only: The annual base salary for this role is between $123,000 USD and $172,000 USD, plus immediate participation in 1Password's benefits program (health, dental, 401k and many others), utilization of our generous paid time off, an equity grant and, where applicable, participation in our incentive programs.

Canada-based roles only: The annual base salary for this role is between $111,000 CAD and $155,000 CAD, plus immediate participation in 1Password’s generous benefits program (health, dental, RRSP and many others), utilization of our generous paid time off, an equity grant and, where applicable, participation in our incentive programs.

At 1Password, we approach each individual's compensation with a promise of fair market value and internal equity commensurate with experience and specific skill set.

This posting is for an existing vacancy.

Our culture
At 1Password, we prioritize collaboration, clear and transparent communication, receptiveness to feedback, and alignment with our core values: keep it simple, lead with honesty, and put people first.

You’ll be part of a team that challenges the status quo, and is excited to experiment and iterate in search of the best solution. That said, 1Password is not for everyone. Our work is demanding, we strive for excellence, and the pace is fast. We need people who are keen to take on challenging problems, who seek feedback to grow, and who are driven to make an impact. If you're looking for a place where you can settle into a comfortable routine, this might not be the right fit for you. We’re looking for individuals who are proven experts in their fields, as well as those who are highly adaptable, can thrive in ambiguity and through change, are curious, and above all deliver results.

We are committed to leveraging cutting-edge technology—including AI—to achieve our mission. We also understand that thinking critically about AI in its current forms will help us create better solutions for our customers and ourselves with its future forms, which will help us continue to close the gap between security and privacy and achieve our mission. We want team members at all levels to take the approach of actively learning AI best practices, identifying opportunities to apply AI in meaningful ways, and driving innovative solutions in their daily work. Embracing the future of AI isn't just encouraged at 1Password—it's an essential part of how we will be successful at 1Password.

Our approach to remote work
We believe in the power of remote work, but recognize that in-person connection is important to help us achieve our mission. While we are a remote-first company, travel for in-person engagement is a part of almost all roles, and we require our employees to be ready and willing to take part. Frequency will depend on role and responsibilities, and may include, but is not limited to: annual department-wide offsites, team meetings, and customer/industry events.

What we offer
We believe in working hard, and rewarding that hard work through our benefits. While not an exhaustive list, here is a glance at what we currently offer:

Health and wellbeing
👶 Maternity and parental leave top-up programs
🩺 Competitive health benefits
🏝 Generous PTO policy

Growth and future
📈 RSU program for most employees
💸 Retirement matching program
🔑 Free 1Password account

Community
🤝 Paid volunteer days
🏆 Peer-to-peer recognition through Bonusly
🌎 Remote-first work environment
*Some roles in our GTM team are currently being hired for in-person hybrid work in Toronto and Austin. These roles will specify on the posting.

You belong here.

1Password is proud to be an equal opportunity employer. We are committed to fostering an inclusive, diverse and equitable workplace that is built on trust, support and respect. We welcome all individuals and do not discriminate on the basis of gender identity and expression, race, ethnicity, disability, sexual orientation, colour, religion, creed, gender, national origin, age, marital status, pregnancy, sex, citizenship, education, languages spoken or veteran status. Be yourself, find your people and share the things you love.

Accommodation is available upon request at any point during our recruitment process. If you require an accommodation, please speak to your talent acquisition partner or email us at nextbit@agilebits.com and we’ll work to meet your needs.

Remote work is a part of our DNA. Given that our company was founded remotely in 2005, we can safely say we're experts at building remote culture. That said, remote work at 1Password does mean working from your home country. If you've got questions or concerns about this, your talent partner would be happy to address them with you.

Successful applicants will be required to complete a background check that may consist of prior employment verification, reference checks, education confirmation, criminal background, publicly available social media, credit history, or other information, as permitted by local law.

1Password uses artificial intelligence (AI) and machine learning (ML) technologies, including natural language processing and predictive analytics, to assist in the initial screening of employment applications and improve our recruitment process. See here for the latest third party bias audit information. If you prefer not to have your application assessed using AI/ML features, you may opt out by completing this form. For additional information see our Candidate Privacy Notice.