As far as I know, Enpass is secure while your vault is locked (i.e. asking for the master password). Therefore you shouldn't set the lock timeout of Enpass to a high value (or completely disable it) or at least manually lock it if Enpass is not currently in use. In my case I've set the auto lock to 1 minute of Enpass inactivity.