Red Team & Incident Response Engineer

Who we are

Collaborative. Respectful. A place to dream and do. These are just a few words that describe what life is like at Toyota. As one of the world’s most admired brands, Toyota is growing and leading the future of mobility through innovative, high-quality solutions designed to enhance lives and delight those we serve. We’re looking for diverse, talented team members who want to grow and challenge what’s possible with us.

Who we’re looking for

Toyota Motor North America has embarked on an important mission to become the leader in cybersecurity for global mobility. We are making significant investments to enhance our capabilities through resource levels, talent development, process maturity, and technology enablement.

As a Red Team & Incident Response Engineer in the Vehicle Cybersecurity Engineering department, you will be a key component of our team. This position will be responsible for driving the vehicle application security functions. The role will require working closely with cybersecurity and vehicle development teams to define, design & develop, implement, and sustain security solutions for vehicle applications. This position requires a strong secure software development background, proven threat modeling, threat identification and providing a mitigation plan. The ideal candidate must possess strong security skills to analyze not only architecture and design, but also doing secure code analysis. Additionally, the candidate needs to have an end-to-end system vision with system level security threat modeling experience that includes cloud based software development.

What you’ll be doing

  • Application Design & implementation – Provide security solution for embedded applications from design and development to deployment. Provide the security design solution for asset protection and provide counter measures and risk analysis for different threat vectors.

  • Security Analysis – Analyze the architecture & design to provide the threat vectors within each attack surface. Work with data and identify the provable attack vectors and provide the appropriate counter measure with detailed risk analysis. The security analysis will be performed across the product life cycle keeping end to end solution perspective.

  • Development and Support

    • Automation of tasks related to cybersecurity such as correlations, alerting, analysis, and event review processes

    • Integration of various tools and datasets to enhance detective and preventive control sets

    • Codified security principles for cloud (X-as-a-Service) systems integrated directly into application designs and blueprints/formations

    • Data exchanges with internal and external security intelligence platforms

    • Unique, custom software solutions to achieve security goals when COTS or OSS solutions are not available or viable

    • Software development experience/expertise to compliment product security and application security initiatives

    • Systems analysis and software development efforts that align with agile-related approaches

  • Collaboration and Reporting Management

    • Routinely collaborate with other stakeholders across the enterprise including security architecture, active defense, identity and access management, security systems administration/tools management, and application security teams to defend our enterprise

    • Coordinate closely with the department management team to provide regular metrics and reporting to measure the efficiency and effectiveness of the services, facilitate appropriate resource allocation, and increase the overall maturity of security capabilities

    • Collaborate with various corporate functions including Internal Audit, Legal and Compliance, Privacy, and others to ensure that the organization maintains a strong security posture

    • Liaise with line of business leaders and general other risk functions to deliver program needs within business units


What you bring
  • Bachelor’s degree or higher, in Computer Science, Engineering or related discipline, or equivalent professional experience

  • Leadership experience

  • Experience in software development and delivery services, security engineering or other technical risk management skills.

  • Deep technical understanding of modern development platforms such as: CD/CI,Git/Gerrit, Dockers, OpenStack, AWS, Azure, or Google Cloud platforms

  • Deep technical understanding with programming languages such as: C, C++, Python, Ruby, .NET/PowerShell, Java/Javascript or other related languages.

  • Strong management skills planning, organizing, leading, and measuring service driven teams

  • Strong interpersonal and communications skills with the ability to create and present concepts and recommendations to management

  • Experience with compliance regulations/laws, security frameworks and standards (e.g., NIST, HIPAA, ISO, COBIT, OWASP, ITIL, etc.).

Added bonus if you have

  • Knowledge of the automotive, manufacturing, or software industries a plus
  • Experience with law enforcement, defense, or intelligence community a plus

What we’ll bring

During your interview process, our team can fill you in on all the details of our industry-leading benefits and career development opportunities. A few highlights include:

  • A work environment built on teamwork, flexibility and respect
  • Professional growth and development programs to help advance your career, as well as tuition reimbursement
  • Vehicle purchase & lease programs
  • Comprehensive health care and wellness plans for your entire family
  • Flextime and virtual work options (if applicable)
  • Toyota 401(k) Savings Plan featuring a company match, as well as an annual retirement contribution from Toyota regardless of whether you contribute
  • Paid holidays and paid time off
  • Referral services related to prenatal services, adoption, child care, schools and more
  • Flexible spending accounts
  • Relocation assistance (if applicable)

What you should know

Our success begins and ends with our people. We embrace diverse perspectives and value unique human experiences. We are proud to be an equal opportunity employer that celebrates the diversity of the communities where we live and do business. Applicants for our positions are considered without regard to race, ethnicity, national origin, sex, sexual orientation, gender identity or expression, age, disability, religion, military or veteran status, or any other characteristics protected by law.
Have a question or need assistance with your application? Check out the How to Apply section of our careers page on Toyota.com! To save time applying, Toyota does not offer sponsorship of job applicants for employment-based visas or any other work authorization for this position at this time. #LI-TMNA
Apply for this job

Options

More Jobs Like This