Who we’re looking for
Toyota Motor North America has embarked on an important mission to become the leader in cybersecurity for global mobility. We are making significant investments to enhance our capabilities through resource levels, talent development, process maturity, and technology enablement.
As the Design Analysis & Testing Engineer in the Vehicle Cybersecurity Engineering department, you will be a key component of our team. This position will be responsible for driving the vehicle security test functions. The role will require working closely withcybersecurity and vehicle development teams to define, design & develop, implement, and sustain security test solutions for vehicle and components. This position requires a strong secure software test development background, proven threat modeling, threat identification and providing a security test plan. The ideal candidate must possess strong security skills to analyze the test requirements and design & build scalable a secure test infrastructure with building test cases and executing the production security testing. Additionally, the candidate will need to have an end-to-end system test vision with system level security validation including experience in cloud based software test development.
What you’ll be doing
Design Analysis & Test Development – Provide security test solutions for vehicle and its components. Build a scalable security test infrastructure which includes security functional, performance, and negative testing. Provide the security test solution for asset protection and provide counter measure testing and risk analysis for different threat vectors based on test results.
Security Analysis – Analyze the requirements and design to provide the threat vectors within each attack surface. Build test cases and provide the provable attack vectors along with the counter measure strength with detailed risk analysis. The security testing and risk analysis will be performed across the product life cycle keeping end to end solution perspective.
Test Development and Support –
Automation of tasks related to cybersecurity such as correlations, alerting, analysis, and event review processes
Integration of various tools and datasets to enhance detective and preventive control sets
Validating the security functions like attestation, signing, key management functions, encryption and water marking.
Creating negative testing along with counter measure strength measurement.
Unique, custom software solutions to achieve security goals when COTS or OSS solutions are not available or viable
Software development experience/expertise to compliment product security and application security initiatives
Systems analysis and software test development efforts that align with agile-related approaches
Collaboration and Reporting Management
Routinely collaborate with other stakeholders across the enterprise including security architecture, active defense, identity and access management, security systems administration/tools management, and application security test teams to defend our enterprise
Coordinate closely with the department management team to provide regular metrics and reporting to measure the efficiency and effectiveness of the services, facilitate appropriate resource allocation, and increase the overall maturity of security capabilities
Collaborate with various corporate functions including Internal Audit, Legal and Compliance, Privacy, and others toensure that the organization maintains a strong security posture
Liaise with line of business leaders and general other risk functions to deliver program needs within business units
What you bring
Bachelor’s degree or higher, in Computer Science, Engineering or related discipline, or equivalent professional experience
Experience in software development and delivery services, security engineering, and/or other technical risk management
Deep technical understanding of modern development platforms such as: CD/CI,Git/Gerrit, Dockers, OpenStack,
Deep understanding of Cloud platforms such as AWS, Azure, or Google Cloud
Strong management skills pertaining to planning, organizing, leading, and measuring service driven teams
Strong interpersonal and communications skills to build/ maintain ongoing business relationships
Experience with compliance regulations/laws, security frameworks and standards (e.g., NIST, HIPAA, ISO, COBIT, OWASP, ITIL, etc.).
Added bonus if you have
Experience in automotive and/or manufacturing industries
OSCP, SANS/GIAC, CISSP or other similar professional certifications
What we’ll bring
During your interview process, our team can fill you in on all the details of our industry-leading benefits and career development opportunities. A few highlights include:
Professional growth and development programs to help advance your career, as well as tuition reimbursement
Vehicle purchase & lease programs
Comprehensive health care and wellness plans for your entire family
Flextime and virtual work options (if applicable)
Toyota 401(k) Savings Plan featuring a company match, as well as an annual retirement contribution from Toyota regardless of whether you contribute
Paid holidays and paid time off
Referral services related to prenatal services, adoption, child care, schools and more
Flexible spending accounts
Relocation assistance (if applicable)
What you should know
Our success begins and ends with our people. We embrace diverse perspectives and value unique human experiences. We are proudto be an equal opportunity employer that celebrates the diversity of the communities where we live and do business. Applicants for our positions are considered without regard to race, ethnicity, national origin, sex, sexual orientation, gender identity or expression, age, disability, religion, military or veteran status, or any other characteristics protected by law.
Have a question or need assistance with your application? Check out the How to Apply section of our careers page on Toyota.com