Senior Principal Engineer, Product Cybersecurity (PCPT)

Key/Primary Responsibilities

•         Product cybersecurity technical thought leadership in the research, design, development, manufacturing, and/or operations of the Connected, Autonomous, Shared, and Electrified mobility solutions and digital services. 

•         Creation & facilitation of automotive threat analysis and risk assessment (TARA) for the end-to-end (E2E) vehicle ecosystem (embedded, cloud, mobile app).

•         Individual contributor executing the roles and responsibilities of an engineering technical lead across multiple projects, processes, and teams.  Support activities include: 

o   Working with stakeholders to understand timeline, input/output, dependencies, etc.  

o   Technical experience to understand any “impediments” the team may experience  

o   Work with external stakeholders to remove “impediments” from the team   

o   Hands-on work to complete TARA, system requirements, system reference architectures for E2E vehicle ecosystem

•         Creation & facilitation of technical reference architectures to quickly enable biz divisions to implement solutions that align w/ privacy-by-design & security-by-design.

•         Execute the roles and responsibilities of an individual contributor across multiple projects and teams independently with very little oversight required.

•         Liaise with line of business leaders and general other risk functions to deliver program needs within business units. 

Requirements

• 8+ years experience in a security engineering role, with an emphasis on cybersecurity expertise with identifying risks & designing countermeasures for embedded systems, cloud systems, and mobile app.

• 4+ years experience in automotive, manufacturing, internet of things (IOT), and/or software industries

• Systems, hardware, and/or software engineering and cybersecurity subject matter expert with hands-on engineering development and technical leadership experience.

• Strong interpersonal and communications skills with the ability to create and present concepts and recommendations to technical peers and management.

o Strong technical competence in MS tool suite (i.e., Outlook, Word, Excel, PowerPoint, etc.)

• Fluent in English (reading, writing, speaking) for business and technical discussions.

• Demonstration of the following behavioral competencies:

o Delivering results as an individual and as a team

o Respect for peers and customers

o Customer service and relationship management

o Ability to understand both the individual and group role, recognize when problems impact other roles, and collaborate with group leadership as well as other impacted roles to solve complex problems

o Ability to understand management roles (group, project) and provide the appropriate information to management

o Ability to identify when tasks are at risk of getting completed on time and coordinating with management to address appropriately

o Initiative to identify and improve aspects of the business – policies, processes, procedures, technologies, reports, and templates as needed

o Self-education to continuously learn and invest in skills and knowledge relevant to the team and the position

o Going above and beyond by understanding the business, anticipating needs, and delivering results that meet all quality expectations

o Pro-active management and creation of tasks, definitions of done, and deliverable dates for tasks requested of you and projects you manage

o Mentoring and coaching that builds upon Toyota’s customer-focused philosophies that builds respect for consumer privacy

Added Bonus:

• OSCP, SANS/GIAC, CISSP, or other related/equivalent certifications.

• Experience with compliance regulations/laws, security frameworks and standards (e.g., ISO/SAE 21434, NIST, HIPAA, ISO, COBIT, OWASP, ITIL, etc.). 

• Experience with one or more of the following industries: law enforcement, defense, intelligence community, automotive, manufacturing, software, 

• Bachelor’s degree or higher, in Computer Science, Engineering or related discipline, or equivalent professional experience 

• Fluent in Japanese (reading, writing, speaking) for business and technical discussions.