Engineering Manager, Application Security Engineering

About Woven by ToyotaWoven by Toyota, a part of the Toyota Group, is challenging the current state of mobility through human-centric innovation and empowering mobility transformation. Through our AD/ADAS technology, our automotive software development platform Arene OS, our mobility test course Toyota Woven City, and Toyota’s growth fund, Woven Capital, we are pioneering the movement of people, goods, information, and energy, weaving a future of enhanced safety, connectivity and well-being for all.
=========================================================================
TEAMThe Enterprise Security Services (ESS) team at Woven by Toyota is on the cutting edge of some of the most challenging security domains. We identify emerging security threats in autonomous vehicles, smart city technology, and other advanced research projects to help ensure all of our products are safe and secure. 
The Application Security Engineering team is responsible for developing and supporting CI/CD security tooling at Woven by Toyota, from static analysis of high-level backend languages to low-level fuzzers for automotive software. The team is a mix of security-minded software engineers and software-minded security engineers who are passionately working on revolutionizing how Toyota does automated security testing.
WHO ARE WE LOOKING FOR?We are looking for a candidate passionate about automating Woven by Toyota's Cyber Security program, scaling the team's capabilities, and aiding product security development. As an Engineering Manager for Application Security Engineering, you'll be on the forefront of ensuring software product security, and in this role will lead a diverse team of 8 engineers, overseeing the development of static and dynamic security testing tools. 
Your expertise will enhance software security, address vulnerabilities, and ensure compliance - while determining team priorities, promoting a positive culture centering on excellence, and leading cross-collaborations. You will report to the Head of Security Engineering, managing software and security engineers. Exceptional candidates considered for Senior Engineering Manager. This role is hybrid, requiring your presence on-site three days per week.

RESPONSIBILITIES

• Guide and mentor a team of (7) engineers working on security tooling, promoting a collaborative environment
• Drive the design, development, and maintenance of static security testing tools, including static analysis, open source license compliance checking, and software composition analysis
• Identify opportunities to automate security testing processes, increasing efficiency and accuracy in vulnerability detection
• Provide technical guidance, conduct performance evaluations, and support the professional growth of team members
• Collaborate with cross-functional teams, including software development, quality assurance, and product management, to integrate security tooling into the development lifecycle
• Manage resource allocation, project planning, and budgeting for the Application Security Engineering team

MINIMUM QUALIFICATIONS

• 4+ years of experience managing & developing software engineering, SRE, DevOps, or similar teams
• 4+ years of hands-on technical experience as a software, security, or DevOps engineer prior to management
• Bachelor’s or Master’s degree in Computer Science, Information Security, a related discipline, or equivalent work experience
• Professional development experience using Rust, Python, Go, C/C++, Java, or similar (one or more)
• In-depth understanding of modern software engineering practices and secure software development best practices
• Working proficiency in verbal and written English (C1)
• Business level or Proficiency in Japanese (B2/C1)

NICE TO HAVES

• Experience with Scrum/Agile development methodologies
• Experience in using tools such as Git, GitHub Actions, Artifactory, Kubernetes, AWS
• In-depth understanding of security automation tools/processes

=========================================================================Important Points・All interviews will be arranged via Google Meet, unless otherwise stated.・The same job descriptions are available in both English and Japanese; therefore, we kindly ask that you apply to only one version.・We kindly request that you submit your resume in English, if possible. However, Japanese resumes are also acceptable. Please note that, depending on the English proficiency requirements of the role, we may request an English version of your resume later in the process.
WHAT WE OFFER・Competitive Salary - Based on experience・Work Hours - Flexible working time・Paid Holiday - 20 days per year (prorated)・Sick Leave - 6 days per year (prorated)・Holiday - Sat & Sun, Japanese National Holidays, and other days defined by our company・Japanese Social Insurance - Health Insurance, Pension, Workers’ Comp, and Unemployment Insurance, Long-term care insurance・Housing Allowance・Retirement Benefits・Rental Cars Support・In-house Training Program (software study/language study)
Our Commitment・We are an equal opportunity employer and value diversity.・Any information we receive from you will be used only in the hiring and onboarding process. Please see our privacy notice for more details.