Toyota North America · 2 days ago
Red Team/Purple Team Cybersecurity Lead
Wonder how qualified you are to the job?
Manufacturing
Insider Connection @Toyota North America
Responsibilities
Plan, coordinate, and execute red team exercises to identify vulnerabilities, control gaps, and potential attack vectors in Toyota's information systems.
Collaborate with external red team partners to ensure effective and comprehensive engagements.
Work closely with the blue team to conduct ongoing purple team exercises, sharing insights and knowledge to improve overall security posture.
Analyze and prioritize findings from red and purple team exercises, making data-driven recommendations to enhance the security of Toyota's systems.
Produce high-quality reports detailing the results of exercises, including vulnerabilities, risks, and proposed mitigations, and highlighting larger thematic improvement opportunities.
Provide guidance and support for the implementation of recommended security controls and improvements.
Stay current with emerging threats, trends, and best practices in the cybersecurity landscape to ensure that Toyota's defenses remain effective and up to date.
Foster a culture of continuous learning and improvement within the cybersecurity team.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
5+ years of experience in cybersecurity, with a focus on red team, purple team, or penetration testing activities.
Strong understanding of security principles, attack methodologies, and vulnerability assessment techniques.
Experience with common red team tooling platforms, such as Cobalt Strike, Sliver, etc.
Deep knowledge of common network protocols, operating systems, and security tools, and how to exploit/circumvent them.
Excellent analytical, problem-solving, and decision-making skills.
Strong written and verbal communication skills, with the ability to effectively convey technical information to both technical and non-technical stakeholders.
Bachelor’s degree in computer science or related discipline, or equivalent work experience.
Preferred
Experience with threat detection, incident response, and implementing or developing mitigating controls in a large environment.
Familiarity with attacker evasion techniques.
Exploitation experience with Active Directory / Azure Active Directory, containerization platforms (Docker, Kubernetes, etc.), and major cloud environments (AWS, Azure, GCP, etc.)
Knowledge of industry-standard frameworks and best practices (e.g., NIST, ISO, OWASP).
Master’s degree in computer science or related discipline.
Relevant certifications (e.g., OSCP, OSCE, CISSP) are highly desirable.
Benefits
Professional growth and development programs
Tuition reimbursement
Vehicle purchase & lease programs
Comprehensive health care and wellness plans
Flexible work options
Toyota 401(k) Savings Plan
Paid holidays and paid time off
Referral services
Tax Advantaged Accounts
Company
Toyota North America
At Toyota, we’re known for making some of the highest quality vehicles on the road. But there is more to our story.
Funding
Current Stage
Late StageRecent News
2024-04-30
2024-04-07
Company data provided by crunchbase