200+ applicants

Company

Original Job Post

Toyota North America · 2 days ago

Red Team/Purple Team Cybersecurity Lead

Plano, TX

Full-time

Onsite

Senior Level

5+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

Manufacturing

Comp. & Benefits

Insider Connection @Toyota North America

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Plan, coordinate, and execute red team exercises to identify vulnerabilities, control gaps, and potential attack vectors in Toyota's information systems.

Collaborate with external red team partners to ensure effective and comprehensive engagements.

Work closely with the blue team to conduct ongoing purple team exercises, sharing insights and knowledge to improve overall security posture.

Analyze and prioritize findings from red and purple team exercises, making data-driven recommendations to enhance the security of Toyota's systems.

Produce high-quality reports detailing the results of exercises, including vulnerabilities, risks, and proposed mitigations, and highlighting larger thematic improvement opportunities.

Provide guidance and support for the implementation of recommended security controls and improvements.

Stay current with emerging threats, trends, and best practices in the cybersecurity landscape to ensure that Toyota's defenses remain effective and up to date.

Foster a culture of continuous learning and improvement within the cybersecurity team.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

CybersecurityRed TeamPurple TeamPenetration TestingSecurity PrinciplesVulnerability AssessmentNetwork ProtocolsOperating SystemsExploitation TechniquesCobalt StrikeSliverTechnical CommunicationAnalyticalProblem-SolvingDecision-MakingCommunicationThreat DetectionIncident ResponseMitigating ControlsAttacker Evasion TechniquesActive DirectoryAzure Active DirectoryContainerization PlatformsDockerKubernetesCloud EnvironmentsAWSAzureGCPIndustry Standard Frameworks

Required

5+ years of experience in cybersecurity, with a focus on red team, purple team, or penetration testing activities.

Strong understanding of security principles, attack methodologies, and vulnerability assessment techniques.

Experience with common red team tooling platforms, such as Cobalt Strike, Sliver, etc.

Deep knowledge of common network protocols, operating systems, and security tools, and how to exploit/circumvent them.

Excellent analytical, problem-solving, and decision-making skills.

Strong written and verbal communication skills, with the ability to effectively convey technical information to both technical and non-technical stakeholders.

Bachelor’s degree in computer science or related discipline, or equivalent work experience.

Preferred

Experience with threat detection, incident response, and implementing or developing mitigating controls in a large environment.

Familiarity with attacker evasion techniques.

Exploitation experience with Active Directory / Azure Active Directory, containerization platforms (Docker, Kubernetes, etc.), and major cloud environments (AWS, Azure, GCP, etc.)

Knowledge of industry-standard frameworks and best practices (e.g., NIST, ISO, OWASP).

Master’s degree in computer science or related discipline.

Relevant certifications (e.g., OSCP, OSCE, CISSP) are highly desirable.