Senior Security Engineer, Risk & Vulnerabilities jobs in United States
cer-icon
Apply on Employer Site
company-logo

Woven by Toyota · 10 hours ago

Senior Security Engineer, Risk & Vulnerabilities

positionAnn Arbor, MI
timeFull-time
remoteHybrid
senioritySenior Level
date6+ years exp

Woven by Toyota is enabling Toyota’s transformation into a mobility company, focusing on human-centric innovation. They are seeking a Senior Security Risk Technical Specialist to lead information security risk management engagements, identify risks and vulnerabilities, and work closely with technical product teams to manage security risks.

AutomotiveAutonomous VehiclesSoftware
check
H1B Sponsor Likelynote

Responsibilities

Lead/perform risk assessment engagements for products (IoT, autonomous driving, AI etc), enterprise, and related information systems or processes
Manage technical, process and human related information security risks and ensure compliance for information security policies and regulatory requirements by conducting technical, procedural and operational review of business processes and system controls
Communicate and escalate risk issues to the appropriate level and department from frontline teams to senior management
Evaluate technology and business-related controls for integrating business and information system security and risk mitigation efforts for products and enterprise. Coordinate and validate business risk justification documents for internal and external governance programs
Manage third party risk with both internal and external stakeholders

Qualification

Information SecurityRisk ManagementTechnical SecurityRegulatory ComplianceSecurity ArchitectureThreat ModelingIT AuditingCISSP CertificationCISM CertificationCISA CertificationJapanese LanguageCommunication

Required

Bachelor or Masters degree in Information Security and/or related field
6+ years experience in Information Security
3+ years technical security experience securing products incorporating emerging technologies like IoT, AI, Automotive operating systems
1+ year of experience within Information Risk Management, IT audit or Security Governance function
1+ year of experience with regulatory compliance and information security management frameworks (e.g., ISO27001/ISO27002, NIST CSF, CMMC)
Experience in highly regulated industries, ideally with retail product exposure and impact
Technical expertise in the security field and experience with security architecture and ability to challenge risk assessments on the technical side
Experience with multiple risk assessment methods including threat modeling (STRIDE, etc)
High level of independence and autonomy in leading and performing engagements, including conducting interviews, with a complex set of corporate stakeholders
Experience in IT auditing and technical assessments of networks, operating systems, cloud environments, etc
Excellent written and verbal communication skills and ability to adapt communication to the audience skillset and level of responsibilities

Preferred

Japanese language proficiency
5+ years of technical security experience out of the required 6+ years of Information Security experience
3+ years of experience within Information Risk Management, IT audit or Security Governance function
3+ years of experience with regulatory compliance and information security management frameworks (e.g., ISO27001/ISO27002, NIST CSF, CMMC)
1+ year of development and coding experience ideally in IoT, AI, automotive OS
Experience with compliance especially security and privacy regulations
Experience building enterprise governance, risk, and compliance programs
Hands-on experience in configuring and working with GRC tools
Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Systems Auditor (CISA)

Benefits

Excellent health, wellness, dental and vision coverage
A rewarding 401k program
Flexible vacation policy
Family planning and care benefits

Company

Woven by Toyota

twittertwitter
company-logo
Woven by Toyota improve the vehicle intelligence software and operation and accelerate the Toyota Mobility Concept.
dateFounded in 2023
location
Tokyo, Tokyo, JPN
people-size1001-5000 employees
web-link
https://woven.toyota/en

H1B Sponsorship

Woven by Toyota has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (71)
2024 (34)
2023 (15)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
John Absmeier
Chief Technology Officer
linkedin
leader-logo
Edwin Han
Senior Partnerships Manager
linkedin

Recent News

Business Insider
I struggled to find a job after working at Microsoft, Meta, and Apple — until I embraced AI and looked beyond Big Tech
2025-12-01
Pulse 2.0
Union.ai: Interview With Co-Founder & CEO Ketan Umare About The AI Orchestration Company
2025-10-21
Pulse 2.0
Woven Capital: Toyota’s VC Arm Reveals $800 Million Fund II
2025-10-02
Company data provided by crunchbase