Overview

Who we are

This position is based in Plano, TX.

Toyota encourages all employees to live within a reasonable commuting distance of their assigned work location. Hybrid work from outside of the assigned work location may be permitted in a pre-approved list of states (AZ, CA, CO, GA, IL, IN, KY, MA, MI, MO, NJ, NY, OH, OR, TN, TX, VA, WV) with certain stipulations.

Speak with your recruiter and hiring manager to learn more about our hybrid work program.

To save time applying, Toyota does not offer sponsorship of job applicants for employment-based visas or any other work authorization for this position currently.

Who we're looking for

Toyota’s Cybersecurity Protection Department is looking for a passionate and highly motivated Red Team/Purple Team Cybersecurity Engineer.

The primary responsibility of this role is to organize and conduct goal-based red team exercises, coordinate external red team engagements, collaborate with the blue team to conduct ongoing purple team exercises based on evolving threats and identify control gaps, and produce high-quality, actionable reporting and recommendations on those activities.

The person in this role will support the Cyber Protections department's objective to deploy and maintain advanced, enterprise-wide security solutions.

What you'll be doing

Toyota is a global leader in the automobile industry, committed to creating innovative and sustainable transportation solutions. Our cutting-edge technology and dedication to quality and customer satisfaction have made us a trusted name in the automotive world. We are seeking an experienced and highly skilled Red Team / Purple Team Cybersecurity Engineer to join our cybersecurity team and ensure the security of our digital infrastructure.

As an engineer for our Red / Purple team, you will be responsible for organizing and conducting goal-based red team exercises, coordinating external red team engagements, collaborating with the blue team to conduct ongoing purple team exercises based on evolving threats and identified control gaps, and producing high-quality, actionable reporting and recommendations on those activities.

• Plan, coordinate, and execute red team exercises to identify vulnerabilities, control gaps, and potential attack vectors in Toyota's information systems.
• Collaborate with external red team partners to ensure effective and comprehensive engagements.
• Work closely with the blue team to conduct ongoing purple team exercises, sharing insights and knowledge to improve overall security posture.
• Analyze and prioritize findings from red and purple team exercises, making data-driven recommendations to enhance the security of Toyota's systems.
• Produce high-quality reports detailing the results of exercises, including vulnerabilities, risks, and proposed mitigations, and highlighting larger thematic improvement opportunities.
• Provide guidance and support for the implementation of recommended security controls and improvements.
• Stay current with emerging threats, trends, and best practices in the cybersecurity landscape to ensure that Toyota's defenses remain effective and up to date.
• Foster a culture of continuous learning and improvement within the cybersecurity team.

What you bring

• 5+ years of experience in cybersecurity, with a focus on red team, purple team, or penetration testing activities.
• Strong understanding of security principles, attack methodologies, and vulnerability assessment techniques.
• Experience with common red team tooling platforms, such as Cobalt Strike, Sliver, etc.
• Deep knowledge of common network protocols, operating systems, and security tools, and how to exploit/circumvent them.
• Excellent analytical, problem-solving, and decision-making skills.
• Strong written and verbal communication skills, with the ability to effectively convey technical information to both technical and non-technical stakeholders.
• Bachelor’s degree in computer science or related discipline, or equivalent work experience.

Added bonus if you have

• Experience with threat detection, incident response, and implementing or developing mitigating controls in a large environment.
• Familiarity with attacker evasion techniques.
• Exploitation experience with Active Directory / Azure Active Directory, containerization platforms (Docker, Kubernetes, etc.), and major cloud environments (AWS, Azure, GCP, etc.)
• Knowledge of industry-standard frameworks and best practices (e.g., NIST, ISO, OWASP).
• Master’s degree in computer science or related discipline.
• Relevant certifications (e.g., OSCP, OSCE, CISSP) are highly desirable.

What we’ll bring

During your interview process, our team can fill you in on all the details of our industry-leading benefits and career development opportunities. A few highlights include:

• A work environment built on teamwork, flexibility, and respect.
• Professional growth and development programs to help advance your career, as well as tuition reimbursement.
• Vehicle purchase & lease programs.
• Comprehensive health care and wellness plans for your entire family.
• Flexible work options based on business needs.
• Toyota 401(k) Savings Plan featuring a company match, as well as an annual retirement contribution from Toyota regardless of whether you contribute.
• Paid holidays and paid time off.
• Referral services related to prenatal services, adoption, childcare, schools and more.
• Tax Advantaged Accounts (Health Savings Account, Health Care FSA, Dependent Care FSA).
• Relocation assistance (if applicable).

Belonging at Toyota

Our success begins and ends with our people. We embrace diverse perspectives and value unique human experiences. Respect for all is our North Star. Toyota is proud to have 10+ different Business Partnering Groups across 100 different North American chapter locations that support team members’ efforts to dream, do and grow without questioning that they belong. As a company that has been one of DiversityInc’s Top 50 Companies for Diversity and a member of The Billion Dollar Roundtable supporting minority and woman-owned suppliers for over 10 years, we are proud to be an equal opportunity employer that celebrates the diversity of the communities where we live and do business.

Applicants for our positions are considered without regard to race, ethnicity, national origin, sex, sexual orientation, gender identity or expression, age, disability, religion, military or veteran status, or any other characteristics protected by law.

Have a question or need assistance with your application? Check out the How to Apply section of our careers page on Toyota.com or send an email to talent.acquisition@toyota.com.