Manager II - Cybersecurity Vulnerability Management Job at Toyota in Plano
Toyota, Plano, TX, United States, 75086
Overview Who we are Collaborative. Respectful. A place to dream and do. These are just a few words that describe what life is like at Toyota. As one of the world’s most admired brands, Toyota is growing and leading the future of mobility through innovative, high-quality solutions designed to enhance lives and delight those we serve. We’re looking for diverse, talented team members who want to Dream. Do. Grow. with us. This position is based in Plano, TX, with a hybrid mix of some in-office time and some remote work. To save time applying, Toyota does not offer sponsorship of job applicants for employment-based visas or any other work authorization for this position currently. Toyota's Cybersecurity & Risk Management (CSRM) group objective is to become a global cybersecurity leader in the mobility space - with the talent, scale, and services to enable our mission of securely bringing mobility for all. We hope you will join us in this time of transformation and be a part of defining the next-generation cybersecurity capabilities for one of the largest global companies in the world. #Cyber Who we're looking for Toyota’s CSRM group is looking for team members who are passionate about technology and interested in joining a collaborative and highly motivated team as a Manager, II Cybersecurity Vulnerability Management. Reporting to the Deputy CISO, the primary responsibility of this role is to lead a dedicated team of cybersecurity professionals focused on ensuring that vulnerabilities in our environment are quickly identified, triaged, tracked, and appropriately remediated. This role involves working with cross-functional, global stakeholders to drive remediation and systemic hygiene improvements, managing and developing your team and their service delivery, and ensuring that our coordinated disclosure / bug bounty practices uphold Toyota’s reputation as a partner to the information security community. What You’ll Be Doing Maturing and advancing a vulnerability management program and strategy that aligns with the evolving threat trends in the industry and organization. Managing and leading a team of cybersecurity professionals, fostering a collaborative and innovative work environment. Assessing, validating, and triaging vulnerabilities, working closely with asset owners to ensure timely remediation or approved exception tracking. Maintaining vulnerability scanning infrastructure and configurations as well as evaluating and recommending new products and solutions ensuring the most up-to-date and accurate vulnerability detection and assessment. Managing and overseeing the coordinated disclosure / bug bounty program and working closely with external security researchers and internal stakeholders to address reported vulnerabilities and to uphold Toyota’s reputation as a cybersecurity leader and a partner to the information security community. Tracking and following up on findings with asset owners to ensure that vulnerabilities are remediated or receive proper tracking and approved exceptions. Providing regular reports and updates to senior management on the status of the vulnerability management program, including progress on remediation efforts and any critical vulnerabilities requiring immediate attention. What You Bring Strong leadership, communication, and organizational skills, with the ability to effectively manage and develop a team and collaborate with cross-functional stakeholders. 8+ years of experience in IT, Cybersecurity, Risk / Vulnerability Analysis or Management, or related fields, with at least 2 years in a leadership role. Strong knowledge of vulnerability management processes, tools, best practices, and vulnerability validation and triaging. Bachelor’s degree in Computer Science or related discipline, or equivalent work experience Added Bonus If You Have Experience with industry-standard enterprise vulnerability scanning offerings, such as Qualys, Tenable, or RiskIQ and Attack Surface Management platforms. Vulnerability Management experience within containerization platforms (Docker, Kubernetes, etc.) and major cloud environments (AWS, Azure, GCP, etc.) Familiarity with security frameworks and standards, such as NIST, ISO 27001, OWASP Top 10, or CIS Critical Security Controls. Master's degree in Computer Science or related discipline Relevant certifications, such as CISSP, CISM, or OSCP, are highly desirable. What we’ll bring During your interview process, our team can fill you in on all the details of our industry-leading benefits and career development opportunities. A few highlights include: A work environment built on teamwork, flexibility and respect Professional growth and development programs to help advance your career, as well as tuition reimbursement Team Member Vehicle Purchase Discount Toyota Team Member Lease Vehicle Program (if applicable) Comprehensive health care and wellness plans for your entire family Flextime and virtual work options (if applicable) Toyota 401(k) Savings Plan featuring a company match, as well as an annual retirement contribution from Toyota regardless of whether you contribute Paid holidays and paid time off Referral services related to prenatal services, adoption, child care, schools and more Tax Advantaged Accounts (Health Savings Account, Health Care FSA, Dependent Care FSA) #Cyber Belonging at Toyota Our success begins and ends with our people. We embrace diverse perspectives and value unique human experiences. Respect for all is our North Star. Toyota is proud to have 10+ different Business Partnering Groups across 100 different North American chapter locations that support team members’ efforts to dream, do and grow without questioning that they belong. As a company that has been one of DiversityInc’s Top 50 Companies for Diversity and a member of The Billion Dollar Roundtable supporting minority and woman-owned suppliers for over 10 years, we are proud to be an equal opportunity employer that celebrates the diversity of the communities where we live and do business. Applicants for our positions are considered without regard to race, ethnicity, national origin, sex, sexual orientation, gender identity or expression, age, disability, religion, military or veteran status, or any other characteristics protected by law. Have a question, need assistance with your application or do you require any special accommodations? Please send an email to talent.acquisition@toyota.com.