Security Operations Technical Lead - US/UK

Woven by Toyota is enabling Toyota’s once-in-a-century transformation into a mobility company. Inspired by a legacy of innovating for the benefit of others, our mission is to challenge the current state of mobility through human-centric innovation — expanding what “mobility” means and how it serves society.

Our work centers on four pillars: AD/ADAS, our autonomous driving and advanced driver assist technologies; Arene, our software development platform for software-defined vehicles; Woven City, a test course for mobility; and Cloud & AI, the digital infrastructure powering our collaborative foundation. Business-critical functions empower these teams to execute, and together, we’re working toward one bold goal: a world with zero accidents and enhanced well-being for all.

Team

The security team at Woven by Toyota is on the cutting edge of many challenging security problems. We identify emerging security threats in autonomous vehicles and help design more secure systems. We work closely with internal platform teams to provide a secure development environment through tooling and automation, allowing developers to innovate quickly without compromising security.

WHO ARE WE LOOKING FOR?

We are seeking an exceptional leader with a passion for security operations to lead the expansion of our Security Operations Center into the UK and US region. The team is responsible for triage, and response to security alerts and incidents. The lead will work with partners across the organization to build detection and response capabilities that support a sustainable and scalable incident lifecycle, and will collaborate with partner SOCs in the Japan region to provide 24/7 defensive operations to the Woven by Toyota enterprise.This is the front-line team that responds to security threats and malicious activity in all of Woven by Toyota’s environments. You should know how to prioritize, communicate clearly and compellingly, and understand how to drive a high level of focus and excellence with a strong team. Woven by Toyota Security demands high standards, so a passion for and discipline around security and delivery is critical. A high level of ownership and accountability is a must.

Responsibilities

• Act as a technical lead for a regional security operations team responsible for intrusion detection and incident response.
• Respond to security incidents, conduct forensics and technical investigations.
• Inspire, grow, and develop talent while providing vision, setting team direction, and leading effectively through outcomes rather than tasks.
• Help define and execute a strategy for detection, investigation, and incident response.
• Drive changes to increase enterprise visibility and defensibility.
• Lead security operation engineers to handle security operation tasks.
• Work closely with cross-functional stakeholders to automate manual toil.
• Measure and report on operational metrics, objectives, and key performance indicators to assure the team achieves operational excellence.
• Solve problems in unique ways with an automation-first mindset.
• Leverage new and existing tools to resolve long-standing challenges in ways that do not generate additional work for teams at Woven by Toyota

Minimum Qualifications

• 1+ years of experience of technical leadership, or managing & developing high-performance teams.
• 5+ years of hands-on technical experience as a security professional
• Hands-on experience with AWS, Azure, GCP
• Ability to triage, investigate and respond to security alerts and conduct technical investigations of security incidents to identify root causes
• Excellent written communication skills, with a focus on translating technically complex issues into simple, easy to understand concepts in English.

Prefered Qualifications

• 3+ years of experience in technical leadership & developing high-performance teams.
• Experience in leading SOC improvement projects.
• Experience with large-scale SIEM, SOAR, EDR and other major security deployments.
• Experience in managing Extended Detection and Response tools such as Microsoft 365 Defender, CrowdStrike, etc.
• Hands-on experience with a major forensics toolkit (Valociraptor, Encase, FTK, etc).
• Experience with operating under various privacy frameworks (CCPA, GDPR, etc).
• Significant experience with detection engineering, incident response, and threat intelligence.

For positions based in Palo Alto, CA, the base pay for this position ranges from $140,000- $230,000 a year.

Your base salary is one part of your total compensation. We offer a base salary, short term and long term incentives, and a comprehensive benefits package. The total compensation offered to an employee will be dependent upon the individual's skills, experience, qualifications, location, and level.

What We Offer

We are committed to creating a modern work environment that supports our employees and their loved ones. We offer many options of the best programs to allow you to do your most meaningful work and to help you shape the future of mobility.

・Excellent health, wellness, dental and vision coverage

・A rewarding 401k program

・Flexible vacation policy

・Family planning and care benefits

Our Commitment

・We are an equal opportunity employer and value diversity.

・Any information we receive from you will be used only in the hiring and onboarding process. Please see our privacy notice for more details.