Cyber Security Management System Expert

🇯🇵 Japan - Remote
🔒 Cybersecurity🟣 Senior

Job description

About Woven by Toyota

Woven by Toyota is enabling Toyota’s once-in-a-century transformation into a mobility company. Inspired by a legacy of innovating for the benefit of others, our mission is to challenge the current state of mobility through human-centric innovation — expanding what “mobility” means and how it serves society.

Our work centers on four pillars: AD/ADAS, our autonomous driving and advanced driver assist technologies; Arene, our software development platform for software-defined vehicles; Woven City, a test course for mobility; and Cloud & AI, the digital infrastructure powering our collaborative foundation. Business-critical functions empower these teams to execute, and together, we’re working toward one bold goal: a world with zero accidents and enhanced well-being for all.

=========================================================================

TEAM

The Global Audit & Assessment (GAA) team, part of the Global Safety & Quality line of business, ensures the quality of software for safe mobility services across Woven by Toyota, Toyota Motor Corporation, and affiliates. Our mission is to deliver safe, secure, high-quality software, contributing to Toyota’s evolution as a software-driven carmaker.

The GAA team’s responsibilities include establishing engineering standards for mass-production software development, providing genba support to engineering teams (including hands-on training), delivering audits and assessments as a service, and governing post-development software quality in the market.

Join our team of professionals committed to advancing software safety and quality in the automotive industry. You will report directly to the Head of Global Audit & Assessment and work in a hybrid schedule with at least three days per week in the office.

You will report to the Head of the Global Audit and Assessment function and follow a hybrid schedule with 3+ days in the office.

WHO ARE WE LOOKING FOR?

As vehicles become more connected and digitized, ensuring cybersecurity becomes crucial for consumer protection. UN-R155 mandates that OEMs and suppliers establish and operate a mature Cyber Security Management System (CSMS). This system ensures both the security of their own products and the consideration of cybersecurity throughout the entire supply chain. We are looking for someone independent and driven to lead CSMS implementation at Woven and support the integration of CSMS into Woven company-level management system.

RESPONSIBILITIES

  • Define and establish the CSMS aligned with the CSMS (ISO/SAE 21434) of Toyota Motor Corporation and UN R155 requirements
  • Develop policies, processes, and governance structures for cybersecurity risk management across the product lifecycle
  • Support the integration of CSMS into Woven Engineering Standards and Woven Integrated Management System (comprising QMS, CSMS and SUMS)
  • Support the adoption of CSMS by product engineering teams for mass production development
  • Continuously check the adherence to CSMS by product engineering teams through regular audits and assessments
  • Develop, maintain, manage and own Woven CSMS program/roadmap. Ensure alignment and approval of both Woven and TMC management for Woven CSMS
  • Improve internal awareness of Woven CSMS through training and consultation support. Define and track KPIs.
  • Create engineering guidelines, templates, and checklists for cybersecurity activities (requirements, architecture, coding, verification)
  • Provide genba support (hands-on coaching) to engineering teams for secure design, coding, and testing practices
  • Ensure traceability of cybersecurity requirements from concept through deployment
  • Stay abreast of evolving cybersecurity regulations, industry standards, and best practices. Participate in TMC CSMS WorkGroup

MINIMUM QUALIFICATIONS

  • Bachelor’s degree (minimum) in Computer Science, Electrical/Electronics Engineering, Automotive Engineering, or a related technical field
  • Ability to define processes, guidelines, templates, and checklists for cybersecurity activities
  • Experience conducting internal audits, assessments, and readiness checks for CSMS certification
  • Tool familiarity: requirement management systems (JAMA, Polarion, Doors), vulnerability scanning, and security test frameworks
  • Experience supporting engineering teams (genba support), including TARA reviews, design reviews, secure coding, and testing practices
  • Excellent communication skills, with the ability to convey technical concepts to non-technical audiences
  • Knowledge of relevant industry standards & regulations (e.g. ISO/SAE 21434, UNR 155) and understanding of their impact on the automotive industry
  • Strong cross-cultural communication skills with Japanese language ability

NICE TO HAVES

  • Master’s degree  in Systems Engineering, Cybersecurity, or Automotive Systems
  • A working understanding in risk-driven cybersecurity methodologies
  • Participation in the space of automotive security such as attendance of Automotive Security conferences, published works or participation in working groups
  • Experience within the Toyota Group and an understanding of TMC CSMS
  • ASPICE for CS certification

=========================================================================

Important Points

・All interviews will be arranged via Google Meet, unless otherwise stated.

・The same job descriptions are available in both English and Japanese; therefore, we kindly ask that you apply to only one version.

・We kindly request that you submit your resume in English, if possible. However, Japanese resumes are also acceptable. Please note that, depending on the English proficiency requirements of the role, we may request an English version of your resume later in the process.

WHAT WE OFFER

・Competitive Salary - Based on experience

・Work Hours - Flexible working time

・Paid Holiday - 20 days per year (prorated)

・Sick Leave - 6 days per year (prorated)

・Holiday - Sat & Sun, Japanese National Holidays, and other days defined by our company

・Japanese Social Insurance - Health Insurance, Pension, Workers’ Comp, and Unemployment Insurance, Long-term care insurance

・Housing Allowance

・Retirement Benefits

・Rental Cars Support

・In-house Training Program (software study/language study)

Our Commitment

・We are an equal opportunity employer and value diversity.

・Any information we receive from you will be used only in the hiring and onboarding process. Please see our privacy notice for more details.

Share this job:
Please let Woven by Toyota know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

Latest Jobs at Woven by Toyota

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply