Engineering Manager, Application Security Consulting

Nihonbashi, Tokyo

Applications have closed

Woven Planet Holdings, Inc.

Woven by Toyota innovates and invests in new technologies, software, and business models that transform how we live, work, and move.

View company page

ABOUT WOVEN PLANET GROUPWoven Planet Group (Woven Planet) represents a carefully curated blend of expertise and resources dedicated to bringing the vision of “Mobility to Love, Safety to Live” to life. Through innovations and investments in automated driving, robotics, smart cities, and more, we are transforming how humankind lives, works, and moves. We exist to design, build, and deliver secure, connected, and sustainable mobility solutions that benefit all people worldwide. Founded in 2018 as Toyota Research Institute - Advanced Development (TRI-AD), Woven Planet is composed of four complementary companies: Woven Planet Holdings, Woven Core, Woven Alpha, and Woven Capital.
Visit us to learn more: https://www.woven-planet.global/
TEAMThe security team at Woven Planet is on the cutting edge of many challenging security problems. We identify emerging security threats in autonomous vehicles and help design more secure systems. We work closely with internal platform teams to provide a secure development environment through tooling and automation, allowing developers to innovate quickly without compromising security.  
WHO ARE WE LOOKING FOR?We are looking for an experienced security leader to join the Security team. As a security leader, you will manage a team of application security engineers and foster a strong team culture. You and your team will be responsible for conducting security reviews and threat modeling, assisting with cross-organizational security initiatives, partnering closely with our development teams to produce innovative and secure solutions, guiding external penetration testing coordination, and creating metrics to demonstrate your team’s performance.  We're looking for a leader that's highly passionate about secure software development, the potential of cloud computing, and building a high performing application security team. Ideally, you have a track record of delivering high quality technology products and services in a hyper-growth environment where priorities shift quickly. You should know how to prioritize, communicate clearly and compellingly, and understand how to drive a high level of focus and excellence with a strong team. Woven Planet Security demands high standards, so a passion and discipline around security and delivery is critical. A high level of ownership and accountability is a must.

RESPONSIBILITIES

  • Lead a team of talented engineers to develop and execute the application security architecture and program strategy; align and communicate roadmaps with stakeholders.
  • Oversee and improve secure development lifecycle processes, standards and guidelines.
  • Partner with engineering leaders across Woven Planet to help them securely design and develop applications by providing security consulting services, such as security design review, secure code review, and security testing.
  • Define and own metrics and key performance indicators to determine the effectiveness of the Application Security program.
  • Mentor and guide the professional and technical development of your team members. Help develop their careers, and assign them to projects tailored to their skill levels, personalities, work styles, and professional goals.
  • Build teams that are collaborative, inclusive, and respectful of each other.
  • Provide continuous feedback, address underperformance, and recognize the individual strengths and contributions of your team members.
  • Maintain a balance between building sustainable, high-impact projects and shipping things quickly.
  • Draft and successfully execute quarterly OKRs.

MINIMUM QUALIFICATIONS

  • 3+ years of experience leading, managing, and developing high performance teams
  • 5+ years of progressive experience within security architecture, consulting, and/or application security experience
  • BA/BS in computer science, information security, related discipline, or equivalent work experience
  • Working proficiency and communication skills in verbal and written English

PREFERRED QUALIFICATIONS

  • 7+ years of relevant, broad engineering experience in information security.
  • 3+ years of experience on an Application Security team, especially in providing high-quality threat models and auditing source code.
  • In-depth understanding of enterprise application security program, software engineering practices, and development/deployment process.
  • Strong demonstrated knowledge of AWS security services and infrastructure. AWS Certified Security is a plus.
  • In-depth understanding of security automation tools and processes
  • Proficient in the following infrastructure and devops technologies: Docker, Terraform, GitHub Actions, Kubernetes
  • Professional development experience using common programming languages, such as Go, Rust, Python, Ruby, C/C++, or Java.
  • Strong information security risk-based prioritization abilities
  • Hands-on knowledge of information security technologies such as security design review, threat modeling, risk analysis, and software testing techniques
  • MA/MS in computer science/related field
  • A strong bias for action with proven ability to handle high stress, time sensitive security tasks
  • Excellent written communication skills, with a focus on translating technically complex issues into simple, easy to understand concepts
  • Excellent attention to detail
  • Strong leadership skills, with demonstrated ability to lead via influence in cross-functional environments.
If you are currently located outside of Japan, don't worry, we'll set an interview over Google Hangout Meet or Skype.

Tags: Application security Audits Automation AWS C C++ Cloud Computer Science DevOps Docker GitHub Java Kubernetes Pentesting Python Risk analysis Ruby Rust Strategy Terraform

Region: Asia/Pacific
Country: Japan

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.