Senior Corporate Infrastructure Security Engineer

ABOUT WOVEN PLANET GROUPWoven Planet Group (Woven Planet) represents a carefully curated blend of expertise and resources dedicated to bringing the vision of “Mobility to Love, Safety to Live” to life. Through innovations and investments in automated driving, robotics, smart cities, and more, we are transforming how humankind lives, works, and moves. We exist to design, build, and deliver secure, connected, and sustainable mobility solutions that benefit all people worldwide. Founded in 2018 as Toyota Research Institute - Advanced Development (TRI-AD), Woven Planet is composed of four complementary companies: Woven Planet Holdings, Woven Core, Woven Alpha, and Woven Capital.
Visit us to learn more: https://www.woven-planet.global/
TEAMThe security team at Woven Planet is on the cutting edge of many challenging security problems. We identify emerging security threats in autonomous vehicles and help design more secure systems. We work closely with internal platform teams to provide a secure development environment through tooling and automation, allowing developers to innovate quickly without compromising security.
WHO ARE WE LOOKING FOR?We are looking for a Senior Corporate Infrastructure Security Engineer with a strong background in network, endpoint, and identity security in a hybrid corporate infrastructure with distributed workforce to ensure that our services and platforms are designed and implemented to the highest standards. The scope of the role is broad; you will lead the secure design of new services and products, architectural security reviews, and building tools for security automation.  A successful candidate will have a good mix of deep technical knowledge and a demonstrated background in information security. We value broad and deep technical knowledge, specifically in endpoints, network, and identity systems.  If you do not meet all of the requirements but feel you have relevant experience that makes up for it, we'd still like to talk to you.

RESPONSIBILITIES

• Protect the corporate infrastructure, which comprises Windows (AD and Azure AD), MacOS, Linux, iOS and Android devices by identifying threats and designing security controls.
• Architect, design, support and deploy security-focused solutions for the corporate infrastructure to drive security operations excellence.
• Serve as mentor to other Security Engineers on the team
• Be a security focused counterpart for the Infrastructure IT team. 
• Write security standards for internal policies and controls
• Review IT architecture documents  and provide feedback for risk, security, and compliance concerns.
• Communicate effectively at multiple levels of sensitivity, and multiple audiences.
• Have fun!

MINIMUM QUALIFICATIONS

• 5+ years of relevant infrastructure security experience AND 3+ years of experience architecting/deploying/operating: endpoint and server management solutions. (e.g. Intune, Puppet, JAMF) OR software defined networks, firewalls OR cloud based identity management, sso, authentication and authorization systems
• Experience leading the delivery of complex security projects
• Experience with security architecture reviews and threat modeling
• Experience with hardening baselines and frameworks such as CIS, STIG, NIST, etc.
• Proficient in one or more scripting languages such as Powershell, Python, and Bash

PREFERRED QUALIFICATIONS

• Experience with Azure Active Directory
• Experience with Terraform
• Excellent understanding of Windows, Linux, iOS, MacOS and Android
• Experience with zero trust security model
• Endpoint zero touch deployment experience
• Knowledge of authentication/authorization protocols. (e.g. SAML, OIDC, OAuth2)