Software Engineer, Application Security Engineering

Woven by Toyota is the mobility technology subsidiary of Toyota Motor Corporation. Our mission is to deliver safe, intelligent, human-centered mobility for all. Through our Arene mobility software platform, safety-first automated driving technology and Toyota Woven City — our test course for advanced mobility — we’re bringing greater freedom, safety and happiness to people and society. 
Our unique global culture weaves modern Silicon Valley innovation and time-tested Japanese quality craftsmanship. We leverage these complementary strengths to amplify the capabilities of drivers, foster happiness, and elevate well-being.
TEAMThe Application Security team at Woven by Toyota tackles some of the industry's most challenging security problems. We identify new security threats across all company projects and help design more robust, secure systems. We work with internal platform teams to provide a secure development environment through tooling and automation, allowing developers to iterate quickly without compromising security. Furthermore, we partner with Toyota Motor Corporation to modernize and standardize security tooling across the entire Toyota Group, enhancing the overall security posture of the organization.
WHO ARE WE LOOKING FORWe are looking for engineers who are passionate about architecting well-designed tools to improve the effectiveness of Woven by Toyota’s cybersecurity program, scale up the security team’s capabilities, and help engineering teams secure their products. Examples include creating an automated DevSecOps CI/CD pipeline, automating incident response processes, and implementing re-usable security automation frameworks. This role is hybrid, requiring your presence onsite three days per week where you will report to an engineering manager.

RESPONSIBILITIES:

• Build and maintain a variety of software and tools that Woven by Toyota uses to improve our security posture.
• Lead the design, engineering and maintenance efforts of custom automation and tools.
• Collaborate with other security and engineering teams to identify repetitive tasks that can be automated.
• Identify security risks, define requirements, and build and extend systems to help reduce and track these risks.
• Participate in code reviews, providing and receiving constructive feedback to continually improve coding skills and follow best practices. 
• Work with teammates to share knowledge and ensure the implementation of security measures.

MINIMUM QUALIFICATIONS:

• 3+ years of development experience in languages like C/C++, Go, Rust, Python, Ruby, JavaScript, or Java
• Strong troubleshooting and debugging skills
• Expertise in writing clean, well-tested, and maintainable code.
• Experience writing unit and integration tests along with clear documentation.
• Advanced English language skills (verbal and written)

NICE TO HAVES:

• Experience with cloud platforms (AWS, GCP, Azure)
• CI/CD pipeline implementation
• Expertise in security solutions across data, application, cryptography, systems, and networks
• Ability to write secure, scalable code
• Knowledge of security automation and DevOps practices
• Proficiency in infrastructure-as-code (e.g., Terraform, Jenkins, etc.)
• Business-level Japanese proficiency

If you are located outside of Japan we will set up an interview over Google Hangout Meet.
WHAT WE OFFER・Competitive Salary - Based on experience・Work Hours - Flexible working time with NO core-hours・Paid Holiday - 20 days per year (prorated)・Sick Leave - 6 days per year (prorated)・Holiday - Sat & Sun, Japanese National Holidays, and other days defined by our company・Japanese Social Security - all applicable (Health Insurance, Pension, Workers’ Comp, and Unemployment Insurance, Long-term care insurance)・In-house Training Program (software study/language study)
By submitting your application you agree to the following terms: https://woven.toyota/en/applicant-privacy-notice
Our Commitment・We are an equal opportunity employer and value diversity.・We pledge that any information we receive from you will be used ONLY for the purpose of hiring assessment.