×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Senior Security Risk Technical Specialist

Job in Ann Arbor, Washtenaw County, Michigan, 48113, USA
Listing for: Woven
Full Time position
Listed on 2025-12-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Job Description & How to Apply Below

Senior Security Engineer, Risk & Vulnerabilities

Ann Arbor, MI / Technology Shared Services - Global Safety and Quality / Employee / hybrid

Woven by Toyota is enabling Toyota’s once-in-a-century transformation into a mobility company. Inspired by a legacy of innovating for the benefit of others, our mission is to challenge the current state of mobility through human‑centric innovation — expanding what “mobility” means and how it serves society.

Our work centers on four pillars: AD/ADAS, our autonomous driving and advanced driver assist technologies;
Arene, our software development platform for software‑defined vehicles;
Woven City, a test course for mobility; and Cloud & AI, the digital infrastructure powering our collaborative foundation. Business‑critical functions empower these teams to execute, and together, we’re working toward one bold goal: a world with zero accidents and enhanced well‑being for all.

TEAM

The security team at Woven by Toyota is on the cutting edge of many challenging security problems. We identify emerging security threats in autonomous vehicles and help design more secure systems. We work closely with internal platform teams to provide a secure development environment through tooling and automation, allowing developers to innovate quickly without compromising security.

WHO ARE WE LOOKING FOR?

We are looking for a Senior Security Risk Technical Specialist to lead information security risk management engagements such as technical risk assessments pertaining to Woven by Toyota's businesses and engineering work.

You will identify risks and vulnerabilities by working with diverse internal and external stakeholders of varied technical and business backgrounds. You will work with technical product teams on assessing any security risks and manage those risks through their lifecycle. You will be expected to work with both highly technical teams and senior management.

While this is a risk assurance position, given the cutting edge nature of projects that we work on (IoT, autonomous driving, vehicle OS), we are seeking a candidate with strong technical insight.

Woven by Toyota Security demands high standards, so a passion and discipline around security and delivery is critical. A high level of ownership and accountability is a must. In this role you will report to an engineering manager, in a hybrid capacity requiring your presence on-site three days per week.

RESPONSIBILITIES
  • Lead/perform risk assessment engagements for products (IoT, autonomous driving, AI etc), enterprise, and related information systems or processes.
  • Manage technical, process and human related information security risks and ensure compliance for information security policies and regulatory requirements by conducting technical, procedural and operational review of business processes and system controls.
  • Communicate and elevate risk issues to the appropriate level and department from frontline teams to senior management.
  • Evaluate technology and business‑related controls for integrating business and information system security and risk mitigation efforts for products and enterprise. Coordinate and validate business risk justification documents for internal and external governance programs.
  • Manage third‑party risk with both internal and external stakeholders.
MINIMUM QUALIFICATIONS
  • Bachelor or Master’s degree in Information Security and/or related field.
  • 6+ years experience in Information Security.
  • 3+ years technical security experience securing products incorporating emerging technologies like IoT, AI, Automotive operating systems.
  • 1+ year of experience within Information Risk Management, IT audit or Security Governance function.
  • 1+ year of experience with regulatory compliance and information security management frameworks (e.g., ISO
    27001/ISO
    27002, NIST CSF, CMMC).
  • Experience in highly regulated industries, ideally with retail product exposure and impact.
  • Technical expertise in the security field and experience with security architecture and ability to challenge risk assessments on the technical side.
  • Experience with multiple risk assessment methods including threat modeling (STRIDE, etc).
  • High level of independence and autonomy in…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search