Privileged Access Management; PAM Engineer

Overview

Toyota Financial Services (TFS) is part of Toyota, focusing on innovative, high-quality finance and insurance solutions. TFS is a separate business entity that supports Toyota’s vision to move people beyond what is possible. The Privileged Access Management (PAM) Engineer role helps create a best‑in‑class customer experience in an innovative, collaborative environment.

A highly skilled and motivated PAM Engineer to join our Information Security Department. This role is pivotal in delivering identity security solutions that enhance the security posture of Toyota Financial Services and its partners. The position is based at our Plano, TX headquarters and follows a hybrid work model. Candidates should reside within a commutable distance to Plano, TX.
Note: Toyota does not offer sponsorship of job applicants for employment‑based visas or other work authorizations for this position at this time.

• Develop and implement secure Privileged Access Management (PAM) solutions, including enhancements, upgrades, and optimizations to meet evolving business and security needs.
• Collaborate with cross‑functional teams (Operations, Governance, Incident Response) to design, implement, and support end‑to‑end identity solutions.
• Work with the Governance team to ensure all IAM solutions meet risk, security, and compliance requirements, particularly in financial services.
• Contribute to the creation and execution of multi‑year IAM roadmaps alongside Product Owners, aligning with Toyota’s broader security objectives.
• Actively participate in Sprint planning and Agile ceremonies, ensuring IAM deliverables are timely, aligned with business needs, and follow industry best practices.
• Provide advanced technical support during security incidents involving IAM or identity‑related breaches, leading rapid response efforts when necessary.
• Develop a strong understanding of business processes and objectives, identifying and recommending PAM and Identity solutions that bridge gaps between current and desired security capabilities.
• Stay up to date with industry trends, product updates, and emerging IAM technologies, and proactively recommend solutions to drive continuous security improvements.

• 1 year of hands‑on configuration or development experience with PAM platforms such as Centrify, Delinea, or Cyber Ark.
• Familiarity with IAM concepts, Active Directory, Power Shell scripting, account provisioning, and access governance concepts.
• Understanding of IAM system architecture or systems design principles.
• Experience ensuring IAM solutions comply with industry standards such as SOX, FIDIC, PCI‑DSS, and other regulatory frameworks, especially in financial services.
• Proven track record working in Agile development environments using tools like Jira and Confluence, with experience leading or contributing to Sprint planning and ceremonies.
• Demonstrated ability to identify security gaps, propose innovative solutions, and implement them in a fast‑paced, evolving environment.
• College degree in Computer Science, Information Security, or a related field (bonus).
• PAM vendor certifications, ISC2 certifications (CISSP, CCSP, CISM, CISA), or equivalent.
• Experience with SailPoint.
• Experience with OKTA.

• A work environment built on teamwork, flexibility, and respect.
• Professional growth and development programs, including tuition reimbursement.
• Team Member Vehicle Purchase Discount.
• Toyota Team Member Lease Vehicle Program (if applicable).
• Comprehensive health care and wellness plans for the entire family.
• 401(k) Savings Plan with company match and annual retirement contribution from Toyota regardless of employee contribution.
• Paid holidays and paid time off.
• Referral services related to prenatal care, adoption, childcare, schools, and more.
• Tax‑advantaged accounts:
  Health Savings Account, Health Care Flexible Spending Account, Dependent Care Flexible Spending Account.

• Applicants for our positions are considered without regard to race, ethnicity, national origin, sex, sexual orientation, gender identity or expression, age, disability, religion, military or veteran status, or any other characteristics protected by law.