Security Engineer - Vehicle Software

Woven Planet Group (Woven Planet) represents a carefully curated blend of expertise and resources dedicated to bringing the vision of “Mobility to Love, Safety to Live” to life. Through innovations and investments in automated driving, robotics, smart cities, and more, we are transforming how humankind lives, works, and moves. We exist to design, build, and deliver secure, connected, and sustainable mobility solutions that benefit all people worldwide. Founded in 2018 as Toyota Research Institute - Advanced Development (TRI-AD), Woven Planet is composed of four complementary companies: Woven Planet Holdings, Woven Core, Woven Alpha, and Woven Capital.

Visit us to learn more: https://www.woven-planet.global/

Modern cars are an IoT device running complex, safety-critical software. Yet, their architecture has remained fundamentally unchanged for decades.

What if we have an opportunity to redesign it with a software-first approach for all future Toyota cars and build an open software ecosystem with an abstraction layer so developers across the world can build software and services for autonomy, mobility, user experience and the connectivity of vehicles and physical infrastructure, with modern software tooling? 

The Woven Planet Holdings, Inc. Security team is looking for exceptional product security engineers who will work on the new vehicle architecture and the software ecosystem. You will be expected to analyze system architecture, operating systems, networks and applications from an application security perspective.

You will be expected to be skilled at discovering security issues and recommending solutions. You will participate in security audits, risk analysis, vulnerability testing and security reviews.

・Help ensure TRI-AD’s products are implemented to a high security standard.

・Assist development teams in architecting and securing the new vehicle systems and the software ecosystem platform

・Evaluate SoC vendor technologies and drive requirements on CPU, GPU, interconnect technologies

・Assist the evaluation of operating systems for embedded systems 

・Participate threat modeling and application security reviews 

・Audit embedded code to identify security vulnerabilities.

・Identify security issues and risks, and developing mitigation plans

・Developing security tools and infrastructure

・Provide expert support to product teams

・Provide security training and facilitate secure development practices across the organization

・Bachelor’s degree in Computer Science, Computer Engineering or related field, or +5 years relevant work experience

・+3 years of experience in application-level vulnerability testing and auditing or application security

・+2 years of application security experience

・Advanced knowledge in one or more of the following area:

　-security engineering

　-system and network security

　-authentication and security protocols

　-cryptography

　-application security

　-programming language (C/C++)

　-hardware security.

・Experience with secure architecture design.

・Extensive experience with the application of threat modeling and architecting secure systems

・Excellent written and verbal communication skills

・Vehicle penetration testing experience.

・Knowledge or experience of secure agile development practices advanced.

・Experience with automotive security (CAN, OTA, Autosar, SILS/HILS, RTOS, QNX, AGL etc.)

・Experience with embedded system security

・Understanding of vehicle security and functional safety standards

・Ability to communicate in Japanese is a plus

If you are currently located at outside of Japan, don't worry, we'll set an interview over Google Hangout Meet or Skype.

・Competitive Salary - Based on skills and experience

・Work Hours - Flexible working time with NO core-hours

・Paid Holiday - 20 days per year (prorated)

・Sick Leave - 6 days per year (prorated)

・Holiday - Sat & Sun, Japanese National Holidays, and other days defined by the company

・Japanese Social Security - all applicable (Health Insurance, Pension, Workers’ Comp, and Unemployment Insurance, Long-term care insurance)

・Employee Benefits

・In-house Training Program (software study/language study)

By submitting your application you agree to the following terms: