Public Key Infrastructure Developer (PKI)

PKI Developer Responsibilities: Develop the PKI Program specific outline for the connected cars security program Provide technical program oversight specific to the PKI security domain to all components of connected cars Identify, research and propose concepts and architectural areas of need specific to the PKI domain Create, maintain and align the TMNA's Security policies and standards with industry best practices and business needs in the adoption PKI and data protection technologies. Represent Toyota on project teams and ensure adherence to existing security policies and standards and prepare for anticipated needs Development of technical security strategies related to PKI infrastructure Development of technical security architectures related to PKI infrastructure Development of technical security standards related to PKI infrastructure Development and Support o Automation of tasks related to cybersecurity such as correlations, alerting, analysis, and event review processes o Integration of various tools and datasets to enhance detective and preventive control sets o Codified security principles for cloud (X-as-a-Service) systems integrated directly into application designs and blueprints/formations o Data exchanges with internal and external security intelligence platforms o Unique, custom software solutions to achieve security goals when COTS or OSS solutions are not available or viable o Software development experience/expertise to compliment product security and application security initiatives o Systems analysis and software development efforts that align with agile-related approaches Requirements: This is a crucial requirement related to the development of the overall PKI approach, design, architecture and buildout of the PKI infrastructure adhering to the regional requirements and global standards. Creation of Cryptographic Services such as OCSP Responder, CRL Distribution Point, Enrollment for large number of clients etc. Experience in cryptographic library like OpenSSL Experience with compliance regulations/laws, security frameworks and standards (e.g., NIST, HIPAA, ISO, COBIT, OWASP, ITIL, etc.). Bachelor's degree or higher, in Computer Science, Engineering or related discipline, or equivalent professional experience Experience in software development and delivery services, security engineering or other technical risk management skills. Deep technical understanding of modern development platforms such as: CD/CI,Git/Gerrit, Dockers, OpenStack, AWS, Azure, or Google Cloud platforms Deep technical understanding with programming languages such as: C, C, Python, Ruby, .NET/PowerShell, Java/Javascript or other related languages. Experience with web service development using REST in a Cloud environment