Cloud Security Engineer, Senior

Toyota North America•Plano, TX

About The Position

Overview Who we are Collaborative. Respectful. A place to dream and do. These are just a few words that describe what life is like at Toyota. As one of the world’s most admired brands, Toyota is growing and leading the future of mobility through innovative, high-quality solutions designed to enhance lives and delight those we serve. We’re looking for talented team members who want to Dream. Do. Grow. with us. An important part of the Toyota family is Toyota Financial Services (TFS), the finance and insurance brand for Toyota and Lexus in North America. While TFS is a separate business entity, it is an essential part of this world-changing company- delivering on Toyota's vision to move people beyond what's possible. At TFS, you will help create best-in-class customer experience in an innovative, collaborative environment. To save time applying, Toyota does not offer sponsorship of job applicants for employment-based visas or any other work authorization for this position currently. Who We’re Looking For As a Cloud Security Engineer, you’ll support the security of our cloud infrastructure by analyzing findings, assisting with remediation, and working closely with senior engineers and cross-functional teams. This hands-on role focuses on Cloud Security Posture Management (CSPM) and offers the opportunity to grow into a subject matter expert (SME) in cloud security tools like CSPM and SIEM.

Requirements

3-5 years of experience in cloud security, cybersecurity, or cloud operations.
Expertise with at least one major cloud provider (AWS preferred).
Basic understanding of cloud security concepts such as IAM, encryption, and network security.
Exposure to CSPM, SIEM, and other cloud-native security tools (e.g., Orca, CrowdStrike Falcon, AWS Guard Duty).
Ability to read and interpret security findings and logs.
Strong problem-solving skills and willingness to learn and grow.
Comfortable working in a collaborative, cross-functional environment.
Basic scripting knowledge (Python, Bash, etc.) is a plus.
Familiarity with security frameworks like CIS Benchmarks or NIST is a plus.

Nice To Haves

Hands-on experience with cloud security tools (e.g., Orca, CrowdStrike, Veracode, Xray).
Exposure to Infrastructure as Code (IaC) tools like Terraform or CloudFormation.
Certifications such as AWS Certified Cloud Practitioner, Security+, or equivalent.
Experience with container security (Docker, Kubernetes) is a plus.
Experience leveraging AI/ML tools to enhance cloud security operations (e.g., AI-assisted code review, automated threat analysis, intelligent alert triage)

Responsibilities

Assist in monitoring cloud environments (primarily AWS) using CSPM, SIEM, and other security tools.
Review and triage security findings, working with engineering and DevOps teams to remediate issues.
Support the development and fine-tuning of custom security policies and rulesets.
Help maintain and improve cloud security hygiene by addressing misconfigurations, enforcing baseline security controls, and supporting security best practices in the cloud
Analyze and document security findings, contributing to remediation efforts and process improvements.
Build and maintain compliance dashboards, automated reports, and executive-level posture summaries.
Contribute to internal knowledge bases and playbooks.
Stay current with cloud security trends, tools, and best practices.
Shadow and support senior engineers in threat modeling, risk assessments, and control implementation.
Manage and optimize Orca Security CSPM across AWS and Azure environments
Partner with Cloud Engineering to build and publish secure infrastructure modules (Terraform)