Principal Engineer - Active Directory

Overview

Who we are

To save time applying, Toyota does not offer sponsorship of job applicants for employment-based visas or any other work authorization for this position at this time.

Toyota's Cybersecurity & Risk Management (CSRM) group objective is to become a global cybersecurity leader in the mobility space - with the talent, scale, and services to enable our mission of securely bringing mobility for all.

We hope you will join us in this time of transformation and be a part of defining the next-generation cybersecurity capabilities for one of the largest global companies in the world.

#Cyber

Who we’re looking for 

Toyota is looking for team members who are passionate about technology and interested in joining a collaborative and highly motivated team as a  Principal Engineer II - Active Directory. 

The primary responsibility of this role is to architect, implement, and manage our Active Directory (AD) and Privileged Access Management Solutions. This role involves maintaining the integrity, security, and performance of AD systems, as well as supporting related technologies such as Corporate Certificate Authority (PKI), Microsoft Identity Manager, EntraID, Group Policy and CyberArk Core Privileged Access Security.  Reporting to the Senior Manager, the person in this role will join the Core Cybersecurity team to deploy and maintain advanced, enterprise-wide security solutions.

What you’ll be doing

• Develop and Implement Solutions: Deliver high-quality, secure Active Directory, Corporate Certificate Authority, Microsoft Identity Manager and CyberArk Core PAS, including enhancements, upgrades, and optimizations to meet evolving business and security needs.

• Technical Leadership: Collaborate with cross-functional teams (Operations, Governance, Incident Response) to design, implement, and support end-to-end identity solutions.

• Security and Compliance: Work with the Governance team to ensure all AD and PAM solutions meet the organization’s risk, security, and compliance requirements.

• Roadmap and Strategy Development: Contribute to the creation and execution of multi-year AD roadmaps alongside Product Owners, aligning with Toyota’s broader security objectives.

• Agile Collaboration: Actively participate in Sprint planning and Agile ceremonies, working with teams to ensure delivery is timely, aligned with business needs, and following the industry’s best practices.

• Incident Response Support: Provide advanced technical support during security incidents involving AD or identity-related breaches, leading rapid response efforts where necessary.

• Business Engagement: Develop a strong understanding of our business processes and objectives, identifying and recommending Active Directory, PAM & Identity solutions that bridge gaps between current and desired security capabilities.

• Continuous Improvement: Stay up to date with the latest industry trends, Product updates, and emerging IAM technologies. Proactively evaluate and recommend solutions to drive continuous security improvements.

What you bring

• Technical Expertise:

  • 10+ years of hands-on experience in managing and supporting Active Directory and engineering in a Windows server environment.

  • 5+ years of experience in Privileged Access Management platforms such as CyberArk Core PAS, Centrify etc,

  • 5+ years of experience with an IAM Cyber Security domain or equivalent (Infrastructure or consulting) and in EntraID, Microsoft Identity Manager.

• Proficiency with Power shell scripting, Automation of AD tasks, Account provisioning, and access governance concepts and IAM System Architecture.

• Security and Compliance Knowledge: Experience Ensuring AD solutions are compliant with industry standards, such as SOX and other regulatory frameworks.

• Agile Methodologies: Proven track record of working in Agile development environments using tools like Jira and Confluence, with experience leading or contributing to Sprint planning and ceremonies.

• Problem Solving and Innovation: Demonstrated ability to identify security gaps, propose innovative solutions, and implement them in a fast-paced, evolving environment.

• Bachelor’s Degree (or higher) in Computer Science, Business Administration, Management Information Systems or related discipline, or equivalent professional work experience

Added bonus if you have

• Certifications such as Microsoft Certified: Identity and Access Administrator Associate, Microsoft Certified Solutions Expert (MCSE), PAM Vendor certifications or similar.

• Experience with hybrid cloud environments and integrating on-premises AD with cloud services.

• Familiarity with Identity and Access Management (IAM) frameworks and solutions.

• Experience within the Manufacturing Services industry.

What we’ll bring

During your interview process, our team can fill you in on all the details of our industry-leading benefits and career development opportunities. A few highlights include:

• A work environment built on teamwork, flexibility and respect

• Professional growth and development programs to help advance your career, as well as tuition

• reimbursement

• Team Member Vehicle Purchase Discount

• Toyota Team Member Lease Vehicle Program (if applicable)

• Comprehensive health care and wellness plans for your entire family

• Toyota 401(k) Savings Plan featuring a company match, as well as an annual retirement contribution from Toyota regardless of whether you contribute

• Paid holidays and paid time off

• Referral services related to prenatal services, adoption, childcare, schools and more

• Tax Advantaged Accounts (Health Savings Account, Health Care FSA, Dependent Care FSA)

• Relocation assistance (if applicable)

Belonging at Toyota

Our success begins and ends with our people. We embrace all perspectives and value unique human experiences. Respect for all is our North Star. Toyota is proud to have 10+ different Business Partnering Groups across 100 different North American chapter locations that support team members’ efforts to dream, do and grow without questioning that they belong.

Applicants for our positions are considered without regard to race, ethnicity, national origin, sex, sexual orientation, gender identity or expression, age, disability, religion, military or veteran status, or any other characteristics protected by law.

Have a question, need assistance with your application or do you require any special accommodations? Please send an email to talent.acquisition@toyota.com.