Sr. Cybersecurity Engineer

Rivian is on a mission to keep the world adventurous forever. This goes for the emissions-free Electric Adventure Vehicles we build, and the curious, courageous souls we seek to attract.

As a company, we constantly challenge what's possible, never simply accepting what has always been done. We reframe old problems, seek new solutions and operate comfortably in areas that are unknown. Our backgrounds are diverse, but our team shares a love of the outdoors and a desire to protect it for future generations.

We are seeking an Incident Commander to lead our response capabilities through a code-first lens. You are dedicated to minimizing impact and downtime by deploying automation and ensuring total observability across our environment. You will serve as an Incident Commander during critical Cybersecurity incidents, simultaneously building the integrations and tools that scale our ability to detect, respond, and recover. This role will be a hybrid opportunity in Atlanta, GA and will report to our Sr. Manager Cybersecurity.

• Incident Command & Crisis Management: Act as the primary Incident Commander for critical cybersecurity events. You will drive technical bridges, manage cross-functional resources, and ensure clear communication streams to minimize business downtime.

• Engineering Resilience: Pivot from reactive "fire-fighting" to proactive "fire-proofing." operationalize "Security as Code" by developing automation scripts and SOAR workflows to handle repetitive threats.

• Observability & Detection: Enhance our threat detection capabilities by treating logs as data pipelines. Work with engineering teams to ensure our monitoring tools provide high-fidelity signals, not just noise.

• Blameless Post-Mortems: Lead comprehensive After-Action Reviews (AARs) with a focus on root cause analysis. Translate findings into architectural improvements rather than policy patches.

• Tooling & Integration: Bridge the gap between Security and DevOps. Build and refine integrations between our security stack (SIEM, EDR) and infrastructure tools (CI/CD, Cloud providers) to streamline response capabilities.

• On-Call Rotation: Participate in a structured on-call rotation to provide critical command coverage outside of standard business hours, ensuring 24/7 operational continuity and rapid remediation.

• 5+ years of experience in product security, application security, or security architecture.

• Command Presence: Proven ability to manage complex, high-stress incidents with clarity and authority. You can translate technical crises into business language for executive stakeholders.

• Hybrid Background: Experience in Incident Response is critical, but we highly value candidates coming from DevOps, SRE, or Infrastructure Engineering backgrounds who want to apply their skills to Security.

• Automation First Mindset: Proficiency in scripting (Python, Go, or PowerShell) and familiarity with automation platforms.

• Cloud Fluency: Deep understanding of cloud-native infrastructure (AWS/GCP/Azure) and how to respond to incidents within containerized (Kubernetes/Docker) environments.

• Frameworks: Deep understanding of incident handling lifecycles (NIST 800-61) and attacker TTPs (MITRE ATT&CK).

Salary Range: USD - $136,700 - $170,900 (actual compensation will be determined based on experience, location, and other factors permitted by law).

Benefits Summary: Rivian provides robust medical/Rx, dental and vision insurance packages for full-time and part-time employees, their spouse or domestic partner, and children up to age 26. Full Time Employee coverage is effective on the first day of employment. Part-Time employee coverage is effective the first of the month following 90 days of employment.

Rivian is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender, gender expression, gender identity, genetic information or characteristics, physical or mental disability, marital/domestic partner status, age, military/veteran status, medical condition, or any other characteristic protected by law.

Rivian is committed to ensuring that our hiring process is accessible for persons with disabilities. If you have a disability or limitation, such as those covered by the Americans with Disabilities Act, that requires accommodations to assist you in the search and application process, please email us at candidateaccommodations@rivian.com.

Rivian may collect, use and disclose your personal information or personal data (within the meaning of the applicable data protection laws) when you apply for employment and/or participate in our recruitment processes ("Candidate Personal Data"). This data includes contact, demographic, communications, educational, professional, employment, social media/website, network/device, recruiting system usage/interaction, security and preference information. Rivian may use your Candidate Personal Data for the purposes of (i) tracking interactions with our recruiting system; (ii) carrying out, analyzing and improving our application and recruitment process, including assessing you and your application and conducting employment, background and reference checks; (iii) establishing an employment relationship or entering into an employment contract with you; (iv) complying with our legal, regulatory and corporate governance obligations; (v) recordkeeping; (vi) ensuring network and information security and preventing fraud; and (vii) as otherwise required or permitted by applicable law.

Rivian may share your Candidate Personal Data with (i) internal personnel who have a need to know such information in order to perform their duties, including individuals on our People Team, Finance, Legal, and the team(s) with the position(s) for which you are applying; (ii) Rivian affiliates; and (iii) Rivian's service providers, including providers of background checks, staffing services, and cloud services.

Rivian may transfer or store internationally your Candidate Personal Data, including to or in the United States, Canada, the United Kingdom, and the European Union and in the cloud, and this data may be subject to the laws and accessible to the courts, law enforcement and national security authorities of such jurisdictions.

Please note that we are currently not accepting applications from third party application services.