Role SummaryWe are seeking an experienced Application Security Engineer to join our Enterprise Cybersecurity team as an application security engineer to support the broader application security program. The role will be crucial in enhancing and maintaining the secure software development lifecycle (SSDLC) at Rivian. The ideal candidate will guide software development teams to develop secure code and identify and remediate application security vulnerabilities.
Responsibilities- Assess security scanner findings (SAST, DAST) within our source code and help guide application teams prioritize and resolve these issues.
- Integrated and optimized security tooling within Gitlab CI/CD and other DevOps technologies to ensure 'secure-by-design' development
- Review source code and application architectures to identify and communicate security vulnerabilities in proposed designs.
- Work closely with Rivian's penetration testing team to identify remediations for security vulnerabilities identified.
- Coordinate the ingestion and prioritization of vulnerabilities reported through Bug Bounty initiatives.
Qualifications- Passion for Cybersecurity and a desire to stay current with industry best practices and tools.
- Proven technical proficiency in software development or scripting (e.g., Go, Python) to
engineer security-focused tools and automated workflows. - 2+ years of application security experience.
- Hands on experience with reviewing and remediating common software vulnerabilities
- Experience with Gitlab CI/CD or other popular DevOps technologies
- Strong problem-solving and decision-making capabilities
Preferred Qualifications
- Experience in the automotive, manufacturing, or technology industries.
- Experience with cloud native (AWS preferred) and Kubernetes hosted applications
- Experience performing threat modeling and security reviews
Pay DisclosureThe salary range for this role is $88,300 - $110,400 for Georgia based applicants. This is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting. An employee's position within the salary range will be based on several factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, experience, skills, geographic location, shift, and organizational needs.
The successful candidate may be eligible for annual performance bonus and equity awards.
We offer a comprehensive package of benefits for full-time and part-time employees, their spouse or domestic partner, and children up to age 26, including but not limited to paid vacation, paid sick leave, and a competitive portfolio of insurance benefits including life, medical, dental, vision, short-term disability insurance, and long-term disability insurance to eligible employees. You may also have the opportunity to participate in Rivian's 401(k) Plan and Employee Stock Purchase Program if you meet certain eligibility requirements. Full-time employee coverage is effective on their first day of employment. Part-time employee coverage is effective the first of the month following 90 days of employment. More information about benefits is available at rivianbenefits.com.
