Rivian

Sr. Cybersecurity Engineer

Rivian$111K — $138K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5+ years of experience in product security, application security, or security architecture.
  • Proven ability to manage complex, high-stress incidents with clarity and authority.
  • Experience in Incident Response, with value placed on candidates from DevOps, SRE, or Infrastructure Engineering backgrounds.
  • Proficiency in scripting (Python, Go, or PowerShell) and familiarity with automation platforms.
  • Deep understanding of cloud-native infrastructure (AWS/GCP/Azure) and incident response in containerized environments.
  • Deep understanding of incident handling lifecycles and attacker tactics, techniques, and procedures.

Responsibilities

  • Act as the primary Incident Commander for cybersecurity events, managing resources and communication.
  • Develop automation scripts and workflows to proactively manage security threats.
  • Enhance threat detection capabilities by optimizing log data for actionable insights.
  • Lead After-Action Reviews focused on root cause analysis and architectural improvements.
  • Build and refine integrations between security and infrastructure tools to streamline responses.
  • Participate in an on-call rotation for continuous operational support.

Benefits

  • Robust medical/Rx, dental and vision insurance for full-time and part-time employees.
  • Coverage effective immediately for full-time employees, and after 90 days for part-time employees.
Full Job Description
Role Summary

We are seeking an Incident Commander to lead our response capabilities through a code-first lens. You are dedicated to minimizing impact and downtime by deploying automation and ensuring total observability across our environment. You will serve as an Incident Commander during critical Cybersecurity incidents, simultaneously building the integrations and tools that scale our ability to detect, respond, and recover. This role will be a hybrid opportunity in Atlanta, GA and will report to our Sr. Manager Cybersecurity.

Responsibilities

  • Incident Command & Crisis Management: Act as the primary Incident Commander for critical cybersecurity events. You will drive technical bridges, manage cross-functional resources, and ensure clear communication streams to minimize business downtime.
  • Engineering Resilience: Pivot from reactive "fire-fighting" to proactive "fire-proofing." operationalize "Security as Code" by developing automation scripts and SOAR workflows to handle repetitive threats.
  • Observability & Detection: Enhance our threat detection capabilities by treating logs as data pipelines. Work with engineering teams to ensure our monitoring tools provide high-fidelity signals, not just noise.
  • Blameless Post-Mortems: Lead comprehensive After-Action Reviews (AARs) with a focus on root cause analysis. Translate findings into architectural improvements rather than policy patches.
  • Tooling & Integration: Bridge the gap between Security and DevOps. Build and refine integrations between our security stack (SIEM, EDR) and infrastructure tools (CI/CD, Cloud providers) to streamline response capabilities.
  • On-Call Rotation: Participate in a structured on-call rotation to provide critical command coverage outside of standard business hours, ensuring 24/7 operational continuity and rapid remediation.

Qualifications

  • 5+ years of experience in product security, application security, or security architecture.
  • Command Presence: Proven ability to manage complex, high-stress incidents with clarity and authority. You can translate technical crises into business language for executive stakeholders.
  • Hybrid Background: Experience in Incident Response is critical, but we highly value candidates coming from DevOps, SRE, or Infrastructure Engineering backgrounds who want to apply their skills to Security.
  • Automation First Mindset: Proficiency in scripting (Python, Go, or PowerShell) and familiarity with automation platforms.
  • Cloud Fluency: Deep understanding of cloud-native infrastructure (AWS/GCP/Azure) and how to respond to incidents within containerized (Kubernetes/Docker) environments.
  • Frameworks: Deep understanding of incident handling lifecycles (NIST 800-61) and attacker TTPs (MITRE ATT&CK).

Pay Disclosure

Salary Range for this role is$111,000 - $138,700 for Georgia based applicants. This is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting. An employee's position within the salary range will be based on several factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, experience, skills, geographic location, shift, and organizational needs.

The successful candidate may be eligible for annual performance bonus and equity awards.

We offer a comprehensive package of benefits for full-time and part-time employees, their spouse or domestic partner, and children up to age 26, including but not limited to paid vacation, paid sick leave, and a competitive portfolio of insurance benefits including life, medical, dental, vision, short-term disability insurance, and long-term disability insurance to eligible employees. You may also have the opportunity to participate in Rivian's 401(k) Plan and Employee Stock Purchase Program if you meet certain eligibility requirements. Full-time employee coverage is effective on their first day of employment. Part-time employee coverage is effective the first of the month following 90 days of employment. More information about benefits is available at rivianbenefits.com.

You can apply for this role through careers.rivian.com (or through internal-careers-rivian.icims.com if you are a current employee). This job is not expected to be closed any sooner than February 6, 2026.

About Rivian

Rivian is an American automaker and automotive technology company. Founded in 2009, the company develops vehicles, products and services related to sustainable transportation. Rivian has raised over $10.5 billion since 2019, with investments from Amazon, Ford, and Cox Automotive. The company's first two vehicles, the R1T and R1S, are electric vehicles that are expected to be released in 2021. Rivian has also announced plans to produce electric delivery vans for Amazon. The company has received praise for its focus on sustainability and its commitment to using recycled materials in its vehicles.
Learn more about Rivian
Size
10,000 employees
Market Cap
$16.8 billion
Industry
Founded
2009
NASDAQ

Similar Jobs

More Jobs at Rivian

More Information Technology Jobs

Find similar Sr. Cybersecurity Engineer jobs: