Staff Cybersecurity Application Security Engineer

Rivian•Atlanta, GA

About The Position

Rivian is on a mission to keep the world adventurous forever. This goes for the emissions-free Electric Adventure Vehicles we build, and the curious, courageous souls we seek to attract. As a company, we constantly challenge what’s possible, never simply accepting what has always been done. We reframe old problems, seek new solutions and operate comfortably in areas that are unknown. Our backgrounds are diverse, but our team shares a love of the outdoors and a desire to protect it for future generations. We are seeking an experienced Application Security Engineer to join our Enterprise Cybersecurity team. You will play a crucial role in enhancing and maintaining the Secure Software Development Lifecycle (SSDLC) by guiding software development teams to write secure code and effectively remediate vulnerabilities. The ideal candidate acts as a bridge between security and engineering, fostering a culture of secure-by-design development.

Requirements

8+ years of application security experience.
Passion for Cybersecurity and a desire to stay current with industry best practices and tools..
Proficiency with GraphQL, AWS, React, Java, Node.js, Python, and containerization technologies (Docker/Kubernetes).
Hands on experience with reviewing and remediating common SAST vulnerabilities
Strong hands-on coding or scripting skills (e.g., Python, Go) for building security utilities and automation.
Strong problem-solving and decision-making capabilities.

Nice To Haves

Experience in the automotive, manufacturing, or technology industries.
Experience with cloud native (AWS preferred) and Kubernetes hosted applications
Experience with Gitlab CI/CD or other popular DevOps technologies
Experience identifying and mitigating AI-specific vulnerabilities

Responsibilities

Review source code and application architectures to identify and communicate security vulnerabilities to development teams.
Support the implementation of security configurations and countermeasures based on emerging threats and industry trends.
Triage and manage external submissions from Rivian’s Bug Bounty program.
Develop and support automated security tooling and agentic security workflows within CI/CD pipelines to streamline vulnerability triage and threat modeling.
Work closely with Rivian’s penetration testing team to identify remediations for security vulnerabilities identified.

Benefits

The successful candidate may be eligible for annual performance bonus and equity awards.
We offer a comprehensive package of benefits for full-time and part-time employees, their spouse or domestic partner, and children up to age 26, including but not limited to paid vacation, paid sick leave, and a competitive portfolio of insurance benefits including life, medical, dental, vision, short-term disability insurance, and long-term disability insurance to eligible employees. You may also have the opportunity to participate in Rivian’s 401(k) Plan and Employee Stock Purchase Program if you meet certain eligibility requirements. Full-time employee coverage is effective on their first day of employment. Part-time employee coverage is effective the first of the month following 90 days of employment. More information about benefits is available at rivianbenefits.com.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume