Job Description

About Us:

Rivian and Volkswagen Group Technologies is a joint venture between two industry leaders with a clear vision for automotive's next chapter. From operating systems to zonal controllers to cloud and connectivity solutions, we're addressing the challenges of electric vehicles through technology that will set the standards for software-defined vehicles around the world.The road to the future is uncharted. By combining our expertise across connectivity, AI, security and more, we'll map a new way forward. Working together, we'll create a future that's more connected, more intelligent, more sustainable for everyone.
Role Summary:

As the Cybersecurity Management System (CSMS) Security Engineer Intern, you will work closely with the CSMS Lead, along with cross-functional stakeholder teams within RV Tech and both JV Parent brands to ensure the company's alignment with ISO/SAE 21434. You will play a critical role in ensuring that security by design principles are part of the core business of the company. You will support the development of a compliant security program, and assist in translating product security requirements into software and hardware requirements and architecture.


Responsibilities:
Alignment to ISO 21434: Building out processes, procedures, security goals and requirements to ensure the company aligns to these standards. Partnering with stakeholders across the company to document requirements and working with the security validation testing team to ensure all requirements are met. Building out Governance, Risk and Compliance (GRC) Program: Building out a program that documents the company's and individual vehicle programs security risks and compliance to complement the overall company GRC program. Continuing to enhance the Threat Assessment and Risk Analysis (TARA) Program: Improving on current TARA process and documentation. Carrying out Threat TARAs, supporting the Product Security team in documenting risks and security requirements to mitigate them. Supporting Secure Development Lifecycle (SDLC): Supporting and carrying out security reviews as part of the broader SDLC program. Collaborating with other Product Security teams around SDLC and ensure alignment to the vulnerability management process.

Qualifications:

Minimum Qualifications:

Currently enrolled in a Bachelor's or Master's program at an accredited US university. Understanding of the ISO/SAE 21434 standard.

Preferred Qualifications:

Actively pursuing a degree in Cybersecurity, Computer Science, or a closely related technical field with the intent to return to school following completion of internship. Familiarity with EU Vehicle Cybersecurity Regulation (UNECE R155). Ability to follow processes and carry out TARAs and security reviews Prior Internship experience in compliance or GRC roles.

Rivian and Volkswagen Group Technologies internships & co-ops are experiences optimized for student candidates. To be eligible, you must be an undergraduate or graduate student in an accredited program during the entire internship or co-op term. If you are not pursuing a degree, please see our full-time positions at https://rivianvw.tech/#careers. Note that if your university has specific requirements for internship programs, it is your responsibility to fulfill those requirements.


Pay Disclosure:

US Salary Range/Hourly Rate for Internships

The range of pay for internships in the US is $40-$51 USD per hour. Actual compensation will be determined based on location, and other factors permitted by law.
Company Statements:
#

Equal Opportunity

Rivian and Volkswagen Group Technologies is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender, gender expression, gender identity, genetic information or characteristics, physical or mental disability, marital/domestic partner status, age, military/veteran status, medical condition, or any other characteristic protected by law. We are also committed to ensuring compliance with all applicable fair employment practice laws regarding citizenship and immigration status.

Rivian and Volkswagen Group Technologies is committed to ensuring that our hiring process is accessible for persons with disabilities. If you have a disability or limitation, such as those covered by the Americans with Disabilities Act, that requires accommodations to assist you in the search and application process, please email us at candidateaccommodations@rivian.com.#

Candidate Data Privacy

Rivian and VW Group Technologies ("Rivian and Volkswagen Group Technologies") may collect, use and disclose your personal information or personal data (within the meaning of the applicable data protection laws) when you apply for employment and/or participate in our recruitment processes ("Candidate Personal Data"). This data includes contact, demographic, communications, educational, professional, employment, social media/website, network/device, recruiting system usage/interaction, security and preference information. Rivian and Volkswagen Group Technologies may use your Candidate Personal Data for the purposes of (i) tracking interactions with our recruiting system; (ii) carrying out, analyzing and improving our application and recruitment process, including assessing you and your application and conducting employment, background and reference checks; (iii) establishing an employment relationship or entering into an employment contract with you; (iv) complying with our legal, regulatory and corporate governance obligations; (v) recordkeeping; (vi) ensuring network and information security and preventing fraud; and (vii) as otherwise required or permitted by applicable law.

Rivian and Volkswagen Group Technologies may share your Candidate Personal Data with (i) internal personnel who have a need to know such information in order to perform their duties, including individuals on our People Team, Finance, Legal, and the team(s) with the position(s) for which you are applying; (ii) Rivian and Volkswagen Group Technologies affiliates; and (iii) Rivian and Volkswagen Group Technologies' service providers, including providers of background checks, staffing services, and cloud services.

Rivian and Volkswagen Group Technologies may transfer or store internationally your Candidate Personal Data, including to or in the United States, Canada, and the European Union and in the cloud, and this data may be subject to the laws and accessible to the courts, law enforcement and national security authorities of such jurisdictions.

Please see our Candidate Data Privacy Notice (English) and Candidate Data Privacy Notice (Serbian) for more information.

Please note that we are currently not accepting applications from third party application services.