Explore careers
Want to be part of the innovative teams on the frontlines of climate technology? View open jobs and easily apply.
Staff Cybersecurity Engineer - Identity Platform Engineering (IAM/IGA), DevSecOps
Rivian
Software Engineering
Serbia
Posted on Mar 6, 2026
About Rivian
Rivian is on a mission to keep the world adventurous forever. This goes for the emissions-free Electric Adventure Vehicles we build, and the curious, courageous souls we seek to attract.
As a company, we constantly challenge what’s possible, never simply accepting what has always been done. We reframe old problems, seek new solutions and operate comfortably in areas that are unknown. Our backgrounds are diverse, but our team shares a love of the outdoors and a desire to protect it for future generations.
Role Summary
Rivian is seeking a Staff Cybersecurity Engineer - Identity Platform Engineering (IAM/IGA) to modernize identity governance and lifecycle capabilities while helping shift our Serbia-based IAM team from an operations-heavy model into an automation-first engineering operating model. You’ll partner cross-functionally with HR, IT, Enterprise Security, and the SOC to deliver reliable, auditable IAM services built on Microsoft Entra ID (or equivalent enterprise identity platforms), with automation deployed and operated in AWS using disciplined delivery practices.
Primary charter: modernize identity governance and lifecycle while establishing an automation-first, measurable engineering operating model for IAM.
Location: Belgrade, Serbia (onsite/hybrid at a Rivian location; remote is not available). Participation in an incident on-call rotation is required.
Responsibilities
Rivian is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender, gender expression, gender identity, genetic information or characteristics, physical or mental disability, marital/domestic partner status, age, military/veteran status, medical condition, or any other characteristic protected by law.
Rivian is committed to ensuring that our hiring process is accessible for persons with disabilities. If you have a disability or limitation, such as those covered by the Americans with Disabilities Act, that requires accommodations to assist you in the search and application process, please email us at candidateaccommodations@rivian.com.
Candidate Data Privacy
Rivian may collect, use and disclose your personal information or personal data (within the meaning of the applicable data protection laws) when you apply for employment and/or participate in our recruitment processes (“Candidate Personal Data”). This data includes contact, demographic, communications, educational, professional, employment, social media/website, network/device, recruiting system usage/interaction, security and preference information. Rivian may use your Candidate Personal Data for the purposes of (i) tracking interactions with our recruiting system; (ii) carrying out, analyzing and improving our application and recruitment process, including assessing you and your application and conducting employment, background and reference checks; (iii) establishing an employment relationship or entering into an employment contract with you; (iv) complying with our legal, regulatory and corporate governance obligations; (v) recordkeeping; (vi) ensuring network and information security and preventing fraud; and (vii) as otherwise required or permitted by applicable law.
Rivian may share your Candidate Personal Data with (i) internal personnel who have a need to know such information in order to perform their duties, including individuals on our People Team, Finance, Legal, and the team(s) with the position(s) for which you are applying; (ii) Rivian affiliates; and (iii) Rivian’s service providers, including providers of background checks, staffing services, and cloud services.
Rivian may transfer or store internationally your Candidate Personal Data, including to or in the United States, Canada, the United Kingdom, and the European Union and in the cloud, and this data may be subject to the laws and accessible to the courts, law enforcement and national security authorities of such jurisdictions.
Please note that we are currently not accepting applications from third party application services.
Rivian is on a mission to keep the world adventurous forever. This goes for the emissions-free Electric Adventure Vehicles we build, and the curious, courageous souls we seek to attract.
As a company, we constantly challenge what’s possible, never simply accepting what has always been done. We reframe old problems, seek new solutions and operate comfortably in areas that are unknown. Our backgrounds are diverse, but our team shares a love of the outdoors and a desire to protect it for future generations.
Role Summary
Rivian is seeking a Staff Cybersecurity Engineer - Identity Platform Engineering (IAM/IGA) to modernize identity governance and lifecycle capabilities while helping shift our Serbia-based IAM team from an operations-heavy model into an automation-first engineering operating model. You’ll partner cross-functionally with HR, IT, Enterprise Security, and the SOC to deliver reliable, auditable IAM services built on Microsoft Entra ID (or equivalent enterprise identity platforms), with automation deployed and operated in AWS using disciplined delivery practices.
Primary charter: modernize identity governance and lifecycle while establishing an automation-first, measurable engineering operating model for IAM.
Location: Belgrade, Serbia (onsite/hybrid at a Rivian location; remote is not available). Participation in an incident on-call rotation is required.
Responsibilities
- IGA Modernization: Drive governance modernization (self-service access requests, approvals, fulfillment, access reviews/certifications, evidence generation), leveraging SailPoint and Microsoft Entra ID governance workflows to deliver usable, auditable, scalable outcomes.
- Automation & DevSecOps: Design and build IAM automation and platform components (APIs, scripts, services); establish reusable patterns/templates; and coach engineers to deploy and operate automation via Git-based delivery, CI/CD pipelines, and IaC in AWS.
- Delivery Practices: Drive an engineering-quality delivery model: design/peer review, automated checks/testing where practical, staged rollouts, rollback plans, and operational readiness for IAM changes.
- Engineering Enablement: Uplift team engineering practices through reusable templates/patterns, design reviews, and coaching on automation-first delivery and safe rollout discipline.
- Identity Lifecycle Reliability: Improve joiner/mover/leaver processes end-to-end, strengthening lifecycle automation, verified deprovisioning, and access revocation with clear health signals and robust failure handling.
- Modern AuthN/AuthZ Patterns: Establish standard authentication and authorization patterns (SSO, MFA, OAuth/OIDC/SAML) with pragmatic exception handling and migration runbooks, including modern policy patterns in Microsoft Entra ID (e.g., Conditional Access).
- Operational Excellence: Treat IAM as a service: improve monitoring and runbooks, participate in incident response and on-call rotation, and drive post-incident improvements that prevent recurrence.
- Cross-Functional Alignment: Orchestrate delivery across HR IT, IT, Enterprise Security, and SOC partners; unblock decisions, communicate tradeoffs clearly, and land standards that are adopted (not just documented).
- Experience: 8+ years of relevant experience in IAM / cybersecurity engineering / identity platform engineering (or equivalent practical experience delivering comparable scope).
- IAM Domain Depth: Significant experience across identity lifecycle, governance concepts, authentication/authorization patterns, and privileged access fundamentals, including hands-on experience with a leading enterprise identity platform (e.g., Microsoft Entra ID, Okta) or equivalent.
- Engineering / DevSecOps Foundation: Strong hands-on ability using Go, Python, or PowerShell and Git-based workflows, with experience building CI/CD pipelines, using IaC (Terraform or CloudFormation), and deploying/operating automation in cloud environments (AWS or equivalent).
- Staff-Level Delivery: Demonstrated ability to drive cross-functional initiatives to completion and land changes that persist through standards, automation, and adoption, with a track record of improving operational outcomes through disciplined delivery.
- Operational Ownership: Experience supporting production identity systems with monitoring, incident response, and continuous improvement; comfort operating in an on-call rotation (IAM incidents).
- Delivery Discipline: Proven ability to deliver controlled change with design review, staged rollout, rollback readiness, and operational readiness criteria.
- Collaboration & Influence: Strong written and verbal communication; ability to align stakeholders and uplift team practices through mentoring, design reviews, and enablement.
Rivian is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender, gender expression, gender identity, genetic information or characteristics, physical or mental disability, marital/domestic partner status, age, military/veteran status, medical condition, or any other characteristic protected by law.
Rivian is committed to ensuring that our hiring process is accessible for persons with disabilities. If you have a disability or limitation, such as those covered by the Americans with Disabilities Act, that requires accommodations to assist you in the search and application process, please email us at candidateaccommodations@rivian.com.
Candidate Data Privacy
Rivian may collect, use and disclose your personal information or personal data (within the meaning of the applicable data protection laws) when you apply for employment and/or participate in our recruitment processes (“Candidate Personal Data”). This data includes contact, demographic, communications, educational, professional, employment, social media/website, network/device, recruiting system usage/interaction, security and preference information. Rivian may use your Candidate Personal Data for the purposes of (i) tracking interactions with our recruiting system; (ii) carrying out, analyzing and improving our application and recruitment process, including assessing you and your application and conducting employment, background and reference checks; (iii) establishing an employment relationship or entering into an employment contract with you; (iv) complying with our legal, regulatory and corporate governance obligations; (v) recordkeeping; (vi) ensuring network and information security and preventing fraud; and (vii) as otherwise required or permitted by applicable law.
Rivian may share your Candidate Personal Data with (i) internal personnel who have a need to know such information in order to perform their duties, including individuals on our People Team, Finance, Legal, and the team(s) with the position(s) for which you are applying; (ii) Rivian affiliates; and (iii) Rivian’s service providers, including providers of background checks, staffing services, and cloud services.
Rivian may transfer or store internationally your Candidate Personal Data, including to or in the United States, Canada, the United Kingdom, and the European Union and in the cloud, and this data may be subject to the laws and accessible to the courts, law enforcement and national security authorities of such jurisdictions.
Please note that we are currently not accepting applications from third party application services.