JOB DESCRIPTION

Schedule: M-F (9-5, 8-6- local time and flexable depending on business needs)- average 8 hours day

This is a hybrid role- 3 days/week on site in ATLANTA, Plymouth, Irvine, Normal (IL) or Palo Alto- please be sure all candidates submit within these location

The Rivian Enterprise Cybersecurity Risk Management team is seeking a Cybersecurity Engagement Analyst (Cybersecurity Awareness Training) to assist in developing and delivering security awareness training materials for employees. This role will support the cybersecurity team in increasing employee awareness of security threats, safe computing habits, and adherence to company security policies. This role will partner closely with the Cybersecurity Engagement Lead for day-to-day engagement and will report to the Senior Director of Cybersecurity Risk Management in the Rivian Enterprise Cybersecurity organization. In this role, the Cybersecurity Engagement Analyst will collaborate with Enterprise Cybersecurity and cross-functional business leaders to develop and deliver training.

Responsibilities:

Support company-wide security awareness initiatives.

Create engaging security awareness content, including e-learning modules, presentations, videos, infographics, newsletters, posters, and other educational content.

Conduct virtual and in-person training sessions on cybersecurity topics such as phishing, password security, data protection, and social engineering.

Customize training content for different employee roles, departments, and technical expertise levels.

Work with IT, People Team, Compliance, and Communications teams to align training content with organizational policies and regulatory requirements.

Research and incorporate the latest cybersecurity threats, trends, and best practices into training materials.

Clearly communicates expectations and carefully tracks progress to ensure standards are met systematically; follows up to keep work on track.

Stay updated on industry trends and best practices in risk and controls and proactively recommend improvements to the Cybersecurity Risk Management Program.

Minimum Education and Experience Required:

Bachelor's degree in Cybersecurity, Information Technology, Communications, Instructional Design, or a related field (or equivalent work experience).

Minimum of 2-4 years of experience in cybersecurity awareness, training, instructional design, or a related field.

Preferred:

Industry certifications such as Certified Security Awareness Practitioner (CSAP), Certified Information Security Manager (CISM), CompTIA Security+, or Certified Information Systems Auditor (CISA).

Key Qualifications

Strong ability to create educational materials in various formats, including presentations, videos, e-learning modules, and written communications

Strong project management skills, including tracking project details in JIRA or similar software

Familiarity with cybersecurity principles, threats, best practices, and regulatory frameworks (e.g., NIST, ISO 27001, GDPR, HIPAA)

Familiarity with learning management systems (LMS), such as Articulate or similar platforms for content creation, is a plus

Ability to manage multiple projects and meet deadlines efficiently

Ability to work cross-functionally with IT, People team, compliance, and other business units

Excellent verbal and written communication skills and attention to detail

Able to plan, communicate, and execute planning individually and with a team

Level of comfort speaking technically and non-technically, as appropriate

Able to work effectively and successfully in a fast-paced environment