Auditor, IT SOX Compliance

Rivian is on a mission to keep the world adventurous forever. This goes for the emissions-free Electric Adventure Vehicles we build, and the curious, courageous souls we seek to attract.

As a company, we constantly challenge what's possible, never simply accepting what has always been done. We reframe old problems, seek new solutions and operate comfortably in areas that are unknown. Our backgrounds are diverse, but our team shares a love of the outdoors and a desire to protect it for future generations.

Join our organization as an IT Auditor! We seek a skilled and experienced professional with a strong background in information technology auditing. As an IT Auditor, you will be crucial in evaluating and assessing IT controls to ensure compliance with regulatory requirements and industry best practices. Reporting to the Audit Manager, you will contribute to the planning, execution, and reporting of IT audits, focusing on IT general controls (ITGCs), application controls, access controls, and data security.

Why This Role Matters

• Ensure the integrity and resilience of Rivian's growing technology landscape by evaluating IT systems, infrastructure, and controls at scale.
• Safeguard data and digital operations as a trusted advisor interfacing with IT, Security, Legal, and Finance to mitigate risk and enhance compliance.
• Drive audit excellence across Rivian's enterprise technology stack-including AWS, SAP, and microservices-during a critical phase of global expansion.
• Advance investor and regulatory confidence by strengthening our SOX, cybersecurity, and application control environments through proactive testing and continuous improvement.

• Conduct Sarbanes-Oxley (SOX) and IT operational audits, including planning, scoping, and executing audit procedures in accordance with established guidelines and standards.
• Evaluate and test ITGCs, application controls, and business-related access controls to assess their effectiveness and identify potential risks.
• Review IT processes and systems to ensure compliance with relevant regulations and company policies.
• Collaborate with business units and IT teams to identify control gaps and recommend improvements.
• Assist in providing recommendations and guidance on control enhancements to mitigate identified risks.
• Work closely with external auditors during the audit process, providing requested documentation and addressing findings or recommendations.
• To enhance audit effectiveness, stay informed about emerging technologies, industry trends, and regulatory changes.
• Prepare audit reports and communicate findings, recommendations, and action plans to management.
• Assist in developing and implementing remediation plans for identified control deficiencies.
• Foster strong working relationships with stakeholders, promoting effective communication and collaboration.

Required:

• Bachelor's degree in Information Systems, Computer Science, Accounting, or related field

• 2-4 years of experience in IT auditing-preferably in public accounting or corporate internal audit

• Familiarity with industry frameworks such as Sarbanes-Oxley (SOX), COBIT, COSO, ISO 27001, and cybersecurity or data privacy regulations

• Hands-on experience evaluating IT controls across cloud-based environments (e.g., AWS), ERP systems (e.g., SAP), and microservice architectures

• Strong understanding of IT processes and systems, including application and access control design

• Excellent written and verbal communication skills, with the ability to translate technical content for both technical and non-technical stakeholders

• Detail-oriented with strong analytical, organizational, and time-management skills

• High ethical standards, sound judgment, and commitment to confidentiality

Preferred:

• Relevant professional certifications such as CISA, CISSP, or equivalent

Salary Range for Atlanta, GA based applicants: $126,000 - $158,000 annually (Actual compensation will be determined based on experience, location, and other factors permitted by law).

Rivian is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender, gender expression, gender identity, genetic information or characteristics, physical or mental disability, marital/domestic partner status, age, military/veteran status, medical condition, or any other characteristic protected by law.

Rivian is committed to ensuring that our hiring process is accessible for persons with disabilities. If you have a disability or limitation, such as those covered by the Americans with Disabilities Act, that requires accommodations to assist you in the search and application process, please email us at candidateaccommodations@rivian.com.

Rivian may collect, use and disclose your personal information or personal data (within the meaning of the applicable data protection laws) when you apply for employment and/or participate in our recruitment processes ("Candidate Personal Data"). This data includes contact, demographic, communications, educational, professional, employment, social media/website, network/device, recruiting system usage/interaction, security and preference information. Rivian may use your Candidate Personal Data for the purposes of (i) tracking interactions with our recruiting system; (ii) carrying out, analyzing and improving our application and recruitment process, including assessing you and your application and conducting employment, background and reference checks; (iii) establishing an employment relationship or entering into an employment contract with you; (iv) complying with our legal, regulatory and corporate governance obligations; (v) recordkeeping; (vi) ensuring network and information security and preventing fraud; and (vii) as otherwise required or permitted by applicable law.

Rivian may share your Candidate Personal Data with (i) internal personnel who have a need to know such information in order to perform their duties, including individuals on our People Team, Finance, Legal, and the team(s) with the position(s) for which you are applying; (ii) Rivian affiliates; and (iii) Rivian's service providers, including providers of background checks, staffing services, and cloud services.

Rivian may transfer or store internationally your Candidate Personal Data, including to or in the United States, Canada, the United Kingdom, and the European Union and in the cloud, and this data may be subject to the laws and accessible to the courts, law enforcement and national security authorities of such jurisdictions.

Please note that we are currently not accepting applications from third party application services.