Principal Enterprise Endpoint Security Portfolio Architect (Remote)

Date Posted:

2025-11-18

Country:

United States of America

Location:

TX234: Richardson 1717 CityLine 1717 East CityLine Drive Building C17, Richardson, TX, 75082 USA

Position Role Type:

Remote

U.S. Citizen, U.S. Person, or Immigration Status Requirements:

The ability to obtain and maintain a U.S. government issued security clearance is required.​ U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance

Security Clearance:

DoD Clearance: Secret

RTX Corporation is an Aerospace and Defense company that provides advanced systems and services for commercial, military and government customers worldwide. It comprises three industry-leading businesses – Collins Aerospace Systems, Pratt & Whitney, and Raytheon. Its 185,000 employees enable the company to operate at the edge of known science as they imagine and deliver solutions that push the boundaries in quantum physics, electric propulsion, directed energy, hypersonics, avionics and cybersecurity. The company, formed in 2020 through the combination of Raytheon Company and the United Technologies Corporation aerospace businesses, is headquartered in Arlington, VA.

The following position is to join our RTX Enterprise Services team:

Role Overview:

RTX Enterprise Cybersecurity Services (ECS) is seeking a Lead Enterprise Endpoint Security Portfolio Architect to define the strategy and architecture for securing endpoints across our global enterprise. This leader will also serve as the cybersecurity portfolio owner for endpoint security technologies, responsible for lifecycle management, vendor strategy, and ensuring our workforce devices remain secure and compliant.

In this high-impact role, you’ll shape how we protect laptops, desktops, mobile devices, and specialized platforms, while ensuring endpoint security is a key enabler of our Zero Trust strategy and enterprise resilience.

The ideal candidate is a senior enterprise architect with deep technical expertise in endpoint security (EDR/XDR, UEM/MDM, OS hardening, and encryption) combined with the leadership skills to drive strategy, vendor rationalization, and global adoption. They are equally comfortable designing architectures, mentoring teams, and briefing executives, and they thrive at the intersection of technical depth, business impact, and regulatory compliance.

What You Will Do

• Define and maintain enterprise endpoint security reference architectures and roadmaps across Windows, macOS, Linux, iOS/Android, and specialized devices (IoT/OT where applicable)
• Serve as portfolio owner for endpoint security solutions, including lifecycle management, investment planning, vendor strategy, and cost optimization
• Lead design and adoption of modern endpoint protection platforms (NGAV, EDR, XDR) and ensure integration with SOC/SIEM/SOAR for advanced detection and response
• Establish endpoint hardening, encryption, and privilege management standards (BitLocker, FileVault, AppLocker/WDAC, Just-in-Time access)
• Drive UEM/MDM strategies (Intune, JAMF, Workspace ONE, etc.) to secure corporate, BYOD, and hybrid device environments
• Ensure endpoint posture and compliance signals integrate into Zero Trust and conditional access models
• Collaborate with IT, security, and operations teams to balance strong endpoint protection with workforce usability and productivity
• Lead architectural risk assessments for endpoint platforms and ensure alignment with regulatory frameworks (NIST, ITAR/EAR, ISO 27001, CIS Benchmarks)
• Mentor engineers and architects, raising enterprise capability in endpoint security best practices
• Develop and track KPIs/metrics that demonstrate endpoint risk reduction, adoption of security controls, and value realization from endpoint investments

Qualifications You Must Have:

• Typically requires a University Degree or equivalent experience and a minimum 12 years of experience, or an Advanced Degree and a minimum 10 years experience.
• 10+ years experience in cybersecurity, and/or information technology, or related intelligence community, military, or civil service fields.
• 10+ years experience with endpoint protection technologies (CrowdStrike, Microsoft Defender for Endpoint, SentinelOne, Palo Alto Cortex, etc.) and integration with SOC workflows
• Experience leading endpoint security architecture at enterprise scale, preferably in global or regulated industries.
• The ability to obtain and maintain a U.S. government issued security clearance is required. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.

Qualifications We Prefer:

• CISSP, CISM, or vendor-specific IAM certifications a plus
• Strong knowledge of UEM/MDM platforms (Intune, JAMF, Workspace ONE) and endpoint posture compliance models
• Hands-on experience with OS hardening, endpoint privilege management, encryption, and application control
• Familiarity with Zero Trust frameworks (NIST SP 800-207, CISA ZTMM) and integration of device trust signals into access policies
• Understanding of enterprise architecture methods (TOGAF, SABSA, DoDAF) and security frameworks (NIST CSF, CIS Controls, MITRE ATT&CK)
• Familiarity with enterprise architecture frameworks (TOGAF, SABSA, DoDAF) and cybersecurity standards (NIST CSF, MITRE ATT&CK)
• Excellent communication and leadership skills, with the ability to influence senior executives and guide large-scale change
• Possesses an established track record of continuous learning and improvement, particularly with emerging technologies and security subject matters

What We Offer: Whether you’re just starting out on your career journey or are an experienced professional, we offer a robust total rewards package with compensation; healthcare, wellness, retirement and work/life benefits; career development and recognition programs. Some of the benefits we offer include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance and child/adult backup care.

Remote: This position is currently designated as remote. However, the successful candidate will be required to work from one of the 50 U.S. states (excluding U.S. Territories). Employees who are working in Remote roles will work primarily offsite (from home). An employee may be expected to travel to the site location as needed.

The salary range for this role is 147,000 USD - 295,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate’s work experience, location, education/training, and key skills.Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance.This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.