Senior Manager, Compliance and Legal Advisor, Data Privacy and Cybersecurity

Senior Manager, Compliance and Legal Advisor, Data Privacy and Cybersecurity at Raytheon

At Raytheon, the foundation of everything we do is rooted in our values and a higher calling – to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today’s mission and stay ahead of tomorrow’s threat. Our team solves tough, meaningful problems that create a safer, more secure world.

Raytheon Global Ethics & Compliance (GEC) has an exciting opportunity for a Senior Manager, Compliance and Legal Advisor specializing in Cybersecurity & Data Privacy. This role is part of the GEC Global Compliance Programs and reports to the Assistant General Counsel for Privacy, Cyber & Human Rights. The Senior Manager will provide guidance and support on compliance with company policies, internal directives, and applicable federal, state, and local laws, including the Federal Acquisition Regulation (FAR) and Defense Federal Acquisition Regulation Supplement (DFARS). Additionally, the Senior Manager will serve as a subject matter expert on data and cybersecurity incident response, supporting RTX-level incident response teams.

This is a dynamic and high-profile role that demands strong attention to detail, excellent multitasking abilities, and a proactive mindset. While this position collaborates closely with Counsel, it is not an attorney or legal counsel role and does not represent Raytheon in any legal capacity.

What You Will Do

• Lead and manage data incident response investigations and reporting under legal privilege, ensuring compliance with applicable regulatory requirements
• Oversee and maintain the Privacy and Cyber SharePoint site, risk metrics, and control tower to ensure proper documentation and tracking
• Collaborate with cybersecurity subject matter expert (SME) on NIST 800-171, and Cybersecurity Maturity Model Certification 2.0 (CMMC) to support cyber legal counsel
• Review purchase orders and subcontract terms and conditions to ensure compliance with company policies, procedures, internal guidance, and legal requirements, including the FAR and DFARS
• Collaborate with Supply Chain personnel, and members of LCC and Program Counsel to conduct contract reviews, with a focus on privacy and cybersecurity contract terms
• Conduct privacy impact assessments and regular compliance-related risk assessments and develop and implement action plans
• Brief on areas of concern to all levels of the business including at times senior leadership
• Travel up to 10% of the time

Qualifications You Must Have

• Typically requires a University Degree or equivalent experience and minimum 10 years experience in Government contract review or an Advanced Degree in a related field (i.e. Juris Doctorate or Masters Degree in Legal Studies preferred) and minimum 7 years' experience
• Experience with US Government (FAR / DFAR Supplements and Government contract procurement processes), contracts drafting, review and negotiations. Experience with US Government and internationally recognized cybersecurity controls, including Controlled Unclassified Information (CUI), and/or Global Data Privacy Regulations

Qualifications We Prefer

• Experience with cyber and data incident response, including DFARS reporting obligations
• Strong investigative, analytical, written and oral communication skills
• Strong sense of ownership and accountability and ability to make decisions efficiently and quickly
• Ability to work in a fast-paced, changing environment while organizing and managing multiple responsibilities and projects with competing priorities and deadlines
• Effective team builder and team player that fosters collaborative relationships

What We Offer

Our values drive our actions, behaviors, and performance with a vision for a safer, more connected world. At RTX we value: Safety, Trust, Respect, Accountability, Collaboration, and Innovation. Relocation assistance not available

This position currently is designated as remote. Employees who are working in remote roles will work primarily offsite (from home) but may be expected to travel to the site location as needed. The successful candidate for this role will be required to reside and work from one of the 50 U.S. states (excluding U.S. territories).

The salary range for this role is 132,400 USD - 251,600 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an an offer, including but not limited to, the role, function and associated responsibilities, a candidate’s work experience, location, education/training, and key skills.

Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.

Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance.

Key skills/competency

• Data Privacy
• Cybersecurity
• Incident Response
• Government Contracts
• FAR/DFARS
• NIST 800-171
• CMMC 2.0
• Compliance
• Risk Assessment
• Legal Advisory