Job Title: Senior Manager, Government Contractor Business System Compliance Job Code: 36680 Job Location: Remote Job Schedule: 9/80 (Every other Friday off) Job Description: The Government Compliance Senior Manager will play a key role in supporting the USG contractor business systems efforts for the SMS segment. This includes partnering with division teams to ensure compliance with the relevant government regulations across 9 entities as well as collaborating with segment and corporate leadership and engaging with government customers. Essential Functions: • Lead the internal contractor business system risk and self-assessment processes • Provide guidance on DFAR business system requirements and other government accounting and compliance topics to all supported organizations • Review, research, and analyze issues raised by government auditors and supports the preparation of formal written responses to various government agencies • Support internal and external contractor business system audits • Represent Government Compliance on cross-functional business system teams • Preparation & presentation of contractor business system status and key matters to senior leadership • Lead/support ad hoc requests and special projects regarding Compliance issues • Problem solve, develop, and implement innovative and creative solutions to issues and situations that exist in a complex and changing environment • Limited travel may be required, as determined by audits or business needs • Ability to obtain US Government security clearance Qualifications: • Bachelors Degree in Accounting, Finance, or related field and a minimum of 12 years of prior relevant experience; Or, Graduate Degree with a minimum of 10 years of prior related experience; Or, in lieu of a degree, a minimum of 16 years of prior related experience Preferred Additional Skills: • Proficient government accounting knowledge and experience at a defense contractor or government agency including experience with FAR (Federal Acquisition Regulations) and working with DCMA (Defense Contract Management Agency) and DCAA (Defense Contract Audit Agency) • Proven proactive, self-starter with the ability to effectively work with cross functional teams • Strong interpersonal skills to interact with government customers and all levels of the business • Ability to effectively communicate across all levels to explain and influence change related to company practices, policies and procedures • Ability to work in a dynamic environment driven by business needs and/or customer requirements • Strong planning, organizational, and analytical skills • Self-directed and proactive with good communications skills In compliance with pay transparency requirements, the salary range for this role in California, Massachusetts, New Jersey, Washington, and the Greater D.C, Denver, or NYC areas is $120,500-$223,500. The salary range for this role in Colorado state, Hawaii, Illinois, Maryland, Minnesota, New York state, and Vermont is $105,000-$195,000. This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits, including health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements. Qualified applications with arrest or conviction records will be considered for employment in accordance with Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. The application window for this requisition is anticipated to close July 16, 2026. #LI-CG1

Req ID: 135145 Region: Americas Country: USA State/Province: New Hampshire City: Remote Employee US Summary The Manager of IT Risk & Compliance is a strategic leader within the Global IT Security organization, responsible for driving the enterprise Governance, Risk, and Compliance (GRC) program. This role ensures that information systems align with global security strategies, regulatory requirements, and the IT roadmap. Acting as a key liaison between IT Security and business stakeholders, the Manager leads proactive, data-driven cybersecurity initiatives that strengthen enterprise resilience, reduce risk exposure, and support secure business growth. Detailed Description Performs tasks such as, but not limited to, the following: Regulatory & Compliance Leadership Lead enterprise-wide governance for frameworks and regulations including NIST 800-171, DFARS, and CMMC, ensuring consistent implementation and ongoing compliance. CMMC Program Execution Drive organizational readiness and successful execution of CMMC Level 2 assessments across Aerospace & Defense (A&D) sites. Audit & Assurance Management Oversee the full lifecycle of internal and external IT audits, including preparation, stakeholder coordination, and timely remediation of findings. GRC Program Management Implement and manage the enterprise GRC platform to centralize compliance tracking, POA&M management, and risk reporting. Identity & Access Governance Define and enforce access control standards, including compliance with complex global requirements such as ITAR and EAR. Security Documentation & Standards Direct the development and maintenance of System Security Plans (SSPs) and supporting security documentation. Risk Identification & Mitigation Partner with site-level IT teams to identify vulnerabilities and embed security controls into business processes. Program & Project Leadership Lead cross-functional security and compliance initiatives, managing scope, timelines, resources, and executive reporting. Knowledge/Skills/Competencies - Strong understanding of IT security frameworks and standards (e.g., NIST, ISO/IEC 27001, COBIT, ITIL) - Expertise in regulatory requirements including CMMC, DFARS, SOX, HIPAA, PCI DSS, and global compliance standards - Ability to translate complex security and risk concepts for both technical and non-technical audiences - Proven experience in risk management, internal controls, and audit processes - Strong project and program management capabilities - Advanced analytical and problem-solving skills - Effective communication, collaboration, and stakeholder management skills - Experience with enterprise GRC tools and platforms - Solid understanding of change management processes Typical Experience - 5–7+ years of experience in IT Security, Risk Management, or Compliance, preferably in manufacturing or defense environments - Strong working knowledge of NIST 800-171, CMMC, ITAR, and GDPR - Demonstrated ability to manage multiple complex initiatives in regulated environments Preferred Certifications: - CMMC Certified Professional (CCP) (highly preferred) - CMMC Certified Assessor (CCA) - CISSP, CISA, ISO/IEC 27001 Lead Auditor, or PMP Typical Education Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Salary The stated range includes Base Salary and target Short-Term Incentive (STI) compensation only. A comprehensive benefits package is offered in addition to this range. The range described in this posting is an estimate by the Company, and may change based on several factors, including but not limited to a change in the duties covered by the job posting, or the credentials, experience or geographic jurisdiction of the successful candidate. Salary Range: $107,000 - 147,000 USD Physical Demands Duties of this position are performed in a normal office environment. Duties may require extended periods of sitting and sustained visual concentration on a computer monitor or on numbers and other detailed data. Repetitive manual movements (e.g., data entry, using a computer mouse, using a calculator, etc.) are frequently required. Notes This job description is not intended to be an exhaustive list of all duties and responsibilities of the position. Employees are held accountable for all duties of the job. Job duties and the % of time identified for any function are subject to change at any time. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Celestica’s policy on equal employment opportunity prohibits discrimination based on race, color, creed, religion, national origin, gender, sexual orientation, gender identity, age, marital status, veteran or disability status, or other characteristics protected by law. This policy applies to hiring, promotion, discharge, pay, fringe benefits, job training, classification, referral and other aspects of employment and also states that retaliation against a person who files a charge of discrimination, participates in a discrimination proceeding, or otherwise opposes an unlawful employment practice will not be tolerated. All information will be kept confidential according to EEO guidelines. COMPANY OVERVIEW: Celestica (NYSE, TSX: CLS) enables the world’s best brands. Through our recognized customer-centric approach, we partner with leading companies in Aerospace and Defense, Communications, Enterprise, HealthTech, Industrial, Capital Equipment and Energy to deliver solutions for their most complex challenges. As a leader in design, manufacturing, hardware platform and supply chain solutions, Celestica brings global expertise and insight at every stage of product development – from drawing board to full-scale production and after-market services for products from advanced medical devices, to highly engineered aviation systems, to next-generation hardware platform solutions for the Cloud. Headquartered in Toronto, with talented teams spanning 40+ locations in 13 countries across the Americas, Europe and Asia, we imagine, develop and deliver a better future with our customers. Celestica would like to thank all applicants, however, only qualified applicants will be contacted. Celestica does not accept unsolicited resumes from recruitment agencies or fee based recruitment services.

• Assist investment advisers and other financial services firm customers with regulatory obligations. • File annual updating amendments and other-than-annual amendments for Form ADV. • Process applications for new representatives of investment adviser and broker-dealer firms, including Form U4. • Coordinate with state and SEC regulators to secure registration for customer firms. • Submit various SEC EDGAR filings, such as Form 13F, Form 13H, and Form ID. • Handle Form D and blue sky filings for private funds. • Complete Form PF for hedge fund, private equity, and venture capital advisers. • Review disciplinary matters affecting customers for proper DRP disclosure. • Coordinate with Comply’s internal compliance experts, client services representatives, and other departments. • Attend team meetings and provide regular reporting to supervisor. • Work with Comply’s proprietary software, including MyRIACompliance and ComplianceGuardian. • Support remote team by clarifying and helping resolve complicated customer matters. • Assist your Regulatory Filings team with various other tasks as assigned.

• Lead enterprise-wide governance for frameworks and regulations including NIST 800-171, DFARS, and CMMC. • Drive organizational readiness and successful execution of CMMC Level 2 assessments across Aerospace & Defense (A&D) sites. • Oversee the full lifecycle of internal and external IT audits. • Implement and manage the enterprise GRC platform to centralize compliance tracking, POA&M management, and risk reporting. • Define and enforce access control standards. • Direct the development and maintenance of System Security Plans (SSPs). • Partner with site-level IT teams to identify vulnerabilities and embed security controls into business processes. • Lead cross-functional security and compliance initiatives.