Officer, Senior Associate IT SOX Compliance

BANC OF CALIFORNIA AND YOUR CAREER

Bank of California, Inc. (NYSE: BANC) is a bank holding company headquartered in Los Angeles with one wholly‑owned banking subsidiary, Banc of California (the “Bank”). Banc of California is one of the nation’s premier relationship‑based business banks focused on providing banking and treasury management services to small, middle‑market, and venture‑backed businesses. Banc of California offers a broad range of loan and deposit products and services, with full‑service branches throughout California and Denver, Colorado, as well as full‑stack payment processing solutions through Banc Edge.

The bank is committed to its local communities by supporting organizations that provide financial literacy and job training, small business support, affordable housing, and more.

Responsible for performing the Bank’s risk‑based, annual SOX IT Compliance Program plan and other initiatives in compliance with the Sarbanes‑Oxley (SOX) Act. Works closely with line of business stakeholders to ensure that control documentation is maintained, assertions performed, and that findings related to Internal Controls over Financial Reporting (ICOFR) are assessed, reported to management, monitored for remediation, and validated for effective correct action.

Carries out responsibilities by working with internal and co‑sourced team members to perform all IT SOX‑related activities in accordance with the SOX Compliance Program plan and methodology. Works with all levels of management, internal department personnel, co‑source resources, and external auditors. Collaborates with key stakeholders as needed. Performs all duties in accordance with the Company’s policies and procedures, all U.S. state and federal laws and regulations, wherein the Company operates.

• Assists SVP, IT SOX Director, in planning and executing the Bank’s annual IT SOX Compliance Program plan in collaboration with executive management.
• Assists with key entity‑level assessments, including the annual SOX Risk Assessment and annual Fraud Risk Assessment.
• Coordinates and leads process walkthroughs with management process/control owners and performs “Test of Design” to identify control weaknesses and ensure that internal controls are designed appropriately.
• Performs the testing of internal controls to validate the operating effectiveness of SOX controls performed by management with a focus on IT General Controls (ITGCs), IT Automated Controls (ITACs), and key‑report testing.
• Communicates control deficiencies/findings to management in an objective manner and obtains and reviews their remediation plans to ensure that the risk concerns are sufficiently addressed.
• Analyzes and documents IT SOX findings and deficiencies, performs root cause analysis, assesses potential financial statement impact of deficiencies, and assesses remediation plans developed by process owners.
• Facilitates the remediation of control deficiencies and escalates possible critical issues to process owners.
• Advises process owners in updating their SOX documentation, which includes process maps, key inventories, control descriptions, etc.
• Maintains SOX documentation and findings in the Company’s GRC and risk management platforms.
• Maintains the Company’s issues management tracking system, monitors, and report control deficiencies status.
• Supports the development and coordination of the Company’s Sarbanes‑Oxley activities. Communicates and provides accurate reporting to SOX Compliance management and business units.
• Collaborates with IT SOX process owners re: SOX Compliance requirements to increase awareness, understanding, and compliance.
• Maintains effective and professional relationships with the Company’s internal auditors, external auditors, and regulatory examiners.
• Identify areas of opportunity for process improvements and assist the business stakeholders in adequately addressing them. This includes use of automation and AI as appropriate.
• Maintains a current level of knowledge relating to professional standards and emerging industry and technical developments, including SOX 302/404, GAAP, COSO, and related auditing standards.
• Treat…