Analyst, Senior GRC Information Security Analyst
Listed on 2026-07-01
-
IT/Tech
Information Security, Cybersecurity, IT Consultant
BANC OF CALIFORNIA AND YOUR CAREER
Banc of California, Inc. (NYSE: BANC) is a bank holding company with over $34 billion in assets and the parent company of Banc of California. Banc of California is one of the nation’s premier relationship‑based business banks, providing banking and treasury management services to small, middle market, and venture backed businesses. As the largest independent bank headquartered in California, the bank offers a broad range of loan and deposit products and services through a network of full‑service branches and regional offices, as well as through digital and nationwide capabilities.
The bank also provides full‑service payment processing solutions to its clients and serves the Community Association Management industry nationwide through its technology‑forward platform, Smart Street™. Banc of California is committed to supporting its local communities through the Banc of California Charitable Foundation and by partnering with organizations that promote financial literacy, job training, small business support, affordable housing, and more.
At Banc of California, our success is powered by our people and a shared commitment to delivering meaningful results. We foster an environment where entrepreneurial thinking is encouraged, and accountability and operational excellence are expected. Our team members are empowered to take ownership, make informed decisions, and make a meaningful impact as the bank continues to grow and evolve. We are dedicated to supporting your growth and wellbeing through comprehensive benefits, robust development opportunities, and inclusive programs that enable you to perform at your best.
Together we win!
The Senior GRC Information Security Analyst role will be part of the Information Security Governance, Risk, & Compliance (GRC) team at Banc of California. The Information Security GRC team is responsible for the overall security posture of Banc of California by ensuring compliance with applicable regulations and contractual obligations and maintaining effective and efficient governance, risk, and compliance programs. In addition, the Information Security GRC team is directly involved with supporting and enabling Information Technology, Information Security compliance initiatives.
We seek a Senior GRC Information Security Analyst with extensive experience implementing, managing, and maturing compliance programs, including but not limited to SOC2, ISO
27xxxx, GLBA, GDPR, and CCPA. The individual must possess a significant level of technical knowledge that allows for clear communication with security and technology stakeholders and the ability to provide actionable guidance and recommendations on processes. As a member of the Information Security GRC team, this role will be instrumental in supporting the strategy of the GRC program in partnership with senior management.
In addition to technical acumen, the role requires an individual who is results‑oriented, pragmatic, and demonstrates effective problem‑solving and communication skills. The Senior GRC Information Security Analyst often serves as the subject matter expert for colleagues and line‑of‑business managers, and experience with multiple technologies, compliance requirements and risk management methodologies are crucial. Performs all duties in accordance with the Company’s policies and procedures, all U.S. state and federal laws and regulations, wherein the Company operates.
You’ll Make a Difference
- Contribute to the development, management, and ongoing improvement of Information Security risk program, compliance initiatives, and overall security risk posture.
- Partner with senior management to design and implement maturity strategies and operations into the Information Security GRC team.
- Lead critical control activities with stakeholders across the business, quantifying risk, evaluating mitigations, and driving actions to measurably reduce risk.
- Conduct regular risk assessments to identify potential threats and vulnerabilities across the organization analyzing their impact and likelihood of occurrence.
- Generate reports on risk assessments, compliance status, and control…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).