Enterprise Reporting Controls & Governance Director

Comerica Bank
life insurance, parental leave, paid time off, sick time, 401(k)
United States, Texas, Dallas
Feb 28, 2025
Enterprise Reporting Controls & Governance Senior Director The Enterprise Reporting Controls & Governance (ERCG) Group is responsible for Comerica's compliance with the provisions of Section 404 of The Sarbanes-Oxley Act of 2002 ("SOX"), and ultimately, providing certification that our internal control environment is operating effectively. The group is also responsible for other controls over external reports quality assurance programs (e.g. FDICIA, ESG, etc.). The group reports administratively to the Chief Accounting Officer and works closely with key stakeholders across business units, corporate functions, technology, the business risk and controls office and the second and third lines of defense. The ERCG Senior Director is responsible for providing executive leadership to the various quality assurance programs, primarily the SOX program office, including serving as the central point of contact for executive management and external auditor. The ERCG Senior Director will focus on managing the ERCG Group's strategy and approach to Comerica's technology ecosystem compliance with SOX, including infrastructure risk assessment and application scoping, evaluation of system development lifecycle controls for new product developments and system conversions, and testing of IT general controls. The ERCG Senior Director also provides leadership to the ERCG Group for the core business operations of Comerica's SOX program, including business process scoping and risk assessment, control testing documentation and issues evaluation and conclusion. Position Responsibilities Strategy and Execution Provide executive leadership in the strategic direction of the group, including SOX program methodology, policies, templates, and procedures and provide recommendations for changes. Manage change / continuous improvement initiatives to ensure efficiency and maintenance of an optimized control environment, and present identifiable benefits for controls and process improvements to leadership. Acquire a comprehensive understanding of the end-to-end financial and technology landscape and provide expertise to SOX readiness activities, including serving as a review gate or Steering Committee Member on key strategic projects, assessing and providing on future state controls design, and pre-go-live validation. Ensure effective transfer of knowledge of project developments and changes to SOX processes and controls to ERCG team and audit stakeholders. Develop and manage the budget for the execution of programs under the purview of ERCG, including setting strategy and manage the use of external co-source partners to ensure the program is executed effectively and efficiently. Executive and External Engagement Communicate SOX progress, findings, recommendations for governance, remediation progress and policies to the Chief Accounting Officer, the Chief Financial Officer as well as other members of senior and executive leadership. Communicate SOX progress, findings, recommendations for governance, remediation progress and policies to committees of the Board and regulators (as needed). Lead coordination with Internal and External audit groups to facilitate reliance testing strategies of audit stakeholders. Technology Controls Leadership and Stakeholder Collaboration Serves as a senior technology SOX controls leader, liaising with risk and control owners and their teams as well as business leaders to provide proactive advice and input on key technology and application control decisions. Provide oversight and management to the testing of technology controls, including logical access, change management and other IT general controls. Provide guidance to the ERCG team, BRCO team and technology control owners on appropriately assessing risks to scope testing for application and interface controls, including pertinent job scheduling and error handling controls to supplement business processes effective risk management. Provides credible challenge to technology leaders and robust oversight to continuous monitoring plans and risk and control assessments. Human Capital Development Responsible for the development and delivery of pertinent training to the technology control owners to ensure a thorough understanding of the SOX program, policies and procedures, and the impact of financial reporting controls to the organization. Ensures ERCG group team members are accountable, enabling them to clearly articulate and manage the risk profile of a process, demonstrating active, robust financial statement risk management to key stakeholders and senior business leaders. Hold managers accountable for the development of their teams. Proactively engage in team development goals, including requiring more timely robust verbal feedback to ensure team members are meeting expectations of their professional roles and responsibilities. Position Qualifications Bachelors degree from an accredited university 10 or more years experience across Operations, Risk Management, and / or Audit roles requiring management of diverse risk types, including but not limited to business process or technology operational risks 10 or more years Experience auditing public companies in compliance with SOX regulations Preferred: 5 years Experience in assessing and evaluating the design and operating effectiveness of IT general and application/interface controls is Work Best Category: Category C - Days in the office will either be designated days or will vary week to week from 2-5 days Hours: 8:00am - 5:00pm Monday - Friday Salary: To Be Determined Based on Individual Experience About Comerica We know our employees are critical to our overall success and we are dedicated to investing in their future. One of the ways we do this is to offer a comprehensive Total Rewards package designed to recognize and reward individual performance, as well support health, well-being, development and security for our colleagues and their family. Total Rewards consists of cash compensation, development and flexible benefit programs designed to meet individual needs today and in the future. Your salary will be commensurate with your work experience and our programs are reviewed regularly to ensure each remain competitive. We are proud to offer benefits such as health and welfare programs, strong retirement benefits, and generous paid time off programs. You and your eligible family members, including domestic partners and their children, can participate in medical, dental, and vision benefits, 401(k) and pension, income protection benefits such as life insurance, AD&D, and supplemental health programs to offset unexpected health care expenses. We also have a variety of time off programs for things like vacation, sick time, disability, and parental leave. Eligibility for some programs varies based on employment status and tenure. Upon offer, Comerica conducts a comprehensive background and fingerprint check. NMLS certification requirement: where applicable, a favorable background check screening, credit check, fingerprint check, and NMLS certification is required in accordance with the SAFE Act. Comerica Incorporated (NYSE: CMA) is a financial services company headquartered in Dallas, Texas, and strategically aligned into three major business segments; the Commercial Bank, the Retail Bank, and Wealth Management. Comerica's colleagues focus on relationships, and helping people and businesses be successful. In addition to Texas, Comerica Bank locations can be found in Arizona, California, Florida and Michigan, with select businesses operating in several other states, as well as in Canada and Mexico. Comerica is proud to be an Equal Opportunity Employer - veterans/individuals with disabilities, committed to workplace diversity.