InfoSec Risk Manager
PayPal Inc.

Job Info

---

At PayPal (NASDAQ: PYPL), we believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.

Job Description Summary:
The Information Security Risk Manager within the Technology and Information Security Oversight team seeks to enhance our quantitative cyber risk oversight practice. This position will require building trust within our technology and security organizations across PayPal business units and deep dive into information protection related processes and procedures.

We are searching for cybersecurity, technology, risk, and data professionals to join the Technology and Information Security Oversight (TISO) organization as part of the newly formed Information Security Risk Reporting and Analytics team. We believe quantitative analysis provides the most accurate measure of risk, mitigates bias, and that data is fun. The role will evaluate existing and develop new metrics to provide data driven views on technology and security maturity of the company. You will also provide analysis and reporting to assist leaders in prioritizing investments and remediation efforts.

Job Description:

Organizational Overview

Technology and Information Security Oversight (TISO) is responsible for providing Second Line of Defense (SLOD) oversight function over Technology, Data and Security. The team provides risk visibility with risk trending and risk analysis to effectively challenge the capability provided by First Line of Defense (FLOD) organization. All risk disciplines ensure PayPal meets its regulatory and business objectives.

Professional Summary/Responsibilities

As a fair and unbiased person of integrity, you will assess existing processes in adherence to NIST framework to provide accurate visibility of technology and security risk for the company. You would collaborate with partners to development of models for measuring maturity and risk and contribute and challenge the existing.

In your day-to-day role you will:

• Work and collaborate with a diverse team of cybersecurity, technology, risk, and data professionals.

• Build relationship and trust with technology, security, and risk partners across a global organization.

• Discover, assess, and monitor maturity of NIST Detect and Respond functions such as application security, risk-based vulnerability management, and attack surface management.

• Develop new or improve existing quantitative risk metrics of above processes.

• Work with data engineering and data analytics team to obtain the datasets required for measuring the risk metrics

• Collaborate with other oversight managers to provide evidenced based credible challenge to Risk Assessments

• Analyze new and existing datasets to provide deeper insights and facilitate measurement of KPIs/KRIs

• As the expert of your metrics and dataset, collaborate with risk partners to build multi-dimensional risk analysis

Professional Qualifications

• Experience with NIST Cybersecurity Framework and SP800-53 with emphasis on Detect and Respond functions
• Familiarity with SQL and data visualization software such as Tableau and/or PowerBi
• Experience in developing KPI/KRI
• Ability to work in a cross functional/matrix environment with proven track record of delivery, through strong negotiation, influencing and relationship management skills.
• Ability to prioritize and multi-task in a fast-paced, high-growth environment
• 5+ years of Technology, Cybersecurity, Data Science/analytics, and/or IT Risk and Controls experience
• Excellent written and verbal communication skills
• Have served as a direct interface with regulatory agencies and external Audit partners
• Industry certifications such as CISSP, CISA, CISM, CRISC are preferred
• BS/BA degree with preference for position related field

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don't hesitate to apply.

Additional Job Description:

Subsidiary:
PayPal

Travel Percent:
0

Our Benefits:
At PayPal, we're committed to building an equitable and inclusive global economy. And we can't do this without our most important asset-you. That's why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.
We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https://www.paypalbenefits.com

Who We Are:
Click Here to learn more about our culture and community.

PayPal has remained at the forefront of the digital payment revolution for more than 20 years. By leveraging technology to make financial services and commerce more convenient, affordable, and secure, the PayPal platform is empowering more than 400 million consumers and merchants in more than 200 markets to join and thrive in the global economy. For more information, visit paypal.com.

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@paypal.com.

As part of PayPal's commitment to employees' health and safety, we have established in-office Covid-19 protocols and requirements, based on expert guidance. Depending on location, this might include a Covid-19 vaccination requirement for any employee whose role requires them to work onsite. Employees may request reasonable accommodation based on a medical condition or religious belief that prevents them from being vaccinated.

This job has expired.