TISO Risk Analyst - Cyber and Technology
PayPal Inc.

Job Info

---

At PayPal (NASDAQ: PYPL), we believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.

Job Description Summary:
Technology and Information Security Oversight (TISO) is responsible for providing Second Line of Defense (SLOD) oversight for Technology, Data and Security. The team provides risk visibility with risk trending and risk analysis to effectively challenge the capability provided by the First Line of Defense (FLOD) organization. All risk disciplines ensure PayPal meets its regulatory and business objectives.

This role will require experience researching and analyzing industry Security and Technology trends, performing enterprise risk assessments, and coordinating and analyzing the results of 3rd party security testing.

Job Description:

Position Summary/Responsibilities

The TISO team is looking for an exceptional technology and cybersecurity risk assessor, who has experience in using industry frameworks, such as NIST, to perform enterprise level risk and maturity assessments and provide insights into the results with deeper understanding of the domain. The person in this role will be responsible for managing and coordinating various broad offensive security risk assessments and security research over technology to identify patterns of risks at the enterprise scale. In this role, the person will:

• Execute enterprise risk and maturity assessments for technology, data and security.
• Partner with a team of risk analysts and Subject Matter Experts (SMEs) to provide ongoing research and analysis on Technology and Security benchmarking and trends for the company and its various business units.
• Coordinate offensive capability attack and penetration testing efforts using third-party testers including scoping statements of work, supporting test efforts, and analyzing results
• Consolidate results and perform research to provide insights into risks
• Perform quantitative and analytical analysis and help develop relevant metrics that not only track activity but also quantify the impact of security initiatives on the financial performance of the business.
• Enable a risk-based prioritization approach for regular leadership level reporting, Drive a repeatable reporting and trending for business and technology executives
• Support Shaping the organization's vision, 3-5-or-10-year plans, OKRs, and other far-reaching strategy documents.
• Perform problem and conflict resolution through collaboration; with commitment for fact-based risk analysis
• Represent TISO at various forums and leadership engagements
• Build sustaining relationships based on trust and mutual respect
• Collaborate and contribute ideas and learn from others on the team.
• Experience preferred in financial services, insurance, security and technology industries, preferably in dynamic and fast changing environments.

Professional Qualifications:

• 7+ years of experience working in a Technology and Security domain with at least 2 years in risk assessment, offensive security testing or similar technical assessment role
• Ability to perform research and benchmarking against industry security and risk trends
• Knowledge of offensive security testing practices including penetration testing, red teaming, or similar offensive security knowledge and experience is strongly desired
• Experience working with security and risk frameworks such as NIST, ISO, OWASP, MITRE ATT&CK, etc., with deep understanding of technology and security topics.
• Must have ability to translate a set of technical issues into business risks.
• Develop assessment approach to address top risks for the organization
• Strong verbal and written communication
• Build on-going partnerships with senior level external clients and internal leadership
• Ability to work in a cross functional/matrix environment with proven track record of delivery through strong negotiation, influencing and relationship management skills.
• Ability to prioritize and multi-task in a fast-paced, high-growth environment
• Must have relevant experience working in large, global companies. Preference for experience in financial services, or technology industries BS/BA degree required, ideally in a STEM discipline
• Possess professional or industry certifications such as CISSP, CEH, OSCP, OSCE etc.

Additional Job Description:

Subsidiary:
PayPal

Travel Percent:
0

Our Benefits:
At PayPal, we're committed to building an equitable and inclusive global economy. And we can't do this without our most important asset-you. That's why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.
We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https://www.paypalbenefits.com

Who We Are:
Click Here to learn more about our culture and community.

PayPal has remained at the forefront of the digital payment revolution for more than 20 years. By leveraging technology to make financial services and commerce more convenient, affordable, and secure, the PayPal platform is empowering more than 400 million consumers and merchants in more than 200 markets to join and thrive in the global economy. For more information, visit paypal.com.

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@paypal.com.

As part of PayPal's commitment to employees' health and safety, we have established in-office Covid-19 protocols and requirements, based on expert guidance. Depending on location, this might include a Covid-19 vaccination requirement for any employee whose role requires them to work onsite. Employees may request reasonable accommodation based on a medical condition or religious belief that prevents them from being vaccinated.

This job has expired.