Chicago, Illinois
28 days ago
Cybersecurity Risk Analyst

The Company

PayPal has been revolutionizing commerce globally for more than 25 years. Creating innovative experiences that make moving money, selling, and shopping simple, personalized, and secure, PayPal empowers consumers and businesses in approximately 200 markets to join and thrive in the global economy. 

We operate a global, two-sided network at scale that connects hundreds of millions of merchants and consumers. We help merchants and consumers connect, transact, and complete payments, whether they are online or in person. PayPal is more than a connection to third-party payment networks. We provide proprietary payment solutions accepted by merchants that enable the completion of payments on our platform on behalf of our customers.

We offer our customers the flexibility to use their accounts to purchase and receive payments for goods and services, as well as the ability to transfer and withdraw funds. We enable consumers to exchange funds more safely with merchants using a variety of funding sources, which may include a bank account, a PayPal or Venmo account balance, PayPal and Venmo branded credit products, a credit card, a debit card, certain cryptocurrencies, or other stored value products such as gift cards, and eligible credit card rewards.  Our PayPal, Venmo, and Xoom products also make it safer and simpler for friends and family to transfer funds to each other. We offer merchants an end-to-end payments solution that provides authorization and settlement capabilities, as well as instant access to funds and payouts. We also help merchants connect with their customers, process exchanges and returns, and manage risk. We enable consumers to engage in cross-border shopping and merchants to extend their global reach while reducing the complexity and friction involved in enabling cross-border trade. 

Our beliefs are the foundation for how we conduct business every day.  We live each day guided by our core values of Inclusion, Innovation, Collaboration, and Wellness. Together, our values ensure that we work together as one global team with our customers at the center of everything we do – and they push us to ensure we take care of ourselves, each other, and our communities.

Job Description Summary:

We’re seeking an experienced Cybersecurity Risk Analyst to join our dynamic organization. This role will apply a strong knowledge of technology, cybersecurity, and data practices and frameworks, as well as qualitative and quantitative analytical skills, to develop, assess, frame, and coordinate high-impact changes to cybersecurity and technology and risk management practices across our family of brands including PayPal, Venmo, Xoom, and Zettle.

As a member of PayPal’s Cybersecurity Governance, Risk, and Compliance organization, accountable to the CISO, you will join a diverse and collaborative organization that works together to guide PayPal’s management of cyber and information security risks across the company, support compliance with evolving technology regulations and standards, and drive sound technology decision-making in support of the company’s mission and objectives.

Job Description:

Your way to impact 

In this role you will identify, assess, and mitigate information security risks across our organization’s infrastructure, applications, and business processes. This role combines technical expertise with business acumen to protect our digital assets while enabling business objectives. This position is highly collaborative, and will involve developing close working partnerships with engineering, architecture, risk management, compliance, legal, communications, government relations, and oversight teams. 

Your day to day  

In your day to day role you will: 

Lead independent and cross-functional projects to evaluate high-priority security and technology topics, issues, and risks in relation to PayPal’s products, people, processes, and technology. 

Work with key partners to propose, assess, frame, and advocate for changes to PayPal’s technology and cybersecurity practices, including requirements, guidance, roles, responsibilities, and strategy, based on evolving technologies, risks, industry standards, and compliance requirements. 

Identify and document key decision points, cost-benefit analysis, business trade-offs, technical and security risks, and other relevant factors for decision-makers related to technology and cybersecurity. 

Establish trusted working relationships with key partners across engineering, architecture, risk management, compliance, legal, communications, government relations, and oversight teams. 

Foster alignment with key partners on risk response proposals and implementation plans based on industry best practices, regulatory requirements, and organizational risk tolerance.  

Prepare working and executive-level reports, memos, and presentations to communicate complex concepts, risks, and recommendations in a clear and concise manner. 

What do you need to bring

Knowledge of current and emerging information technologies (e.g., AI / ML); cybersecurity threats and vulnerabilities; risk management processes and practices; industry standard control frameworks and best practices (e.g., NIST, ISO); and prominent cybersecurity and privacy regulations globally. 

Strong work ethic with proven ability to learn quickly, prioritize work, and manage complex deliverables to completion under established deadlines. 

Willingness to drill down into complex topics as needed to understand and validate key tactical or technical details with strategic level implications, and ability to identify and articulate those “big picture” considerations for key audiences. 

Superb consultative, adjudicative, investigative, and influencing skills, including business acumen, stakeholder empathy, and conflict resolution, as well as general comfort working in a dynamic, global, fluid, and matrixed working environment. 

Exceptional verbal and written communication and analysis skills, including experience developing high-quality written analysis, strategy, or policy documents  

Prior involvement in analysis, interpretation, and communication of legal or regulatory technology policy requirements. 

Practiced at targeting and delivering written work product and verbal presentations to varied audiences (e.g., executives, engineers, customers, regulators, etc.)  

Unquestionable professional and ethical integrity, ideally demonstrated through experience with projects of a sensitive, privileged, or confidential nature. 

Ability to approach and understand problems from a statistical or quantitative perspective and draw meaningful, accurate conclusions, as well as scrutinize models and inferences for misleading or overlooked considerations. 

Master’s Degree in a relevant discipline, such as cybersecurity, business, public policy, economics, statistics, risk management, or computer science; outstanding Bachelor’s Degree candidates will be considered. 

2+ years total experience in technology or security governance, policy, risk management, and / or compliance roles.   

Candidates will be expected to provide 2 writing samples on relevant topics, ideally published or graded academic work (1 long-form analytic writing sample; 1 short-form discursive or informative writing sample). 

Additional Job Description:

Subsidiary:

PayPal

Travel Percent:

0

For the majority of employees, PayPal's balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations.

Our Benefits:

At PayPal, we’re committed to building an equitable and inclusive global economy. And we can’t do this without our most important asset—you. That’s why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.

We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https://www.paypalbenefits.com.

Who We Are:

Click Here to learn more about our culture and community.

Commitment to Diversity and Inclusion 

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law.  In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities.  If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at talentaccommodations@paypal.com.  

Belonging at PayPal: 

Our employees are central to advancing our mission, and we strive to create an environment where everyone can do their best work with a sense of purpose and belonging. Belonging at PayPal means creating a workplace with a sense of acceptance and security where all employees feel included and valued. We are proud to have a diverse workforce reflective of the merchants, consumers, and communities that we serve, and we continue to take tangible actions to cultivate inclusivity and belonging at PayPal.

Any general requests for consideration of your skills, please Join our Talent Community.

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don’t hesitate to apply.

Confirm your E-mail: Send Email