Cybersecurity Risk Analyst

Position Overview

PayPal has been revolutionizing commerce globally for more than 25 years, empowering consumers and businesses in approximately 200 markets. We are seeking an experienced Cybersecurity and Risk Expert Analyst to join our dynamic Cybersecurity Governance, Risk, and Compliance organization. Reporting to the CISO, you will work with flagship brands including PayPal, Venmo, Xoom, and Zettle to identify, assess, and mitigate information security risks while enabling business objectives.

Key Responsibilities

• Identify, assess, and mitigate information security risks across our infrastructure, applications, and business processes.
• Create a culture of effective risk management, accountability, and risk awareness across the organization.
• Coordinate issue remediation efforts by translating technical risks into business terms and coaching teams on risk management.
• Lead independent and cross-functional projects to evaluate high-priority security and technology issues.
• Collaborate with key partners to propose, assess, and advocate for changes to PayPal’s technology and cybersecurity practices.
• Prepare executive-level reports, memos, and presentations to clearly communicate complex risks and recommendations.

Required Qualifications

• Proven knowledge of current and emerging information technologies, cybersecurity threats, risk management processes, industry standard frameworks (e.g., NIST, ISO), and global cybersecurity and privacy regulations.
• Demonstrated ability to learn quickly, prioritize work, and manage complex deliverables within established deadlines.
• Capacity to delve into complex topics, validating key tactical or technical details and articulating the “big picture” for varied audiences.
• Strong consultative, investigative, and influencing skills with business acumen and conflict resolution expertise.
• Exceptional verbal and written communication skills, including experience in developing high-quality strategy and policy documents.
• Experience in analyzing, interpreting, and communicating legal or regulatory technology policy requirements.
• Ability to deliver presentations and written reports to diverse audiences, including executives, engineers, and regulators.
• Unquestionable professional and ethical integrity, with experience managing sensitive and confidential projects.
• Master’s Degree in a relevant discipline (cybersecurity, business, public policy, economics, statistics, risk management, or computer science); outstanding Bachelor’s Degree candidates will be considered.
• Preferred certifications: CISM, CISA, CISSP, CGEIT, AAIA.
• 10+ years of experience in technology or security governance, policy, risk management, or compliance roles.

Benefits & Perks

• Compensation: Competitive salary with an annual performance bonus (or other incentive compensation), equity, and a national annual pay range of $152,500 to $262,350.
• Benefits: Comprehensive medical, dental, vision, health and life insurance along with additional perks.
• Flexible work environment and a balanced hybrid model (3 days in the office and 2 days remote) for effective collaboration and work-life balance.
• Opportunities for career growth in a diverse and inclusive environment.
• For more details, please visit https://www.paypalbenefits.com.