Risk and Compliance Oversight 1
PayPal Inc.

Job Info

---

Who we are

Fueled by a fundamental belief that having access to financial services creates opportunity, PayPal (NASDAQ: PYPL) is committed to democratizing financial services and empowering people and businesses to join and thrive in the global economy. Our open digital payments platform gives PayPal's 375 million active account holders the confidence to connect and transact in new and powerful ways, whether they are online, on a mobile device, in an app, or in person. Through a combination of technological innovation and strategic partnerships, PayPal creates better ways to manage and move money, and offers choice and flexibility when sending payments, paying or getting paid. Available in more than 200 markets around the world, the PayPal platform, including Braintree, Venmo and Xoom, enables consumers and merchants to receive money in more than 100 currencies, withdraw funds in 56 currencies and hold balances in their PayPal accounts in 25 currencies.

When applying for a job you are required to create an account, if you have already created an account - click Sign In.

Creating an account will allow you to follow the progress of your applications. Our system does have some requirements that will help us process your application, below are some guidelines for creation of your account:

• Provide full legal First Name/Family Name - this is important for us to ensure our future hires have the rightsystem set up.
• Please Capitalize first letter of your First and Last Name.
• Please avoid using fully capitalized text for your First and/or Last Name.
• NOTE: If your name is hyphenated or has multiple capitalization, please use the same format as your government ID.

Job Description Summary:
Technology and Security Risk and Compliance Analyst

Job Description:

Fueled by a fundamental belief that having access to financial services creates opportunity, PayPal (NASDAQ: PYPL) is committed to democratizing financial services and empowering people and businesses to join and thrive in the global economy. Our open digital payments platform gives PayPal's 286 million active account holders the confidence to connect and transact in new and powerful ways, whether they are online, on a mobile device, in an app, or in person.

Through a combination of technological innovation and strategic partnerships, PayPal creates better ways to manage and move money, and offers choice and flexibility when sending payments, paying or getting paid. Available in more than 200 markets around the world, the PayPal platform, including Braintree, Venmo, Hyperwallet and Xoom enables consumers and merchants to receive money in more than 100 currencies, withdraw funds in 56 currencies and hold balances in their PayPal accounts in 25 currencies.

PayPal is looking for new members of a team responsible for managing, implementing and maintaining the Technology & Information Security Compliance and Readiness program within PayPal Holdings, Inc.
This team ensures the ability to demonstrate the effectiveness of technology and information security controls by working with control owners to design and test controls to meet PayPal and industry standards and obligations as well as regulatory requirements. The candidate will partner with front line IT and Security technical staff, as well as enterprise-level risk and compliance teams. The team is responsible for providing a range of support activities that enables and ensure the organization is ready to meet and demonstrate compliance with security standards, regulatory requirements and related contractual obligations.

Areas of focus include information security, computer operations, systems development and application controls. Governance Risk and Compliance (GRC) activities include providing oversight and managing the ongoing execution of key controls. Activities will implement/leverage GRC tools for the assessing, tracking and reporting of control deficiencies and remediation activities. Areas of specific focus specifically include Payment Card International (PCI) and SSAE18 / SOC1/2 reporting and ISO 27001 management among others.

Last, the position may partner with first line IT technical staff and leadership as well as internal audit to assist in the assessment and measurement of compliance to obligations and requirements, identify required controls, and test and validate control effectiveness. Control objectives will be assessed with technical teams to identify and assess control design and operating effectiveness. Control reporting will be provided to leadership to assist in strategic decision-making activities to strengthen PayPal's security posture in addition to reporting on the security compliance readiness of various areas of the enterprise.

Responsibilities

• Interpret PayPal standards, regulatory and business requirements.
  
• Support, facilitate and coordinate internal, external audits and regulatory examination support on behalf of Technology and Information Security Oversight including PCI compliance and SSAE18 compliance.
  
• Participate in maintaining the overall Governance Risk and Compliance (GRC) management process and strategy from a compliance framework and oversight point of view.
  
• In collaboration with enterprise compliance, risk management and various technical teams, design and implement control self-assessments, risk assessments and regulatory compliance practices for Technology and Information Security Oversight.
  
• As part of a cross-functional team, perform reviews and tests of technical internal controls to ensure teams are operating adequate controls for various security and compliance objectives
  
• Partner with Security Awareness teams to proactively promote enhanced security controls and training across IT and business units.
  
• Monitor risk management activities, including dashboards, metrics, and reporting.
  
• Advise IT functional teams in the monitoring and reporting of control processes, documentation and compliance routines.
  
• Advise IT and business executives on the status and impact of security findings, technology risks and compliance issues based on assessment results and information from various discovery sources, monitoring and control systems.
  

Job Requirements

• 2+ years of experience in identification of risk and compliance.
  
• Broad technology and security knowledge across common industry security standards (e.g., ISO, NIST, COSO, COBIT, PCI, FFIEC, SOX, SSAE16/18, CSA, and others).
  
• Possess either of the following certifications: PCI-ISA, CISSP, CISA, CISM, or GIAC.
  
• PCI QSA / ISA experience preferred.
  
• Technical knowledge of security technologies and architecture in multiple security domains (such as infrastructure hardening, privileged access, data security, endpoint security, anti-malware, network security, application security and others).
  
• 2+ years of experience in developing security standards and implementing technical controls to meet standards and regulatory requirements.
  
• 1+ years of experience implementing and managing GRC technologies (e.g., Archer, ServiceNow) used for risk and compliance processes.
  
• Advanced MS Office skills: Word, PowerPoint, Excel & Database
  
• Excellent writing and verbal communication skills, interpersonal and presentation skills and the proven ability to influence and communicate effectively.
  
• Bachelor's degree from an accredited college (Information Technology, Information Assurance, Information Security or related disciplines preferred)
  

We are a purpose-driven company whose beliefs are the foundation for how we conduct business every day. We hold ourselves to our One Team Behaviors which demand that we hold ourselves to the highest ethical standards, to empower an open and diverse workplace, and strive to treat everyone who is touched by our business with dignity and respect. Our employees challenge the status quo, ask questions, and find solutions. We want to break down barriers to financial empowerment. Join us as we change the way the world defines financial freedom.

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities.

Subsidiary:
PayPal

Travel Percent:
0

Primary Location:
Scottsdale, Arizona, United States of America

Additional Locations:

We're a purpose-driven company whose beliefs are the foundation for how we conduct business every day. We hold ourselves to our One Team Behaviors which demand that we hold the highest ethical standards, to empower an open and diverse workplace, and strive to treat everyone who is touched by our business with dignity and respect. Our employees challenge the status quo, ask questions, and find solutions. We want to break down barriers to financial empowerment. Join us as we change the way the world defines financial freedom.

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@paypal.com.

This job has expired.