Job Summary
As the regional Technology and Information Security Oversight Officer, you will lead independent oversight of technology and cybersecurity risk for PayPal's UK regulated entity. This Second Line of Defense role requires you to provide effective challenge to how we manage technology and security risks, ensuring PayPal UK meets its regulatory obligations. Success requires credibility with senior executives, regulators, and governance bodies, and the ability to communicate clearly at board level.
Essential Responsibilities
* Recognized as a security governance, risk, and compliance expert, independently address the most complex security risks and provide strategic direction on risk mitigation and governance practices across the security domain.
* Define methods and procedures for new or special assignments, collaborating with cross‑functional teams to drive security risk and governance initiatives that align with business needs and objectives.
* Lead complex, high‑impact security governance and risk management initiatives, leveraging a deep understanding of business trends and security challenges to develop innovative risk mitigation strategies and solutions.
* Maintain a keen awareness of the broader impact of decisions, leading initiatives that drive enterprise‑wide improvements in risk management and security governance, enhancing overall security practices and operational efficiency.
* Lead a security risk and governance team; set clear priorities and define actionable plans, ensuring alignment with organizational goals.
* Guide team members through complex challenges, fostering their growth and development while maintaining a focus on high‑impact results.
Minimum Qualifications
* 8+ years relevant experience and a Bachelor’s degree OR any equivalent combination of education and experience.
Preferred Qualifications
* Strong background in technology and cybersecurity risk management; experience in independent oversight, second line of defense, or audit within a regulated financial services organization.
* Proven ability to engage at executive and board level, including direct interaction with regulators such as the FCA and PRA.
* Excellent written and verbal communication skills, with the ability to explain complex security and technology risk topics to both technical and non‑technical audiences.
* Strong influencing, negotiation, and relationship‑building skills; comfortable operating across organizational boundaries to drive outcomes.
* Solid understanding of UK regulatory frameworks, including PS21/3, the FCA Handbook, and the Senior Managers and Certification Regime. Familiarity with EU frameworks such as DORA and PSD2 is a plus.
* Professional certifications such as CISSP, CISM, or CRISC; working knowledge of COBIT, NIST CSF, PCI DSS, or ISO 27001.
Travel Requirements
0%
Equal Employment Opportunity Statement
PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@paypal.com.
#J-18808-Ljbffr