Manager - Technology GRC in San Jose at PayPal

Date Posted: 10/23/2018

Job Snapshot

Job Description

Fueled by a fundamental belief that having access to financial services creates opportunity, PayPal (NASDAQ: PYPL) is committed to democratizing financial services and empowering people and businesses to join and thrive in the global economy. Our open digital payments platform gives PayPal’s 254 million active account holders the confidence to connect and transact in new and powerful ways, whether they are online, on a mobile device, in an app, or in person. Through a combination of technological innovation and strategic partnerships, PayPal creates better ways to manage and move money, and offers choice and flexibility when sending payments, paying or getting paid. Available in more than 200 markets around the world, the PayPal platform, including Braintree, Venmo and Xoom enables consumers and merchants to receive money in more than 100 currencies, withdraw funds in 56 currencies and hold balances in their PayPal accounts in 25 currencies.

Reporting to the CPI/Technology GRC leader, the Technology GRC manager, will have the responsibility for managing the CPI/Technology (including Security) governance, risk & compliance requirements as part of the First Line of Defense (FLOD) function for the CTO organization. The candidate will lead change and rollout of comprehensive programs to manage risks, internal controls, as well as compliance obligations for the Technology organization. The framework of the program will be based on the PayPal Global Governance, Risk & Compliance (Second Line of Defense - SLOD) policies as well as the goals, principles and strategies of the Technology Organization. The candidate will ensure appropriate controls are in place, key stakeholders are engaged, senior leaders are informed while driving risk mitigation and helping PayPal avoid events that could adversely impact our business objectives.

The ideal candidate must be, without a doubt, passionate about our customers, partners, stakeholders, and technology. Excellent interpersonal skills, communication, and leadership skills will be critical for success. Success depends on building rapport and credibility with multiple stakeholders across the organization to organize and drive execution.

This role will report into the CPI/Technology Governance, Risk and Compliance leader as part of the CTO GRC function.  This role is responsible for ensuring that the organization has a robust risk and compliance program as part of the first line of defense (FLOD) according to industry standards and in line with applicable PayPal enterprise policies.

Duties of the role include, but not limited to:

•       Understand and apply the enterprise policies, standards and framework for governance, risk & compliance.

•       Understand the Enterprise Risk Management standard on how to identify, assess, mitigate, monitor, test and report on risks and controls required by the CPI organization (which includes Technology & Security portfolios)

•       Partner with Second Line of Defense (SLOD) team to understand expectations for managing cross-functional risks and dependencies; deploy processes to comply with policy expectations which may require implementation of required controls and on-going monitoring & reporting.

•       Establish an effective system of internal controls that is designed, implemented and executed to provide an acceptable level of residual risk

•       Effectively respond to all self-identified issues, Internal Audit and regulatory findings

•       Develop and manage the planning and testing roadmap of CPI controls; creates and maintains documentation of test plans, test results, and resulting issues/gaps.

•       Supports audits, exams, and risk assessments by SLOD, Internal Audit, and regulators using industry standards.

•       Developing and presenting recommendations to management based on risk and compliance impact in a Subject Matter Expertise capacity for all CPI risk and compliance initiatives.

•       Negotiating appropriate remediation plans for identified issues while maintaining internal and external relationships.

•       Supports GRC reporting and status updates including KRI and KPI metrics.

The ideal candidate will:

•       Support the CPI and CTO GRC leaders and other stakeholders in driving visibility throughout the organization on the risk and compliance programs and responsibilities.

•       Be able to engage at all levels of the organization to organize, drive and communicate results.

•       Ensure plans and roles are well understood by all levels within the organization.

•       Utilize a deep understanding of risk management methodologies, frameworks, and principles (e.g. COBIT, ISO, NIST, CSA, ITIL, PCI, GDPR, etc.) to evaluate and recommend best approach to mitigating risk with best in class controls.

•       Operate in a fast-paced environment and able to handle a number of simultaneous projects and tasks while demonstrating urgency and ownership to drive issues to completion.

•       Innovate in the PayPal dynamic workplace by designing repeatable, sustainable processes that operationalize the risk management function

•       Possess strong oral and written communication skills along with refined presentation skills and the ability to work with other departments and varying levels of management, including senior leadership.

•       Have strong ability to work with minimum direction and possess a high drive for results.

•       Bachelor’s degree in Computer Science, Engineering, or Information Management Systems

•       8+ years of experience in IT/Technology/Information Security Internal Audit, ERM, or consultancy.

•       Experience from Big-4 audit firms is a big plus.

•       Certifications highly desired (CISA, CIA, CISM, CISSP, CRISC, etc.)

We're a purpose-driven company whose beliefs are the foundation for how we conduct business every day. We hold ourselves to our One Team Behaviors which demand that we hold the highest ethical standards, to empower an open and diverse workplace, and strive to treat everyone who is touched by our business with dignity and respect. Our employees challenge the status quo, ask questions, and find solutions. We want to break down barriers to financial empowerment. Join us as we change the way the world defines financial freedom.

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities.



  1. IT Jobs
  2. IT Manager Jobs