דרושים Director Cybersecurity Risk ב-Paypal ב-Mexico, Mexico City

Essential Responsibilities:

• Facilitate the onboarding process for new vendors, ensuring compliance with procurement policies and third-party risk management protocols.
• Create, review, and process purchase orders for goods and services, ensuring accuracy and adherence to financial controls.
• Track and monitor procurement activities to ensure timely delivery of goods and services, and resolve any issues that arise.
• Reconcile supplier invoices with purchase orders and delivery receipts, ensuring accurate and timely payment.
• Maintain positive relationships with suppliers, addressing any concerns or issues promptly to foster long-term partnerships.
• Implement cost control measures to manage organizational spend effectively and identify opportunities for cost savings.
• Ensure all procurement activities comply with company policies, financial controls, and regulatory requirements.
• Analyze procurement data to identify trends, generate reports, and provide insights for process improvements.
• Collaborate with cross-functional teams to optimize P2P processes, enhancing efficiency and effectiveness.
• Assist in internal and external audits by providing necessary documentation and information related to procurement activities.

Expected Qualifications:

• 1+ years relevant experience and a Bachelor’s degree OR Any equivalent combination of education and experience.

• Perform third party risk assessments within the end-to-end onboarding process.
• Review internal inherent risk questionnaire results to determine risk tier.
• Responsible for maintaining accurate risk record of vendors (holistic view) in the TPM tool based on their assessments.
• Work cross-functionally across stakeholder teams, including sourcing, vendor master registration, PO and invoicing, legal contracting, and business unit managers.
• Consult with Control Partners and the Third Party Oversight Second Line of Defense.
• Review external questionnaires and supporting evidence that risks identified are mitigated through proper controls. Generate observations for risk issues and remediation.
• Identify issues from the assessments and support the functional area in validating remediation efforts.
• Ensure compliance with policy and regulatory requirements throughout the third-party lifecycle.
• Understand the role of third-party risk management within the overall procurement and onboarding process.

Belonging at PayPal:

Any general requests for consideration of your skills, please

Your Day-to-Day:

As the Director of Software Engineering, you will guide the architecture and development of complex backend systems, drive innovation across teams, and mentor engineering leaders to ensure technical success throughout the organization.

• Serve as a technical leader responsible for the overall success of multiple business domains.
• Maintain a strategic vision and creatively initiate actions to achieve it.
• Lead and develop other technical leaders within the organization to collectively deliver beyond individual capabilities.
• Enhance the results and effectiveness of all software engineers across various projects.
• Provide guidance to senior executives at PayPal, influencing the development of multi-year business strategies.
• Exercise wide latitude in determining objectives and approaches, taking initiative to achieve meaningful results.
• Evaluate existing processes and introduce changes for improved outcomes.
• Manage ambiguous and complex situations using creativity to find effective solutions.
• Utilize discovery and exploratory research beyond technical domains for informed decision-making.
• Identify cross-project themes and leverage opportunities for organization-wide improvements.
• Adapt leadership style to meet organizational needs, selecting effective means to achieve technical goals.
• Effectively delegate responsibilities while setting clear expectations to achieve collective objectives.
• Mentor others to propagate technical influence and enhance team performance.
• Skilled at diagnosing true root causes of issues when existing solutions or processes limit success.
• Expert in envisioning and articulating technical solutions that meet business requirements and inspire executive stakeholders.
• Understand and align with the non-technical aspects of PayPal’s organization to make relevant and impactful decisions.

What You Need to Bring:

• Bachelor’s degree in Computer Science or a related field, with 18+ years of experience in backend engineering.
• Master’s degree in Computer Science or a related field is a plus, with extensive experience in backend engineering.
• Proficiency in Java and other Full stack technologies.
• Experienced with file systems, server architectures, and distributed systems.
• Strong background in distributed systems and microservices architecture.
• Proven track record of leading, building, and mentoring successful engineering teams.
• Understand and apply Artificial Intelligence to innovate and improve product development end-to-end while elevating engineering excellence on how we build, test, deploy, monitor and improve systems

Preferred Qualification:

• Experience with Agile methodologies in developing large-scale, high-performance systems.
• In-depth knowledge of the payment processing industry and relevant regulations.
• Familiarity with cloud platforms such as AWS, GCP, or Azure.
• Contributions to open-source projects are highly regarded.

Our Benefits:

Any general requests for consideration of your skills, please

Essential Responsibilities:

• Facilitate the onboarding process for new vendors, ensuring compliance with procurement policies and third-party risk management protocols.
• Create, review, and process purchase orders for goods and services, ensuring accuracy and adherence to financial controls.
• Track and monitor procurement activities to ensure timely delivery of goods and services, and resolve any issues that arise.
• Reconcile supplier invoices with purchase orders and delivery receipts, ensuring accurate and timely payment.
• Maintain positive relationships with suppliers, addressing any concerns or issues promptly to foster long-term partnerships.
• Implement cost control measures to manage organizational spend effectively and identify opportunities for cost savings.
• Ensure all procurement activities comply with company policies, financial controls, and regulatory requirements.
• Analyze procurement data to identify trends, generate reports, and provide insights for process improvements.
• Collaborate with cross-functional teams to optimize P2P processes, enhancing efficiency and effectiveness.
• Assist in internal and external audits by providing necessary documentation and information related to procurement activities.

Minimum Qualifications:

• Minimum of 2 years of relevant work experience and a Bachelor's degree or equivalent experience.

Preferred Qualification:

• 2+ years of third-party risk or related controls management experience
• GRC and/or risk platforms (Ariba, Certa Interos) a plus
• Demonstrated leadership and project management experience
• Excellent analytical, problem solving and decision-making ability
• Must navigate gray areas, multitask, and manage competing priorities under demanding deadlines
• Verbal, written, presentation (PowerPoint), and interpersonal communications skills
• Relentless customer focus
• Excellent interpersonal skills. Ability to work across the organization and interact and influence effectively at all levels of management and peers through communication and listening
• PayPal culture carrier, a source of energy and inspiration
• Comfortable working both independently and collaboratively in a global team setting

Our Benefits:

Any general requests for consideration of your skills, please

Essential Responsibilities:

• Provide expert advice and strategic counsel to senior executives, shaping the development of multi-year risk management and security governance strategies that align with business goals and long-term organizational objectives.
• Determine the most effective methods and strategies for addressing complex security risks, driving innovation through collaboration with cross-functional teams to shape the organization’s security risk management and governance landscape.
• Identify and resolve unique, high-impact security risks, applying deep expertise to situations of substantial significance, and develop innovative solutions that influence and strengthen the organization’s security framework.
• Drive the future risk management and security governance roadmap, shaping the security vision that supports business growth and mitigates risk to provide a competitive advantage.
• Lead the development and execution of key components of the multi-year security strategy, contributing to the broader security agenda within the organization.
• Inspire and motivate team(s) to pursue innovative solutions, ensuring alignment with the overall security strategy and business objectives, while fostering a culture of excellence and continuous improvement.

Minimum Qualifications:

• Minimum of 15 years of relevant work experience and a Bachelor's degree or equivalent experience.

Strategic Alignment & Governance

• Ensure the alignment of global cybersecurity strategies, frameworks, and policies with local and regional regulatory requirements, particularly in high-regulation environments such as LATAM.
• Bridge global objectives with in-country execution by enabling the adoption of enterprise-wide programs within local regulatory and operational constraints.
• Advise senior executives and board-level stakeholders on cyber governance maturity and alignment with business strategy.

Operational Security Leadership

• Act as the designated Information Security Officer for regulated financial entities, fulfilling local legal and supervisory expectations.
• Serve as the Entity Service Owner for intra-group technology services, with oversight of service level adherence, security control effectiveness, and compliance at the point of delivery.

Cyber Resilience Program Leadership

• Lead the design, execution, and continuous evolution of cyber resilience programs, ensuring robust preparedness through business impact analyses, recovery strategies, and end-to-end testing.
• Deliver tangible evidence of operational readiness, integrated with IT disaster recovery, business continuity, and third-party resilience plans.
• Ensure alignment with global resilience standards and evolving regulatory expectations, including regional LATAM frameworks.

Regulatory Compliance & Readiness

• Maintain an authoritative inventory of cybersecurity regulatory obligations across LATAM and global markets.
• Proactively ensure that controls are designed, implemented, and tested to meet external audit and supervisory examination standards.
• Partner with Legal, Compliance, and Risk teams to anticipate regulatory changes and adjust cybersecurity posture accordingly.

Cyber Risk Management & Control Operation

• Operate and continuously improve first-line cybersecurity controls across infrastructure, applications, and third-party services.
• Monitor control effectiveness, identify risks and control deficiencies, and lead remediation planning in coordination with second and third lines of defense.
• Represent cybersecurity in key governance forums, including entity-level risk committees, IT steering groups, and audit/regulatory readiness sessions.

Incident Preparedness & Security Advocacy

• Direct and participate in incident response planning, simulations, tabletop exercises, and post-incident reviews.
• Serve as the first point of escalation for local cybersecurity incidents, coordinating response with global SOCs, legal teams, and regulators as necessary.
• Foster a culture of cyber awareness across business and technology functions through targeted communications, training, and leadership engagement.

What you need to bring

• 15+ years of experiencein cybersecurity, ICT risk, or operational resilience in theLatin American financial sector.
• Proven track record leadingsecurity and risk functions in regulated financial institutions, including engagement with BACEN, CNBV, CMF, SUSEP, or SFC.
• Strong understanding offinancial regulatory ecosystems, cross-border data protection laws (e.g., LGPD), and banking/insurance sector dynamics.
• Demonstrated ability to manage complex regulatory environments and lead teams across geographies and languages.
• Executive-level communication skills and board-facing experience are essential.

Preferred Certifications

• CISSP, CISM, CRISC, or similar cybersecurity credentials
• DRI/BCI Business Continuity certifications
• ITIL, ISO 27001 Lead Auditor, or equivalent regulatory frameworks
• Familiarity with NIST CSF, COBIT, and regional cloud/data protection laws

Our Benefits:

Any general requests for consideration of your skills, please

Essential Responsibilities:

• Provide expert advice and strategic counsel to senior executives, shaping the development of multi-year risk management and security governance strategies that align with business goals and long-term organizational objectives.
• Determine the most effective methods and strategies for addressing complex security risks, driving innovation through collaboration with cross-functional teams to shape the organization’s security risk management and governance landscape.
• Identify and resolve unique, high-impact security risks, applying deep expertise to situations of substantial significance, and develop innovative solutions that influence and strengthen the organization’s security framework.
• Drive the future risk management and security governance roadmap, shaping the security vision that supports business growth and mitigates risk to provide a competitive advantage.
• Lead the development and execution of key components of the multi-year security strategy, contributing to the broader security agenda within the organization.
• Inspire and motivate team(s) to pursue innovative solutions, ensuring alignment with the overall security strategy and business objectives, while fostering a culture of excellence and continuous improvement.

Minimum Qualifications:

• Minimum of 15 years of relevant work experience and a Bachelor's degree or equivalent experience.

Strategic Alignment & Governance

• Ensure the alignment of global cybersecurity strategies, frameworks, and policies with local and regional regulatory requirements, particularly in high-regulation environments such as LATAM.
• Bridge global objectives with in-country execution by enabling the adoption of enterprise-wide programs within local regulatory and operational constraints.
• Advise senior executives and board-level stakeholders on cyber governance maturity and alignment with business strategy.

Operational Security Leadership

• Act as the designated Information Security Officer for regulated financial entities, fulfilling local legal and supervisory expectations.
• Serve as the Entity Service Owner for intra-group technology services, with oversight of service level adherence, security control effectiveness, and compliance at the point of delivery.

Cyber Resilience Program Leadership

• Lead the design, execution, and continuous evolution of cyber resilience programs, ensuring robust preparedness through business impact analyses, recovery strategies, and end-to-end testing.
• Deliver tangible evidence of operational readiness, integrated with IT disaster recovery, business continuity, and third-party resilience plans.
• Ensure alignment with global resilience standards and evolving regulatory expectations, including regional LATAM frameworks.

Regulatory Compliance & Readiness

• Maintain an authoritative inventory of cybersecurity regulatory obligations across LATAM and global markets.
• Proactively ensure that controls are designed, implemented, and tested to meet external audit and supervisory examination standards.
• Partner with Legal, Compliance, and Risk teams to anticipate regulatory changes and adjust cybersecurity posture accordingly.

Cyber Risk Management & Control Operation

• Operate and continuously improve first-line cybersecurity controls across infrastructure, applications, and third-party services.
• Monitor control effectiveness, identify risks and control deficiencies, and lead remediation planning in coordination with second and third lines of defense.
• Represent cybersecurity in key governance forums, including entity-level risk committees, IT steering groups, and audit/regulatory readiness sessions.

Incident Preparedness & Security Advocacy

• Direct and participate in incident response planning, simulations, tabletop exercises, and post-incident reviews.
• Serve as the first point of escalation for local cybersecurity incidents, coordinating response with global SOCs, legal teams, and regulators as necessary.
• Foster a culture of cyber awareness across business and technology functions through targeted communications, training, and leadership engagement.

What you need to bring

• 15+ years of experiencein cybersecurity, ICT risk, or operational resilience in theLatin American financial sector.
• Proven track record leadingsecurity and risk functions in regulated financial institutions, including engagement with BACEN, CNBV, CMF, SUSEP, or SFC.
• Strong understanding offinancial regulatory ecosystems, cross-border data protection laws (e.g., LGPD), and banking/insurance sector dynamics.
• Demonstrated ability to manage complex regulatory environments and lead teams across geographies and languages.
• Executive-level communication skills and board-facing experience are essential.

Preferred Certifications

• CISSP, CISM, CRISC, or similar cybersecurity credentials
• DRI/BCI Business Continuity certifications
• ITIL, ISO 27001 Lead Auditor, or equivalent regulatory frameworks
• Familiarity with NIST CSF, COBIT, and regional cloud/data protection laws

Our Benefits:

Any general requests for consideration of your skills, please

Job Description:

In your day-to-day role you will:

• Deliver regulatory requirements for PayPal Mexico Legal Entities, this position is responsible for support of second line oversight of the PPMX’s Risk and Compliance Management Program driving a data-driven approach that meets both the PayPal framework and all local regulatory requirements.
• Assist with all aspects related to regulatory requirements, ensuring adherence to applicable laws and standards.
• Provide guidance to business partners relating to the development of controls for critical business processes to mitigatecompliance/operationalrisk.
• Assist in execution of the compliance risk assessments.
• Support ongoing and targeted compliance monitoring and/or testing.
• Provide ongoing support of business unit’s issue management and remediation efforts.
• Assist with the development of applicable policies.
• Provide business with guidance and oversight of new product development initiatives.
• Prepare periodic reports summarizing the business units’ risk and control environment.
• Engage key Risk and Compliance program stakeholders to help support business unit initiatives.
• Ensure compliance with Banxico’s Circular 14/2017 and other relevant SPEI regulations.
• Develop and update risk prevention, AML/CFT, and cybersecurity policies for SPEI.
• Coordinate internal and external audits related to SPEI operations.
• Generate reports on compliance and risks associated with SPEI controls.
• Support the preparation and submission of regulatory reports to Condusef, CNBV and Banxico ensuring compliance with local regulations.

Qualifications/Education/Experience/Skills:

• Deep knowledge of global financial institutions, payments aggregators, money service business, ITFs, and/or banking compliance.
• At least 7+ years of experience in a large organization or financial supervisory agency including demonstrated leadership in building and overseeing Compliance Programs comprised by -among others- privacy, anticorruption, anti-bribery, consumer protection.
• Extensive experience with regulators and the regulatory exam process, ideally for financial institutions.
• Ability to navigate across multiple geographies, including global shared services functions that reside outside of Mexico.
• Demonstrated ability to build and maintain relationships with key stakeholders, including strengths in influencing, conflict management, and negotiation.
• Ability to communicate complex matters in a simple and clear manner.
• Ability to take ownership of outcomes and the ability to work with business unit teams to confront issues and drive performance.
• Skilled at identifying and recommending cost effective solutions and organizing resource allocation.
• Extensive experience in partnering with and counseling senior business clients, particularly in the context of a rapidly changing environment.
• Strong problem solving and operational process skills and attention to detail.
• Excellent ability to analyze regulatory risks in complex business processes and recommend controls to mitigate those risks.
• Excellent presentation and project management skills with the ability to successfully work multiple issues at one time.
• High energy and creativity, an entrepreneurial spirit and the desire to work in a growing and changing environment.
• Ability to work within a matrixed environment, and cross functionally with operations and technology functions.
• Ability to operate with strong integrity with the ability to handle projects of a sensitive and confidential nature.
• Strong computer knowledge; excellent MS Word, Excel, Visio, and PowerPoint skills.

Our Benefits:

Any general requests for consideration of your skills, please

Responsibilities:

• Provide governance and legal entity oversight of Mexico to support the development of PayPal’s business, organization, employees, and brand.

• Support the execution of strategic regulatory engagement plan for Mexico to continually uplift the relationship with key regulatory agencies.

• Function as the senior leadership representative during onsite audits and discussions with regulators on critical issues.

• Help drive legal/regulatory advice on potential growth initiatives and be accountable for the impact on legal entity management.

• Enable the business to move quicker by streamlining processes and ensuring control functions are suitably able to support commercial objectives.

• Ensure the entity has clear and open communication channels back to head office.

• Provide leadership that encourages the management team to further coalesce into a high-performing, unified whole.

• Promote PayPal’s internal and external image and reputation internationally.

• Attract, motivate, develop, and retain superior executive talent.

• Build effective, trust-based, working relationships with Head Office, the local Boards, Regulators, Government, Industry bodies and other key stakeholders.

• Establish and maintain strong contacts with key officials, including legal, legislative, regulatory and law enforcement individuals and organizations.

• Monitor and track legislation and regulatory initiatives impacting PayPal.

• Support crisis management matters with management.

• Understand and support local licensing requirements to ensure appropriate compliance with the obligations and how it can enable strategic business objectives for Mexico.

Qualifications:

• 15+ years’ experience including prior experience as a General Manager / Chief Operating Officer or functional executive, in an international leadership team of a significant financial services business of scale and complexity or in related regulated industries.

• Experience interacting with independent Boards and Regulators.

• Familiarity with the Mexico markets, coupled with perspectives from working in a matrixed environment. Ideally this leader would have experience working for a US multi-national at some stage in their career.

• Knowledgeable about competitive forces within and outside of the industry.

• Track record of driving results for an organization.

• BS/BA Required

• Masters/MBA Preferred

Capabilities:

• Financially astute and knowledgeable about regulated businesses.

• Personal authority and gravitas to have impact and influence at the top level with regulators, business leaders and other key opinion formers.

• Maintain an ambitious yet balanced focus on performance, financial results, client satisfaction, and organizational well-being.

• Strong analytical skills and able to make clear and well-judged decisions in the face of uncertainty.

• Commitment to grow and improve the business in a way that is sustainable, measurable, and long term.

• Anticipates current and future customer needs within a climate that is rapidly changing and being disrupted.

• Inspires and encourages entrepreneurial drive and innovation in the organization.

• Pragmatic, collegiate, courageous, and balanced; ability to both challenge and support.

Interpersonal:

• The interpersonal skills to build mutually respectful, trust-based relationships with head office executives, local boards, and other stakeholders.

• Comfortable managing ambiguity.

• Cultural sensitivity to operate effectively across a diverse international network.

• Demonstrate clear communication and a high-level of emotional intelligence; be a thoughtful listener, exhibiting wisdom and strength when necessary.

• Resilient, self-confident (but not arrogant), able to handle being in the spotlight, calm in a crisis and decisive under pressure.

Leadership and Diplomacy:

• Able to create and articulate an inspiring vision for the organization.

• Track record of attracting and recruiting diverse top talent. Should motivate and develop the team, delegate effectively, celebrate diversity within the team, and manage performance.

• Lead through change and acts as a role model for new ways and standards of working being open, dependable, and connected.

• Demonstrates experience of guiding boards through strategic change.

BusinessPartnering/Influence:

• Adaptable to changes in the financial services and technology sectors giving the evolving competitive and regulatory environment.

• Ability to understand, empathize and influence within the challenges and opportunities that lie ahead for PayPal.

• Naturally connects and builds strong relationships with others, demonstrating emotional intelligence and an ability to communicate clearly and persuasively.

• Able to influence senior leaders with different views and management styles. Will connect with the Head Officer Management team and be able to work in a matrix environment, whilst respecting boundaries.

Executing for Results:

• Ability to set clear and challenging goals while committing to the organization to improve performance; tenacious and accountable in driving efficiencies and results.

• Comfortable with ambiguity and uncertainty; the ability to adapt and lead others through complex situations.

• A risk-taker who seeks data and input from others to foresee possible threats or unintended circumstances from decisions; someone who takes smart risks.

• A leader who is viewed by others as having a high degree of integrity and forethought in their approach to making decisions; the ability to act in a transparent and consistent manner.

Background / Technical Skills:

• Demonstrate a broad understanding of PayPal’s overall value proposition.

• Excellent regulatory relationships and understanding.

• Technical credibility across a broad range of functions.

• Ability to help navigate complex legal entity structures and partnerships. Will understand the nuances of operating internationally, particularly in Mexico.

Our Benefits:

Any general requests for consideration of your skills, please