PayPal Sr Director Global Risk - 1LOD Incident Management 

United States, California, San Jose 

403143694

Essential Responsibilities:

• Sets clear vision and priorities for business with outlook ranging over 1-3 years
• Balances strategic overview with sharp execution
• Identifies multiple strategies to accelerate progress and results
• Liaises with stakeholders to meet common goals and helps overcome obstacles
• Maintain a high level of subject matter expertise to coach, guide and influence toward process, policy, product, and organizational changes.
• Lead the design and execution of the strategic direction and execution of the Risk Operations Program
• Engages organization with an inspiring vision of the business future

Minimum Qualifications:

• Minimum of 18 years of relevant work experience and a Bachelor's degree or equivalent experience.

Key Responsibilities:

• Global Incident Recovery Coordination: Oversee and elevate functional readiness for 24/7 global incident management by directing engagement with business leaders, external partners, Global Markets, and Technology Command Center to ensure seamless recovery operations.
• Resiliency Leadership and Oversight: Provide strategic stewardship to the Global Incident Command Center, Technology Command Center, Cyber Defense Center, and other critical teams. Ensure robust processes for triage, notification, escalation, and recovery planning are maintained and executed.
• Executive Incident Response Leadership: Demonstrate executive presence in leading real-time incident response efforts. Guide and counsel technical and business incident management teams (cyber, technology, client-facing) to ensure prompt and effective resolution of incidents across the global enterprise.
• Strategic Process and Contingency Planning: Architect and advance enterprise-wide incident response and crisis management plans. Ensure communication protocols, escalation paths, and contingency plans are developed, tested, and optimized for rapid decision making and crisis management authority delegation.
• Crisis Communication Protocols: Establish, monitor, and reinforce protocols for multi-level information exchange in crisis scenarios, defining clear delegations of authority to crisis teams and leadership tiers ensuring continuity and transparency in decision making.
• Client Resiliency and Enablement: Champion a client-first approach to operational resiliency, reliability, and stability for all PayPal business and technology services. Ensure the uninterrupted delivery and trust in PayPal's global network through proactive incident management.
• Enterprise Process Development: Lead the design, implementation, and continuous improvement of incident management frameworks, policies, and procedures, driving excellence in preparedness and response.
• Stakeholder Engagement and Communication: Serve as the senior escalation point and primary communicator for incident events, facilitating timely, transparent updates to stakeholders, including executive leadership, prudential regulators, and key external partners.
• Business Impact and Operational Response: Direct the development and maintenance of business unit processes and operational protocols, ensuring rigorous impact assessment, efficient resource mobilization, effective escalation, and clear communications during critical incidents.
• Organizational Training and Capability Development: Oversee the creation and delivery of advanced training and awareness programs designed to enhance incident response competencies across the organization.
• Metrics, Analytics, and Continuous Improvement: Establish and monitor key performance indicators (KPIs) and deliver regular analytical reports to track incident management effectiveness, drive accountability, and identify areas for operational improvement.
• Resiliency Exercises and Readiness Leadership: Lead the planning and execution of ongoing incident management readiness initiatives and tabletop exercises to continually test and strengthen organizational response capabilities.
• Regulatory Compliance and Operational Resiliency: Maintain strong awareness of evolving regulatory mandates and ensure critical processes, such as Recovery Time Objectives, are aligned and compliant with operational resiliency requirements.
• Post-Incident Remediation and Integration: Ensure comprehensive and timely post-incident remediation, partnering with Issue Management and Business Controls teams to drive closure, accountability, and process improvement following incidents.

Qualifications:

• 10+ years of progressive experience in cybersecurity, risk management, or a related field with significant incident response leadership experience managing diverse incident types.
• Demonstrated experience leading or acting as the "quarterback" for crisis management teams (such as army quarterback or tiger teams), driving command and strong control, engagement, and resolution in high-stakes, cross-functional incidents.
• Understanding of security frameworks, cyber threat landscapes, incident response methodologies, and multi-disciplinary incident management.
• Familiarity with forensic investigations, threat intelligence, cybersecurity defense operations, privacy breach response, fraud mitigation, and business continuity.
• Strong executive communication, presentation, and stakeholder engagement skills.
• Leadership of substantial distributed Internal Audit and/or Risk Controls teams.
• Ability to maintain composure and make sound decisions in high-pressure, high-stakes crisis events.
• Strategic thinker with a proactive approach to evolving threats and incident response challenges.
• Collaborative leader skilled in cross-functional partnership, mentoring, and talent development.
• Experience with the automation, orchestration, and integration of incident response across multiple incident domains.
• Excellent communication and interpersonal skills, with the ability to influence and collaborate effectively across all levels of the organization.
• Familiarity with regulatory compliance frameworks relevant to cybersecurity, privacy, fraud, data protection, and operational resilience.
• Bachelor’s degree in Business Administration, Finance, Economics, Communications, Computer Science, or related field; MBA or advanced degree preferred.

Travel Percent:

The total compensation for this practice may include an annual performance bonus (or other incentive compensation, as applicable), equity, and medical, dental, vision, and other benefits. For more information, visit .

The US national annual pay range for this role is $152,500 to $262,350

Our Benefits:

Any general requests for consideration of your skills, please