PPEU ICT Risk & Resilience Manager
Listed on 2026-07-01
-
IT/Tech
Cybersecurity, Information Security, Data Security, IT Consultant
Pay Pal Europe Ict Risk & Resilience Manager
This job leverages security governance expertise to address complex security risks, partners with teams to drive security initiatives, applies analytical skills to assess risks, contributes to risk mitigation strategies, influences initiatives, and mentors team members.
Essential Responsibilities:
- Leverage specialized security governance and risk expertise to identify and address complex security risks, recommending best practices and determining new approaches that have an impact on broader security operations, while aligning strategies with business priorities
- Partner across teams and key stakeholders to drive security risk and governance initiatives, leading and solutioning complex projects and programs to strengthen overall security posture.
- Apply advanced analytical skills and sound judgment to assess and mitigate security risks, considering diverse perspectives and innovative solutions. Stay informed on industry trends and regulatory landscape while evaluating their security implications within the context of the Pay Pal's governance framework.
- Directly contribute to improvements within the security domain and occasionally beyond, ensuring decisions lead to meaningful enhancements in risk mitigation strategies and overall security practices.
- Leverage relationships across teams, both within and outside of security, to influence initiatives and integrate feedback into security governance processes and risk management practices.
- Develop and articulate clear plans and priorities for the team, guiding them to achieve security risk and governance objectives while fostering a collaborative and high-performance environment.
- Lead by example, providing mentorship and support to ensure the team successfully executes on initiatives and goals.
Minimum Qualifications:
- 5+ years relevant experience and a Bachelor's degree OR Any equivalent combination of education and experience.
Additional Responsibilities & Preferred Qualifications :
About the RolePPEU ICT Risk & Resilience Manager is a governance, risk, and control leader within the First Line of Defense, responsible for supporting Pay Pal Europe's adherence to the EU Digital Operational Resilience Act (DORA) and other applicable European regulatory frameworks. Based in Pay Pal Europe's European headquarters in Luxembourg, this role acts as a strategic bridge between local regulated entity obligations and enterprise-wide technology and security operations.
The role ensures that digital operational resilience, cyber risk management, and regulatory compliance are embedded into business strategy, change initiatives, and day-to-day operations. The role carries responsibility for monitoring, assessing, and reporting material ICT and cyber-related changes, supporting the effectiveness of cyber resilience controls, and contributing to cyber incident management and regulatory reporting. The role supports senior management reporting and assurance activities over the effectiveness of the technology and cyber security control environment in line with supervisory expectations.
• Ensure the design, effectiveness, and ongoing testing of BCM, DR, and cyber resilience controls, including resilience scenario testing and remediation tracking.
• Contribute to Pay Pal Europe's First Line execution and oversight of DORA requirements, including technology risk management, business continuity, disaster recovery, cyber resilience, and operational resilience testing.
• Support the monitoring and reporting of ICT resilience metrics and control effectiveness to senior management and governance forums.
Change Management & Material Change Oversight• Support oversight and documentation of the PPEU material change management framework from a technology, cyber, and resilience perspective.
• Ensure new product launches, major technology changes, outsourcing arrangements, and strategic initiatives undergo appropriate due care, including information security risk assessment and regulatory impact analysis.
• Monitor and challenge change initiatives to confirm compliance with…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).