The Company

PayPal has been revolutionizing commerce globally for more than 25 years. Creating innovative experiences that make moving money, selling, and shopping simple, personalized, and secure, PayPal empowers consumers and businesses in approximately 200 markets to join and thrive in the global economy.

We operate a global, two-sided network at scale that connects hundreds of millions of merchants and consumers. We help merchants and consumers connect, transact, and complete payments, whether they are online or in person. PayPal is more than a connection to third-party payment networks. We provide proprietary payment solutions accepted by merchants that enable the completion of payments on our platform on behalf of our customers.

We offer our customers the flexibility to use their accounts to purchase and receive payments for goods and services, as well as the ability to transfer and withdraw funds. We enable consumers to exchange funds more safely with merchants using a variety of funding sources, which may include a bank account, a PayPal or Venmo account balance, PayPal and Venmo branded credit products, a credit card, a debit card, certain cryptocurrencies, or other stored value products such as gift cards, and eligible credit card rewards. Our PayPal, Venmo, and Xoom products also make it safer and simpler for friends and family to transfer funds to each other. We offer merchants an end-to-end payments solution that provides authorization and settlement capabilities, as well as instant access to funds and payouts. We also help merchants connect with their customers, process exchanges and returns, and manage risk. We enable consumers to engage in cross-border shopping and merchants to extend their global reach while reducing the complexity and friction involved in enabling cross-border trade.

Our beliefs are the foundation for how we conduct business every day. We live each day guided by our core values of Inclusion, Innovation, Collaboration, and Wellness. Together, our values ensure that we work together as one global team with our customers at the center of everything we do – and they push us to ensure we take care of ourselves, each other, and our communities.

Job Summary:

The Manager, Governance & Risk Solutions Engineering is a is a technical leadership role within the AI, Data and Platform Technology (ADAPT) organization responsible for driving automated control monitoring, engineering-led remediation, and scalable risk solutions across ADAPT's complex technology infrastructure. This role serves as the primary technical connector between ADAPT internal stakeholders, the Business Risk and Compliance Liaison (BRCL) function, and the Second Line of Defense (SLOD), ensuring adherence to enterprise frameworks while enabling business agility and operational resilience through technology-enabled improvements. The ideal candidate brings deep technical knowledge of risk lifecycle management, hands-on experience with GRC platforms and compliance tooling, strong internal audit partnership experience, and a proven track record of delivering engineering-driven risk solutions within complex, matrixed financial services or fintech environments.

Job Description:

Essential Responsibilities:

Leverage specialized security governance and risk expertise to identify and address complex security risks, recommending best practices and determining new approaches that have an impact on broader security operations, while aligning strategies with business priorities
Partner across teams and key stakeholders to drive security risk and governance initiatives, leading and solutioning complex projects and programs to strengthen overall security posture.
Apply advanced analytical skills and sound judgment to assess and mitigate security risks, considering diverse perspectives and innovative solutions. Stay informed on industry trends and regulatory landscape while evaluating their security implications within the context of the PayPal’s governance framework.
Directly contribute to improvements within the security domain and occasionally beyond, ensuring decisions lead to meaningful enhancements in risk mitigation strategies and overall security practices.
Leverage relationships across teams, both within and outside of security, to influence initiatives and integrate feedback into security governance processes and risk management practices.
Develop and articulate clear plans and priorities for the team, guiding them to achieve security risk and governance objectives while fostering a collaborative and high-performance environment.
Lead by example, providing mentorship and support to ensure the team successfully executes on initiatives and goals.

Minimum Qualifications:

5+ years relevant experience and a Bachelor’s degree OR Any equivalent combination of education and experience.

Additional Responsibilities & Preferred Qualifications:

Key Responsibilities:

Issue Management &Technical Remediation:Drivethe end-to-end ADAPT Issue Management lifecycle, including identification, documentation, engineering-led remediation oversight, and sustainable closure. Drive technical root cause analyses, code-level vulnerability remediation, and engineering sprint integration to ensure systemic risk reduction across the organization.

Technical Control Engineering:Design, build, and operationalize automated control monitoring frameworks and risk detection tooling,leveragingdata pipelines, dashboards, and alerting systems to enable real-time risk visibility across ADAPT's technology stack. Automate recurring control deficiencies and drive continuous improvement through scalable, technology-enabled solutions.

Stakeholder & Second Line Engagement:Partner with internal and external risk and compliance stakeholders, including Cybersecurity, SLOD, and Product & Engineering teams, to support business initiatives and execute Second Line of Defense requirements, tracking progress on control process adherence and technical mitigation strategies.

Risk & Compliance Advisory:Provide technical advisory on the Enterprise Risk and Compliance Management Framework within the ADAPT organization, spanning Issue and Incident Management, New Hire Compliance Training, Policy Management, and Product Change Management, translating regulatory and policy requirements into actionable technical control specifications.

Proactive Risk Monitoring: Drive and oversee proactive monitoring of risk initiatives, including live bugs, security vulnerabilities, issues & remediation plans, and root cause analyses ensuringtimelyremediation and continuous improvement of operational resilience.

Risk Mitigation & Remediation: Develop and propose effective technical risk mitigation and remediation strategies, including engineering remediation blueprints and corrective actionplans. Collaborate with ADAPT engineering leaders to implement sustainable solutions and integrate remediation efforts into existing development workflows.

Internal Audit Partnership: Serve as the primary technical liaison for Internal Audit engagements, translating audit findings into engineering remediation plans, owning evidence collection across technology systems, and driving closure of audit-identified and self-identified issues with measurable technical outcomes. Surface emerging risk themes and exposures fortimelyleadership action.

Leadership Enablement & Reporting: Lead leadership enablement by developing and managing biweekly executive presentations thatconsolidateKPI metrics and program health updates, providing senior management with comprehensive visibility into ADAPT risk initiatives.

Governance & Standardization: Drive consistency and excellence across risk deliverables through standardized methodologies, templates, and review protocols aligned with enterprise governance standards.

Manager, Governance & Risk Solutions Engineering

About the role