Sr Analyst, Incident Response

The Company

PayPal has been revolutionizing commerce globally for more than 25 years. Creating innovative experiences that make moving money, selling, and shopping simple, personalized, and secure, PayPal empowers consumers and businesses in approximately 200 markets to join and thrive in the global economy. 

We operate a global, two-sided network at scale that connects hundreds of millions of merchants and consumers. We help merchants and consumers connect, transact, and complete payments, whether they are online or in person. PayPal is more than a connection to third-party payment networks. We provide proprietary payment solutions accepted by merchants that enable the completion of payments on our platform on behalf of our customers.

We offer our customers the flexibility to use their accounts to purchase and receive payments for goods and services, as well as the ability to transfer and withdraw funds. We enable consumers to exchange funds more safely with merchants using a variety of funding sources, which may include a bank account, a PayPal or Venmo account balance, PayPal and Venmo branded credit products, a credit card, a debit card, certain cryptocurrencies, or other stored value products such as gift cards, and eligible credit card rewards.  Our PayPal, Venmo, and Xoom products also make it safer and simpler for friends and family to transfer funds to each other. We offer merchants an end-to-end payments solution that provides authorization and settlement capabilities, as well as instant access to funds and payouts. We also help merchants connect with their customers, process exchanges and returns, and manage risk. We enable consumers to engage in cross-border shopping and merchants to extend their global reach while reducing the complexity and friction involved in enabling cross-border trade. 

Our beliefs are the foundation for how we conduct business every day.  We live each day guided by our core values of Inclusion, Innovation, Collaboration, and Wellness. Together, our values ensure that we work together as one global team with our customers at the center of everything we do – and they push us to ensure we take care of ourselves, each other, and our communities.

Job Summary:

This role is responsible for orchestrating and executing all phases of the cybersecurity incident response lifecycle. You will lead high-impact investigations, coordinate multifaceted response efforts, and collaborate with interdisciplinary teams to contain and remediate security incidents. Drawing on hands-on experience, you will also guide process improvements and provide mentorship to junior analysts.

Job Description:

Essential Responsibilities:

• Independently apply security best practices to enhance and optimize cyber threat management, ensuring robust protection and efficiency, while beginning to understand and align security measures with business objectives.
• Partner with peers and internal teams to drive security initiatives, contribute to cross-functional projects, and at times co-lead efforts to strengthen security posture and cyber threat management.
• Analyze and resolve security challenges by adapting standard cyber threat management processes and exploring alternative approaches to address complex threats.
• Influence the quality, efficiency, and effectiveness of the team through informed decision-making, with a potential impact on other teams.
• Collaborate with key partners to gather and incorporate feedback, driving continuous improvements in cyber threat management.

Minimum Qualifications:

• Minimum of 5 years of relevant work experience and a Bachelor's degree or equivalent experience.

Preferred Qualification:

KEY RESPONSIBILITIES

• Serve as the primary Incident Response lead on significant cybersecurity incidents, coordinating all aspects from detection to resolution.

• Conduct technical investigations, leveraging advanced security tools, log analysis, threat intelligence, and forensics to identify root causes and potential impacts.

• Advise on and refine incident response protocols, playbooks, and standard operating procedures to streamline detection, containment, and remediation efforts.

• Collaborate with cross-functional teamsincluding infrastructure, applications, and risk managementto ensure escalations and communications are handled promptly and effectively.

• Drive proactive threat hunting initiatives to detect malicious activity and prevent potential incidents.

• Work directly with external stakeholders (such as third-party providers and consulting partners) to enhance the organization’s overall cybersecurity posture.

• Provide expertise and leadership in after-action reviews, collaborating on lessons learned and integrating new insights back into operational and strategic plans.

• Mentor and support junior team members, sharing knowledge on emerging threats, new security technologies, and investigation tactics.

DAY TO DAY RESPONSIBILITIES

• Coordinate Incident Detection and Triage

• Serve as the Incident Commander for Cybersecurity Events

• Conduct Technical Investigations and Analysis

• Facilitate Crisis-Level Escalations

• Orchestrate Containment and Eradication Efforts

• Drive Communication with Stakeholders and External Partners

• Oversee Recovery Activities and Post-Incident Closure

• Compile Evidence, Documentation, and Reports

• Lead After-Action Reviews and Root Cause Analysis

• Mentor and Guide Junior Analysts

QUALIFICATIONS & EXPERIENCE

• Proven track record of leadership in cybersecurity incident response, ideally gained as a lead in a SOC environment or as an incident manager/commander at a specialized security consulting firm.

• Solid understanding of incident handling techniques, digital forensics, threat intelligence, and the end-to-end incident response lifecycle.

• Proficiency with SIEM, EDR, threat intelligence platforms, forensic tools, and other security technologies to investigate security alerts.

• Experience interfacing with executive leadership and non-technical stakeholders, communicating complex security concerns in a clear and concise manner.

• Demonstrated ability to perform deep-dive investigations under pressure, maintaining accuracy and thoroughness during high-stake incidents.

• Familiarity with industry standards and best practices, with agility to map concepts across multiple cybersecurity disciplines.

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). Professional certifications (e.g., GCIH, GCFA, CISSP) are a plus.

JOINING OUR TEAM

As a Senior Analyst in our Cybersecurity Defense Center, you will have the opportunity to make a tangible impact by protecting our organization’s critical assets and ensuring swift, efficient responses to cyber threats. Your leadership will ensure not only the resolution of critical incidents but also the continual enhancement of our incident response strategies and the mentoring of a high-performing team.

If you are a results-driven professional with deep technical expertise, exceptional leadership capabilities, and a passion for defending an organization from modern cyber threats, we encourage you to apply and help shape our global security posture.

Subsidiary:

PayPal

Travel Percent:

0

-

PayPal is committed to fair and equitable compensation practices.

Actual Compensation is based on various factors including but not limited to work location, and relevant skills and experience.

The total compensation for this practice may include an annual performance bonus (or other incentive compensation, as applicable), equity, and medical, dental, vision, and other benefits. For more information, visit https://www.paypalbenefits.com.

The US national annual pay range for this role is $111,500 to $191,950

For the majority of employees, PayPal's balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations.

Our Benefits:

At PayPal, we’re committed to building an equitable and inclusive global economy. And we can’t do this without our most important asset—you. That’s why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.

We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https://www.paypalbenefits.com.

Who We Are:

Click Here to learn more about our culture and community.

Commitment to Diversity and Inclusion 

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law.  In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities.  If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at talentaccommodations@paypal.com.

Belonging at PayPal: 

Our employees are central to advancing our mission, and we strive to create an environment where everyone can do their best work with a sense of purpose and belonging. Belonging at PayPal means creating a workplace with a sense of acceptance and security where all employees feel included and valued. We are proud to have a diverse workforce reflective of the merchants, consumers, and communities that we serve, and we continue to take tangible actions to cultivate inclusivity and belonging at PayPal.

Any general requests for consideration of your skills, please Join our Talent Community.

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don’t hesitate to apply.