Temporary work opportunities align well with people who are looking for career flexibility and less traditional ways of working, but at the same time are people driven to deliver amazing work in high-profile situations. Magnit Direct Source is a service offered by Magnit Global that provides top talent directly to industry leading clients who have a variety of flexible temporary assignments that unlock opportunities for exciting work. As a temporary contractor, you will be employed by our Direct Source partner, Magnit Global. Please note, this is a role with Magnit Global and you will not be a PayPal employee. This role is not eligible for any benefits under any benefit plan of PayPal, PayPal Affiliates, or their respective successors and assigns.

Location:

Remote, USA - CST hours

Description:

Business Analyst Job Duties and Responsibilities - The candidate will partner with front line IT and Security technical staff, as well as enterprise-level risk and compliance teams. The team is responsible for providing a range of support activities that enables and ensure the organization is ready to meet and demonstrate compliance with security standards, regulatory requirements and related contractual obligations.

Areas of focus include information security, computer operations, systems development and application controls. Governance Risk and Compliance (GRC) activities include providing oversight and managing the ongoing execution of key controls. Activities will implement/leverage GRC tools for the assessing, tracking and reporting of control deficiencies and remediation activities.

Areas of specific focus specifically include Payment Card International (PCI) and SSAE18 / SOC1/2 reporting and ISO 27001 management among others. Last, the position may partner with first line IT technical staff and leadership as well as internal audit to assist in the assessment and measurement of compliance to obligations and requirements, identify required controls, and test and validate control effectiveness. Control objectives will be assessed with technical teams to identify and assess control design and operating effectiveness. Control reporting will be provided to leadership to assist in strategic decision-making activities to strengthen PayPal’s security posture in addition to reporting on the security compliance readiness of various areas of the enterprise.

Responsibilities:

• Interpret PayPal standards, regulatory and business requirements into technical specification documents and IT/security
• controls.
• Supporting, facilitating and coordinating internal, external audits and regulatory examination support on behalf of Compliance
• Assurance including PCI compliance and SSAE18 compliance.
• Participate in developing and maintaining the overall Governance Risk and Compliance (GRC) management process and strategy from a compliance framework and oversight point of view.
• Work in collaboration with enterprise compliance, risk management and various technical teams in the design and implementation of control self-assessments, risk assessments and regulatory compliance practices for Technology and
• Information Security Oversight.
• Create, document, and implement control test plans, scripts, and procedures. Investigate, analyze and document reported control defects.
• Partner with Issues Management, Exam and Compliance teams to develop effective process for monitoring, reporting and escalating compliance related issues and exceptions.
• Work with cross-functional teams in performing reviews and tests of technical internal controls to ensure teams are operating adequate controls for various security and compliance objectives 
• Partner with Security Awareness teams to proactively promote enhanced security controls and training across IT and business units.
• Create, monitor data points into the risk management activities, including dashboards, metrics, and reporting.
• Advises IT functional teams in the development, implementation, monitoring and reporting of control processes, documentation and compliance routines.
• Advises IT and business executives on the status and impact of security findings, technology risks and compliance issues based on assessment results and information from various discovery sources, monitoring and control systems.
• Develop automated process to document and score IT/Security control effectiveness based on maturity level and map to corresponding residual risk scores.

Basic Qualifications:

• 3+ years of relevant experience 
• Identification of Risk and Compliance 
• Broad technology and security knowledge across common industry security standards (e.g., ISO, NIST, COSO, COBIT, PCI, FFIEC, SOX, SSAE16/18, CSA, and others).
• Technical knowledge of security technologies and architecture in multiple security domains

This is the pay range that Magnit reasonably expects to pay for this position: $37.00/hour-$49.00/hour

Benefits: Medical, Dental, Vision, 401K