Hello, I'm

Ilker Tutu

Technology Risk and Cybersecurity Executive

About Me

"Risk management is not a barrier to growth; it is the strategic foundation that allows organizations to innovate and scale with confidence."

I am a technology risk leader focused on enabling scale, resilience, and trust in highly regulated environments. I believe effective risk management should strengthen business outcomes, not constrain them.

I currently lead international technology risk and information security oversight at PayPal, supporting regulated entities across more than 200 markets. My work sits at the intersection of engineering, product, compliance, and legal, ensuring technology risk and regulatory expectations are addressed in a practical and scalable way.

My experience spans consulting, program build-out, and senior oversight roles in large enterprises. I regularly engage with boards and regulators on technology risk, operational resilience, and digital trust. Artificial intelligence is an important part of my current focus, where I help define governance models that enable safe adoption while strengthening risk discipline.

Beyond my corporate role, I contribute to the broader risk and cybersecurity community. I chair the Digital Trust and Cybersecurity Working Group at the Luxembourg Bankers’ Association, participate at ISACA Advisory Groups, and mentor future risk leaders. I am motivated by building strong risk capabilities, developing talent, and raising the standard of digital resilience.

Cybersecurity Technology Risk Board and Regulatory Engagement Operational Resilience AI Governance
Connect via LinkedIn CISO Quest Blog
Ilker Tutu, Global Cybersecurity Executive and CISO
Current Roles & Affiliations
Director

PayPal

Head of International Technology and Information Security Oversight for regulated entities across international markets.
Chair

ABBL

Chair of the Digital Trust and Cybersecurity Workgroup at Luxembourg Bankers' Association.
Advisor

ISACA GEIT Advisory Group

Member of the Governance of Enterprise IT Global Advisory Group, shaping industry best practices.
Mentor

ISACA & Marmara University

Mentoring the next generation of cybersecurity and risk professionals.
Fellow

EU CISO & Cybersecurity Communities

Member of the ECSO CISO Community and contributor to European cybersecurity initiatives.
Member

Professional Organizations

Active member of ISACA, ISC2, and The IIA.

Credentials & Recognition
CRISC Worldwide Excellence Award Recognized by ISACA for achieving the highest exam score globally (2012).
Master of Science in Information Systems Security Management University of Luxembourg. Thesis on "Cybersecurity in the Metaverse".
AAISM Advanced in AI Security Management
CISSP Certified Information Systems Security Professional
CISM Certified Information Security Manager
CRISC Certified in Risk & Information Systems Control
CGEIT Certified in Governance of Enterprise IT
CISA Certified Information Systems Auditor
CCSP Certified Cloud Security Professional
CIA Certified Internal Auditor
ISO 27001 Implementer & Lead Auditor
PCIP Payment Card Industry Professional
PCI ISA Internal Security Assessor
AWS AWS Cloud Practitioner
Azure Microsoft Azure Fundamentals
GCP Google Cloud Security Specialization
Recently Featured In
Industry Event

First Year of DORA

Panelist at the flagship event hosted by the CSSF, ALFI, and ABBL on regulatory implementation.
Article

ABBL: Trust and Cybersecurity

Featured in "Trust and cybersecurity: a collective priority for Luxembourg's banks".
Article

Luxembourg for Finance

Featured in "Luxembourg on Alert Against Cyber Threats".
View Full Archive