Hello, I'm

Ilker Tutu

Technology Risk and Cybersecurity Executive

About Me

"Risk management is not a barrier to growth; it is the strategic foundation that allows organizations to innovate and scale with confidence."

I am a technology risk leader focused on enabling scale, resilience, and trust in highly regulated environments. I believe effective risk management should strengthen business outcomes, not constrain them.

I currently lead international technology risk and information security oversight at PayPal, supporting regulated entities across more than 200 markets. My work sits at the intersection of engineering, product, compliance, and legal, ensuring technology risk and regulatory expectations are addressed in a practical and scalable way.

My experience spans consulting, program build-out, and senior oversight roles in large enterprises. I regularly engage with boards and regulators on technology risk, operational resilience, and digital trust. Artificial intelligence is an important part of my current focus, where I help define governance models that enable safe adoption while strengthening risk discipline.

Beyond my corporate role, I contribute to the broader risk and cybersecurity community. I chair the Digital Trust and Cybersecurity Working Group at the Luxembourg Bankers’ Association, participate at ISACA Advisory Groups, and mentor future risk leaders. I am motivated by building strong risk capabilities, developing talent, and raising the standard of digital resilience.

Cybersecurity Technology Risk Board and Regulatory Engagement Operational Resilience AI Governance
Ilker Tutu, Global Cybersecurity Executive and CISO
Current Roles & Affiliations
Credentials & Recognition
CRISC Worldwide Excellence Award Recognized by ISACA for achieving the highest exam score globally (2012).
Master of Science in Information Systems Security Management University of Luxembourg. Thesis on "Cybersecurity in the Metaverse".
AAISM Advanced in AI Security Management
CISSP Certified Information Systems Security Professional
CISM Certified Information Security Manager
CRISC Certified in Risk & Information Systems Control
CGEIT Certified in Governance of Enterprise IT
CISA Certified Information Systems Auditor
CCSP Certified Cloud Security Professional
CIA Certified Internal Auditor
ISO 27001 Implementer & Lead Auditor
PCIP Payment Card Industry Professional
PCI ISA Internal Security Assessor
AWS AWS Cloud Practitioner
Azure Microsoft Azure Fundamentals
GCP Google Cloud Security Specialization
Recently Featured In