Cyber Security Analyst

Company Description

Do you have a curious and analytical mindset and get inspired from being part of building a new world class cyber security organization? Then H&M Group can offer you a position that matches your personality! We are looking for Cyber Security Analysts to join our organization based in Stockholm.

about H&M Group

Shaping the future of fashion with people, data, and tech - The fashion and retail industries are going through a transformation, driven by customers technology and sustainability expectations. At H&M Group, we want to shape the future of retail by harnessing the power of smart tech and data. With our 74-year history of innovation, we understand the need to collaborate and co-create with engineers and tech specialists around the world to achieve our vision.

Job Description

Cyber Security Analysts to our new Cyber Defense Center

Working in the H&M Cyber Defense Center you will work with world class tooling for threat hunting, detection and response based on cloud technology (Azure Sentinel, Defender for Endpoint, Defender for O365) with a dedicated team of DevOps engineers constantly develop tooling to support analysis, response and automations.

In contrast to many Security Operations Center we work “follow the sun” from different time zones to match business requirements for 24/7, but at the same time offer a great work environment for the Cyber Defense analysts without the need for shiftwork.

Our Cyber Defense Center is the beating heart in the defense of our company, combining intelligence, monitoring, incident response and threat hunting with an engineering mindset to make the most out of people and technology.

Join our journey and discover your potential!

What You Will Do

As a Cyber Security Analyst in our Cyber Defense Center you play a key role in H&M Group’s cyber Defense. You understand cyber security threats and the threat landscape, act to detect, analyze and respond to cyber-attacks, manage incidents and reduce risk to customers, colleagues, partners and the company. You will work with the team to improve the capabilities to reduce response time but at the same time maintain quality. We are taking advantage of the latest technology in intelligence and automation. Ultimately the aim is to bring value to our business by reducing risk!

You will be eager to explore, collaborate and learn along the way and understanding our digital challenges integrating security from the start in our ongoing digital transformation. You are a team player with the ability to direct your own work.

Qualifications

Opportunity & experience

We believe that you have relevant work experience within the cyber security field, in a SOC, CSIRT or similar functions, you are able to apply fundamental security concepts to Cyber Defense, understand business and risk to guide your work in the Cyber Defense day-to-day operations.

Personal traits such as having an analytical mindset, being persistent and understanding the importance of collaboration. Your entrepreneurial mindset will be a strong contribution in building our world class Cyber Defense Center. We are building something new and you thrive from working in an environment where you can contribute to the transformation to fully support our vision.

Specific Competence

• Experience with SIEM and logging environments for threat analysis, investigate, threat hunting and triage analysis on various security solution such as firewalls, IDS, identity protection, etc.
• Experience with EDR (Endpoint Detection and Response) as part of incident response and investigation
• Experience in network-based detection technologies like IDS/flow analysis, PCAP-analysis, etc
• Experience in cloud-based computing on large scale (preferably Microsoft Azure, but also AWS or GCP)
• Understand of threat landscape, trends and act proactively on threat intelligence
• Good understanding of fundamental infrastructure components, network concepts, Operating Systems (Windows & Linux), intrusion, email systems, DNS, TCP/IP, etc.
• Willing to work in a team-oriented environment and flexibility to work in a demanding environment, sometimes under time-pressure
• Experience in complex incident response, investigation processes and documentation of incident cases
• Basic knowledge in PowerShell and Python.
• Curious, motivated and team player

Additional Information

Who are we?

We are creative minds; testing, experimenting, learning, and growing. With our strong values as our guide, we are empowered to create, innovate, and deliver. We work in multiple areas of the tech field. From AI to data-driven business development, user experience to engineering. We turn business challenges into innovative tech solutions – making H&M Group a global leader in combining tech, fashion and design.

What we offer!

Besides the obvious perks such as staff discount card, flexible work life, learning communities, wellness benefits, parental benefits etc. you are joining a unique value driven culture, a large tech network and community where you can be yourself. There are endless opportunities to experiment and grow in any direction that you want and when you grow, we grow. Being a major player gives us countless opportunities to make a real impact and shape the future.

Apply now for this truly inspiring position!

This is a fulltime position with placement in Stockholm. The work is scheduled during office hours. It is expected to work during out of office hours during high-priority incident response and be part of the on-call schedule (on call during assigned weekend and on-call leave to compensate).

We will review and interview on-going so please apply as soon as possible, but no later than September 30:th. If you have any questions regarding the recruitment process, please contact Björn Lundgren at [email protected]