IT & Cyber Security Specialist

Do you want to work with Cyber Security at H&M? Do you have the ability and passion for it?

A small team works with IT & Cyber Security Incidents and Cyber Security Intelligence Threat Hunting. We want to make it stronger to meet future needs. The job entails monitoring, investigating and analyzing, but also convergently looking at potential Cyber threats on a global scale.

We work towards all of H&M – business, end-users and Service Providers to secure stable end-to-end services, responsive support and enabling effective use of all IT services. Our mission is to simplify for all IT users within H&M Group, making them productive and cared for. Every day.

To succeed in this role, we like you to be passionate about Cyber Security. You need to have a high cognitive ability, be pragmatic and cooperative, and have a solid technical foundation. We want you to grow with the team and with the company.

Your responsibilities

The job as IT Cyber Security Specialist at H&M comes with a lot of responsibility – and lots of fun.

Your to do-list includes:
- Monitor SIEM and logging environments for security events and alerts to potential (or active) threats, intrusions, and/or compromises.
- Responsible for understanding the global threat landscape and acting on threat intelligence.
- Assists with containment of threats and remediation of environment during or after an incident.
- Documents event analysis.
- Conduct IT security incident response in support of a cyber team, following industry standards of containment, eradication, recovery and lessons learned.
- Investigate spam and malicious e-mail reported by internal users.
- Perform analysis on threat indicators (e.g. zero-day, phishing campaign, targeted attack, etc.) and intelligent insight. Identify the impact of vulnerabilities against the whole network infrastructure.
- Perform forensic on an ad-hoc basis. (e.g. mailbox examination, memory forensic, disk forensic for Indicators of Compromise, etc.).
- Perform co-relational analysis on various security / network solutions (e.g. such as Network IPS, endpoints, proxy, email gateway, anti-virus, firewalls, etc.).

- Strong affinity and skills with IT Security and Networking.
- Bachelor of Science in Computer Science, Computer Engineering, Mathematic, Information Security or any related fields.
- In lieu of these education requirements: at least 2 years of experience in Security Operations Centers or Cyber Security Incident Response Teams
- Demonstrable high cognitive ability, analytical expertise and critical thinking.
- Thorough understanding of fundamental security and network concepts (Operating systems, intrusion / detection, TCP / IP, ports, etc.)
- Willing to work in a team-oriented environment and flexibility to work in a demanding environment.
- Programming skills (e.g. Python, Java, etc.).
- Good English skills, both written and spoken.

Job Desirables:
- Security certifications (e.g. Security+, GCIA, GCIH, GREM, CISSP, CEH, GCFA, etc.)
- Experience with ArcSight / Splunk / FireEye or other security products desired.
- Experience managing cases with enterprise SIEM or Incident Management systems.
- Experience supporting network investigations.
- Experience with network monitoring in a SOC environment desired.
- Working experiences with SIEM, Network IPS, endpoints, proxy, email gateway, anti-virus, firewalls.
- Knowledge of vulnerability assessment and PCI DSS.
- Ability to automatic tasks with Powershell (or any other programming languages) will be a plus.

Who are we at the IT-Department?
We are the sum of the abilities and personalities we have. Our warm, value-driven culture brings us together. We like working at a fast pace and making decisions on the go. Our creativity helps us solve complex challenges.
We have the opportunity to advance the business of H&M group, work with the latest IT technology in exciting global projects and change the entire fashion and design industry for the better. If you have the drive, joy of discovery and willingness to assume responsibility, there is no limit to what we can achieve together.