Senior Security Engineer - Network Security

Join our Cyber Security Engineering unit, where innovation and security drive us. We are transforming technology with modern Network Security, integrations and cloud services. We are looking for a highly skilled and experienced Senior Cyber Security Engineer to join our Network Security Engineering team. This role involves architecting, designing, implementing, and maintaining robust security measures to protect our global network infrastructure. The ideal candidate will blend theoretical knowledge with hands-on expertise.  This role requires a deep understanding of cybersecurity principles, Network Security technologies, and the ability to collaborate across multiple globally dispersed stakeholders and teams. 

WHAT YOU’LL DO 

• Lead design efforts for new and upgraded Network Security solutions across various physical sites (branches, stores, data centers). Support business initiatives by incorporating new functions and services 
• Develop, manage, and modernize the Network Security, transitioning from legacy systems to a modern SSE and ZTNA solutions 
• Ensure adherence to architectural policies and guidelines, aligning network design with the established roadmap, and implementing best practices for overall Network Security engineering 
• Create and maintain roadmaps, policies and implementation plans, analyzing, designing, and evolving Network Security infrastructure to meet evolving business needs 
• Ensure Confidentiality, Integrity and Availability of H&M Global Network 
• Oversee performance, availability, and reliability of the Network Security, conducting monitoring activities and implementing necessary improvements 
• Advise on Network Security design, collaborate with stakeholders to align solutions with business objectives, and recommend innovative security measures to support company growth 
• Set and maintain Network Security standards to uphold security, quality and efficiency across all network deployments 
• Design, configure and install Network Security devices and solution (firewalls, gateways, proxies, load balancers, reverse-proxy, VPN, QoS, IDS, NAC etc.) both on-prem as in the cloud (Azure, GCP) 
• Provide Level-3 support and troubleshooting using tools like Wireshark and NetFlow  
• Ensuring compliance towards external and internal Security standards (ISO, NIST, etc.) 
• Coordinate and manage major and high priority incidents 
• Take ownership and end to end responsibility for the solutions/functions within product team  
• Protect H&M Group technical assets, including data, network systems, and solutions, against advanced persistent cyber and information security threats such as hacking, malware and ransomware, and cybercrime (on-prem and in the cloud) 
• Understand and mitigate security vulnerabilities in various software and hardware designs 

WHO YOU ARE

• Strong understanding of IP networking and protocols, including IPSEC, HSRP, BGP, OSPF, 802.11, and QoS 
• Expert in Network Security solutions and products provided by Cisco, HP Aruba, Zscaler and Citrix NetScaler (proven by certificates) 
• Extensive experience with Network Security products and capabilities, including IDS/IPS, proxies, firewalls, reverse-proxies, load balancing, segmentation, VPNs, SIEM, XDR, SSE, SASE, SWG, CASB, ZTNA, and 802.1x 
• Experience in network defense mechanisms (incl. identity and access management) 
• Perform network scanning, packet collection, and manage certificates 
• Security Architecture, Design and Threat Modelling 
• Cybersecurity capabilities 
• Hardening 
• Log management 
• Vulnerability analysis and IT-system reviews 
• Information flows and key assets 
• Rules, policies, routines and guardrails  
• Understand regulatory and compliance requirements (GDPR, PCI-DSS, Schrems, etc.) 
• Hands-on experience with network diagnostic tools (e.g., Wireshark, NetFlow)  
• Expertise in cloud networking and security (e.g., Azure and GCP)  
• Proficiency in network troubleshooting and automation (e.g., scripting with Python)  
• Experience with DevOps methodology and tools  
• Experience from large enterprise networks and or ISP/Telco domain  
• Independent problem-solving, addressing complex security challenges with minimal supervision 
• English proficiency  

We prefer that you also possess the following:  

• CCNP (Security) or higher certifications such as CCIE or CISSP are highly valued 
• Security certifications (e.g., Security+, GCIA, GCIH, GREM, CISSP, CEH, GCFA, etc.) 
• Azure Security Engineer, or GCP Security Engineer certification 
• Solid understanding of the OSI/TCP/IP model  
• Degree in Computer Science or related field  
• Experience with Agile methodology and tools (e.g., Jira/Confluence)  
• Knowledge of ServiceNow and network automation concepts

WHO WE ARE

H&M is a fashion brand that offers the latest styles and inspiration, from fashion pieces and unique designer collaborations to affordable wardrobe essentials. Our business idea is fashion & quality at the best price in a sustainable way.  Learn more about H&M here.

WHY YOU’LL LOVE WORKING HERE

Benefits
We offer all our employees at H&M Group attractive benefits with extensive development opportunities around the globe. All our employees receive a staff discount card, usable on all our H&M Group brands in stores and online. Brands covered by the discount are H&M (Beauty and Move included), COS, Weekday, Monki, H&M HOME, & Other Stories, ARKET, Afound. In addition to our staff discount, all our employees are included in our H&M Incentive Program – HIP. You can read more about our H&M Incentive Program here.

In addition to our global benefits, all our local markets offer different competitive perks and benefits. Please note that they may differ between employment type and countries.

Inclusion & Diversity
H&M is a part of H&M Group. At H&M Group, we’re determined to create and maintain inclusive, diverse and equitable workplaces throughout our organisation. Our teams should consist of a variety of people that share and combine their knowledge, experience and ideas. Having a diverse workforce leads to a positive impact on how we address challenges, on what we perceive possible and on how we choose to relate to our colleagues and customers all over the world. Hence all diversity dimensions are taken into consideration in our recruitment process.  

We are committed to a recruitment process that is fair, equitable, and based on competency. We therefore kindly ask you to not attach a cover letter in your application.