The Operations & Security Manager will lead efforts to optimize the operational efficiency and security of Portfolio Brands technology systems and services at H&M Group. This role will encompass both incident management and cyber security advisory, ensuring the stability, security, and continuous improvement of technology operations. The position will be responsible for coordinating cross-functional teams to quickly address and resolve incidents while also offering strategic cyber security guidance to protect the organization’s digital assets. This hybrid role will bridge operational excellence with proactive security measures to safeguard technology services and business operations.

Key Responsibilities:

• Incident Management & Problem Solving:
  • Oversee the identification, tracking, and resolution of incidents impacting technology services, ensuring timely and effective solutions.
  • Lead cross-functional teams in high-priority technical issue resolution to minimize disruption and impact on business operations.
  • Facilitate root cause analysis (RCA) for recurring or major incidents, implementing permanent solutions to prevent future issues.
  • Serve as a point of escalation for critical incidents, providing guidance on complex problems and driving quick resolutions.

• Cyber Security Advisory & Risk Management:
  • Conduct in-depth security assessments of internal and third-party solutions to ensure compliance with company security standards.
  • Develop and implement security maturity and risk assessment frameworks, providing strategic insights and actionable recommendations.
  • Serve as a trusted advisor to senior leadership, offering expert guidance on emerging cyber threats, regulatory compliance (e.g., ISO 27001, NIST, GDPR), and best practices.
  • Lead the creation and delivery of executive-level training on cyber security, enhancing the understanding of senior stakeholders on critical security issues.
• Process Improvement & Optimization:
  • Continuously evaluate and improve incident management processes, ensuring effective handling of incidents according to best practices.
  • Implement proactive measures, including system monitoring, automation, and process standardization, to prevent incidents and security vulnerabilities.
  • Drive the development of innovative security solutions, staying ahead of industry trends and technological advancements to secure systems.
• Stakeholder Management & Communication:
  • Act as a liaison between business units, IT, and security teams, ensuring clear and timely communication during both incident resolution and security initiatives.
  • Provide regular updates on the status, impact, and resolution of incidents, as well as on security risks and mitigations, to leadership and stakeholders.
  • Collaborate with senior business leaders to align security strategies with business goals, facilitating smooth integration while ensuring robust security.
• Team Leadership & Collaboration:
  • Lead and support teams involved in incident resolution and security initiatives, fostering a collaborative culture of problem-solving and continuous improvement.
  • Provide guidance, coaching, and performance feedback to team members, helping them grow professionally and deliver high-quality support.
  • Work closely with other departments (e.g., development, infrastructure, operations) to ensure coordinated efforts and alignment across the organization.
• Reporting & Analysis:
  • Prepare and present regular incident management and security reports, highlighting key metrics, trends, and improvements to senior leadership.
  • Analyze incident trends and recurring issues, collaborating with technical teams to implement long-term solutions.
  • Document and share lessons learned from both incidents and security assessments to improve overall system reliability and resilience.
• Business Continuity & Compliance:
  • Work with the Business Continuity team to ensure incident management and problem resolution align with the company’s continuity plans.
  • Ensure that incident management protocols are designed to mitigate risks and reduce downtime for mission-critical systems.
  • Stay updated on evolving cyber security regulations and ensure company practices comply with relevant frameworks and standards (e.g., ISO 27001, NIST, GDPR).

• Education: Bachelor’s degree in Information Technology, Cyber Security, Computer Science, or a related field. Relevant certifications in ITIL, Incident Management, or Cyber Security frameworks (e.g., ISO 27001, NIST) are highly preferred.
• Experience: Minimum 5-7 years of experience in IT operations, incident management, or cyber security, preferably within a retail or e-commerce environment.
• Skills:
  • A proactive and solution-driven mindset with a positive attitude.
  • Strong understanding of IT systems, networks, cloud platforms, and enterprise applications.
  • Experience with incident management tools (e.g., ServiceNow, Jira) and cyber security frameworks (e.g., NIST, CIS).
  • Exceptional problem-solving, critical thinking, and troubleshooting skills.
  • Strong communication skills with the ability to translate complex technical and security issues to non-technical stakeholders.
  • Proven experience working with senior business leaders and advising on cyber security matters.
• Technology: Hands-on experience with incident management platforms, security monitoring tools, and cloud infrastructure. Proficiency in Microsoft Office Suite and reporting tools.

This is a Permanent position starting from 1 April 2025 and is based at PB Head Office in Stockholm, Sweden. If you feel your experience, skills and ambitions are right for this role, please send in your resume (no need for cover letter) in English, latest by 3rd of February 2025.

We look forward to receiving your application!

Global Benefits

We offer all our employees at H&M Group attractive benefits with extensive development opportunities around the globe. All our employees receive a staff discount card, usable on all our H&M Group brands in stores and online. Brands covered by the discount are H&M (Beauty and Move included), COS, Weekday, Monki, H&M HOME, & Other Stories, ARKET, Afound. In addition to our staff discount, all our employees are included in our H&M Incentive Program – HIP. You can read more about our H&M Incentive Program here.

In addition to our global benefits, all our local markets offer different competitive perks and benefits. Please note that they may differ between employment type and countries.

Inclusion & Diversity

At H&M Group, we’re determined to create and maintain inclusive, diverse and equitable workplaces throughout our organization. Our teams should consist of a variety of people that share and combine their knowledge, experience and ideas. Having a diverse workforce leads to a positive impact on how we address challenges, on what we perceive possible and on how we choose to relate to our colleagues and customers all over the world. Hence all diversity dimensions are taken into consideration in our recruitment process.

We strive to have a fair and equal process and therefore kindly ask you not to attach a cover letter in your application as they often contain information that easily can trigger unintentional biases. 

Storelens 
Within the Storelens team we work very closely with Portfolio Brands and H&M Brand and together design and provide technical solutions. We are curious, active listeners and doers. We contribute to product development from setting requirements to roll-out and testing.  We improve While we listen and start development, already during the phase of setting the requirements, and based on first designs, developments and learnings we together improve the product along the way!