Summary
Overview
Work History
Education
Skills
Timeline
Generic
Nina Grundemark

Nina Grundemark

Stockholm

Summary

Information Security Specialist with passion for aligning security requirements and processes with business goals.

Extensive experience in bridge between Business and Cyber Security by support and enforce colleagues and security capabilities. Skilled at training users on security procedures and preventive measures.

Overview

10
10
years of professional experience

Work History

Senior Cyber Security and Privacy Specialist

H&M Group AB
02.2022 - Current
  • Vendor Management
  • Risk Management
  • Implemented ISO 27001
  • Educated and trained users on information security policies and procedures
  • Implemented security measures to reduce risks and damage related to cyber attacks
  • Implemented Security KPIs and reported metrics to track security performance and strategize improvements
  • Cooperated with Tech Legal and Data Privacy Office in Risk Management and Vendor Management
  • Created and advised teams in disaster recovery plans
  • Built relations with business partners to balance requirements, security and risk reduction
  • Supported applicable product teams in Financial IT Audits and PCI DSS Audits
  • Implemented Cyber Security Engineer trainee program and mentored 7

Product Owner, Core Security

H&M Group AB
04.2021 - 02.2022
  • Vulnerability Management
  • Managed agile team of 7 Cyber Security Engineers
  • Budget owner
  • Escalated findings and lack of mitigating actions by stakeholders to information owners when needed
  • Ordered and coordinated external penetration testings to identify security vulnerabilities and weaknesses.
  • Recruited, interviewed and hired employees and consultants and implemented mentoring program.

Service Manager Security Operations

H&M Group AB
05.2020 - 05.2021
  • Managed outsourced 24/7 Online Security Operations by Indian company
  • Negotiated and followed up on SLAs with vendor
  • Monitored e-commerce platforms to identify areas for security improvement
  • Collaborated with business management to develop and implement strategies to mitigate security risks
  • Implemented comprehensive security plans to provide highest levels of protection
  • Delivered regular security awareness programs to educate personnel on security measures and protocols

Product Owner, GRC Security

H&M Group AB
12.2019 - 04.2021
  • Built Governance, Risk and Compliance team of 11 Cyber Security Specialists
  • Budget owner
  • Performed Risk Assessments
  • Implemented Security KPIs and reported security posture to business managers
  • Recruited, interviewed and hired employees and consultants

IT Security Manager, Store Division

H&M Group AB
01.2016 - 12.2019
  • Managed and enforced Store Division to be compliant with ISO 27001
  • Vendor Management
  • Trained developers, testers, architects and managers in Cyber Security and Data Privacy
  • Served as liaison with company negotiators and other departments to maintain big picture understanding of security needs covering all corporate store assets
  • Supported teams when Security Incidents
  • Performed Risk Assessments
  • Implemented GDPR as project lead

Service Manager, Network Security Operations

H&M Group AB
01.2014 - 02.2016
  • Manager of outsourced 24/7 delivery by Indian company
  • Negotiated vendor contracts and licenses e.g Bluecoat and Cisco
  • Budget owner of 360 MSEK yearly
  • Maintained team productivity and quality of service by establishing and maintaining clear SLAs
  • Analyzed service reports to identify areas of improvement

Education

History of Economy

Stockholm University
Stockholm, Sweden
2002

Bachelor of Science - Computer And Information Sciences

Stockholm University
Stockholm. Sweden
06.2001

Business Economics

Frans Schartaus Handelsinstitut
Stockholm, Sweden
1998

Business Management

Chefsakademin - MGruppen
Stockholm, Sweden
1997

Skills

  • Vendor Management
  • Risk Management
  • Vulnerability Management
  • GDPR
  • ISO 27001
  • PCI DSS

Timeline

Senior Cyber Security and Privacy Specialist

H&M Group AB
02.2022 - Current

Product Owner, Core Security

H&M Group AB
04.2021 - 02.2022

Service Manager Security Operations

H&M Group AB
05.2020 - 05.2021

Product Owner, GRC Security

H&M Group AB
12.2019 - 04.2021

IT Security Manager, Store Division

H&M Group AB
01.2016 - 12.2019

Service Manager, Network Security Operations

H&M Group AB
01.2014 - 02.2016

History of Economy

Stockholm University

Bachelor of Science - Computer And Information Sciences

Stockholm University

Business Economics

Frans Schartaus Handelsinstitut

Business Management

Chefsakademin - MGruppen

Similar Profiles

  • Yasamina Gulen

    Yasamina GulenYasamina Gulen

    INTERNATIONAL PROJECT MANAGER - EUROPE & ASIA at Nordic Retail Group ABINTERNATIONAL PROJECT MANAGER - EUROPE & ASIA at Nordic Retail Group AB

    View Profile
  • ELLIOT JOHANSSON

    ELLIOT JOHANSSONELLIOT JOHANSSON

    Cybersecurity Intern at Pierce Group ABCybersecurity Intern at Pierce Group AB

    View Profile
  • Arun Prakash Buvanesan

    Arun Prakash BuvanesanArun Prakash Buvanesan

    Section Head - Diagnostic Data at Volvo Group ABSection Head - Diagnostic Data at Volvo Group AB

    View Profile
Nina Grundemark