Job Title: Enterprise Security Architect Division: Corporate Location: Glasgow Hybrid Purpose of Role: The Security Architect plays an integral role in defining and assessing the organisation's security strategy, architecture and practices. Weir initiated the Performance Excellence (PEx) program in 2023. This is a multi-year transformation program which will deliver operational excellence across manufacturing and supply chain whilst migrating functional services to a global business services model. A key underpinning for the PEx program is delivering our Target Enterprise Architecture (TEA) roadmap, which aligns our Internet Services Technology (IST) systems and processes with the strategic capabilities needed by Weir over the next 5–7 years. This includes radically simplifying our complex IST landscape and migrating onto a converged ERP eco-system based on SAP S\4. To ensure the efficient and effective execution of these initiatives and modernise and future-proof the IST organisation, we are adopting a new Target Operating Model for Data, Digital and IST, aligned with the SAFe framework (Scaled Agile). Why choose Weir: Be part of a global organization dedicated to building a better future: At Weir, the growing world depends on us. It depends on us constantly reinventing, quickly adapting and continually finding better, faster, more sustainable ways to access the resources it needs to thrive. And it depends on each of us doing the best work of our lives. It’s a big challenge – but it is exciting. An opportunity to grow your own way: Everything moves fast in the dynamic world of Weir. This creates opportunities for us to take on new challenges, explore new areas, learn, progress and excel. Best of all, there is no set path that our people must take. Instead, everyone is given the support and freedom to tailor-make their own career and do the best work of their lives. Feel empowered to be yourself and belong: Weir is a welcoming, inclusive place where each individual’s contribution is recognized, and all employees are encouraged to innovate, collaborate and be themselves. We continually focus on people and their well-being. We believe in fairness and choose to be honest, transparent and authentic in everything we do. Key Responsibilities: Develops and maintains a security architecture process and patterns that enable the enterprise to create and implement secure solutions and capabilities Develops security strategy plans and roadmaps based on sound enterprise architecture practices Develops and maintains security architecture artefacts (e.g., models, patterns, standards and procedures) that can be used to leverage security capabilities in projects and operations Working with technical teams baseline security configuration standards for operating systems (e.g., OS hardening), network segmentation and identity and access management (IAM) Working with technical teams develops standards and practices for data encryption and tokenization in the organisation based on the organization's data classification criteria Draft security procedures and standards to be reviewed and approved by executive management and/or formally authorised by the chief information security officer (CISO) Tracks developments and changes in the digital business and threat environments to ensure that they're adequately addressed in security strategy plans and architecture artefacts Conducts or facilitates threat modelling of services and applications that tie to the risk and data associated with the service or application Safety First: Demonstrate 100% commitment to our zero harm behaviours in support of our drive towards developing a world class safety culture. Job Knowledge/Education and Qualifications: Demonstrable experience in leading/mentoring teams in “secure by design” including a strong working knowledge of the methodologies to conduct threat-modeling exercises on new applications and services, identity management, as well as securing CI/CD pipelines. Direct, hands-on experience or a solid working knowledge of relevant security patterns, vulnerability management tools, securing public cloud applications. Full-stack knowledge of IT infrastructure, including applications, databases, operating systems (Windows and Linux), hypervisors, networks (WAN, LAN), storage (online and backup), containers (Docker, Kubernetes)/ Relevant certifications such as ISC2's CISSP, ISACA's CISA, The Open Group's TOGAF, SANS' GAIC ISACA's CISM. Founded in 1871, Weir is a world leading engineering business with a purpose to make mining operations smarter, more efficient and sustainable. Thanks to Weir’s technology, our customers can produce essential metals and minerals using less energy, water and waste at lower cost. With the increasing need for metals and minerals for climate change solutions, Weir colleagues are playing their part in powering a low carbon future. We are a global family of 11,000 uniquely talented people in over 60 counties, inspiring each other to do the best work of our lives. For additional information about what it is like to work at Weir, please visit our Career Page and LinkedIn Life Page. Weir is committed to an inclusive and diverse workplace. We are an equal opportunity employer and do not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, veteran status, disability, age, or any other legally protected status. #LI-SM2 #LI-AC1 We are Weir. And the growing world depends on us. It depends on us constantly reinventing. Quickly adapting. Continually finding better, faster, more sustainable ways to access the resources it needs to thrive. And it depends on each and every one of us doing the best work of our lives. It’s a big challenge – but it’s exciting. And it’s one we can’t wait to be part of. Thank you for your interest in joining us.