Enterprise Architect

Fincons Group is an IT business consulting company that has been designing the digital future of leading companies on international markets for 40 years. Fincons Group built its reputation on foreseeing and interpreting new business models and the rapid evolution of IT systems by building a complete range of services: from research and consulting to design and development, from system integration of leading vendor software solutions right up to application management, supporting clients step by step along their digital transformation journey. Fincons is a multinational with over 2,600 people and several offices worldwide (in Italy, Switzerland, Germany, France, the United Kingdom, Belgium and the USA), but above all a Family Company where the founders play a strategic role with commitment and passion, grounding the company in the same principles of a united and caring family.

We firmly believe in the value of cooperation and in the contribution that every idea and intuition can bring. We believe that everyone’s effort can make a difference. Transforming knowledge into a strategic resource is our company mission, and we pursue it with the help of our most strategic asset: our people.

Fincons is looking for a ENTERPRISE ARCHITECT

TASKS

• Manage multiple IT projects across their full lifecycle (inception to transition), including planning, execution, and reporting.
• Supervise internal teams and subcontractors, ensuring adherence to project timelines, quality standards, and allocated resources.
• Coordinate diverse stakeholders (internal teams, external partners, subcontractors, technology providers) to ensure alignment and participation.
• Apply Agile and DevSecOps methodologies throughout software development and service delivery cycles.
• Ensure compliance with defined project methodologies, frameworks, and security policies.
• Maintain and evolve DevSecOps pipelines, including tools such as Jenkins, Nexus, SonarQube, etc.
• Support and administer ALM platforms (e.g., Atlassian suite, CI/CD tools) to enable continuous delivery and automated testing.
• Integrate and secure containerized and cloud-based solutions, ensuring architectural alignment and operational efficiency.
• Conduct technical architecture and design reviews, with a strong focus on security, quality, and compliance.
• Analyze system interoperability and ensure seamless integration across multiple information systems.
• Monitor and escalate project risks and issues, especially those impacting schedule or resource planning.
• Prepare and review project documentation, including specifications, plans, deliverables, and progress reports.
• Perform security assessments, vulnerability scans, and implement mitigation measures to reduce risks.
• Define and implement information security practices, ensuring confidentiality, integrity, and availability of systems.
• Contribute to business continuity and disaster recovery planning and execution.
• Support procurement and vendor selection processes with technical and security expertise.
• Participate in technical meetings, workshops, and working groups with business and technical stakeholders.
• Propose service and methodology improvements, including cost-benefit analyses and technical evaluations.
• Support the implementation and maintenance of Digital Shared Services, such as logging/monitoring, archiving, real-time streaming, container orchestration, and DevSecOps toolchains.

REQUIRED KNOWLEDGE AND EXPERIENCE

• Fluent in English, spoken and written;

• Willingness to use the project management tool and methodologies;

• Experience in large scale systems integration projects, preferably within IT and/or taxation, excise and customs environment is an asset;

• Knowledge of ITIL, COBIT or other IT organisational related frameworks, and knowledge of basic IT processes in particular Service Management and Operations;

• Ability to present and to animate discussions, rapid self-starting capability and ability to work autonomously are mandatory;

• Strong organisational and coordination skills; ability to lead discussion, resolve or mitigate conflicts, reach a consensus and adhere to common goals;

• Ability to produce minutes, notes, business cases, vision documents, service level agreements, terms of collaboration, planning schedules, etc.;

• Knowledge of ITC technologies, such as networking, virtualisation, operating systems, database, middleware;

• Experience in international/multicultural environment is a definite asset;

• Experience in a public administration is an asset.

SPECIFIC EXPERTISE

Following specific expertise is mandatory for the performance of tasks:

• Minimum 10 years’ experience in IT, including recent 5 years’ experience as an IT security expert and including recent 3 years’ experience in DevSecOps practices (including Containers) designing/maintaining/operating systems to integrate security into CI/CD pipelines (from Development phase up until Production and maintenance/evolution) and S-SDLC principles;

• Good knowledge of the current state-of-the-art technical evolution in security management and related products;

• IT security audits experience;

• Experience in Software Development (e.g. Java is an asset);

• Ability to review technical and security documents;

• Experience with security assessment of information systems;

• Experience with security standards, methodologies, risk management & audits (such as ISO2700X, NIST, COSO, CobIT);

• Experience with cryptography, network security, data protection, identity and access management (IAM), key management systems, tools and products for security assessments and audits;

• Experience with security tools for operations;

• Knowledge of EU legislation and policies on Infosec/IT security and risk management, including GDPR. Proficiency in compliance with industry standards and regulations (e.g. HIPAA) is an asset;

• Experience in software development, experience in implementation and enforcement of Service Level Agreements (SLA), experience as a technical writer;

• Strong experience with security assessments, vulnerability scanning, and penetration testing;

• Experience with Apache Kafka/Confuent services is an asset;

• Experience with Connecting Europe Foundation (CEF) E-ARK project (2014 - 2017) and the eArchiving Building Block (2018-2021) is an asset;

• Experience with Elastic Stack is an asset;

• Experience with Tanzu and/or Nutanix is an asset;

• Experience with security tools and technologies such as firewalls, intrusion detection/prevention systems (IDS/IPS), and encryption;

• Extensive knowledge of TCP/IP and network protocols;

• Experience with incident response and risk management;

• Ability to Administer IT Systems (as System Administrator, including Linux) is required;

• Ability to build/run/maintain scripts (e.g. Groovy scripting) is required;

• Ability and Expertise to create/maintain/operate CI/CD pipelines (e.g. DevSecOps pipeline on Jenkins, Gitlab, etc..) is required;

• Ability and Expertise to create/maintain/operate monitoring systems’ solutions (e.g. Dynatrace, Splunk, Elastic Stack, etc.. );

• Ability to create/maintain endpoints (e.g. REST endpoint(s)) is required;

• Expertise in SAST (e.g. Fortify) is required;

• Expertise in SCA (e.g. Sonatype Lifecycle) is required;

• Expertise in Agile Projects is an asset;

• Expertise in Lean SDLC is an asset;

• Expertise in DevSecOps (including Security) is required;

• Expertise in S-SDLC is required;

• Expertise in Containers and Kubernetes (e.g. Tanzu, Nutanix) is required;

• Expertise in the Cloud is required (AWS is required);

• Expertise in the use of Confluence (or similar tool) to produce high quality concise documentation is required;

• Expertise in creating/developing/maintaining/operating Security Strategy/Policies/Control is required;

• Any ITIL Certification is an asset;

• Any Agile Certification is an asset;

• TOGAF Certification is an asset;

• Any PM² Certification is an asset;

• Any below Security Certification is an asset o Certified Information Systems Security Professional (CISSP)

o Certified Cloud Security Professional (CCSP)

o AWS Certified Security – Specialty

o Certified Information Security Manager (CISM)

o CompTIA Security+

o Certified Information Systems Auditor (CISA)

o Certified Ethical Hacker (CEH)

English (C1) required

Office: Brussels

modality of work: near-site

If interested, please apply by July 15th at 12h.

Our personnel search is addressed to candidates of all genders.

The data will be processed and stored exclusively for the purposes of this or future selections, in compliance with the Federal Data Protection Law (LPD) and guaranteeing the rights referred to in art. 13 Legislative Decree 196/03 and EU regulation 679/2016 (GDPR)