AmagisTech was founded to bring the best cybersecurity solutions, previously the domain of Big Tech, and make them accessible to SMEs.
Our mission: democratize digital security and make Italian companies resilient to threats, freeing them from the burden of obsolete and insecure IT.
AmagisTech is the platform that anticipates the future. If we succeed, we will become the default solution for securing business in Italy. This is a game-changing goal.
We are looking for people who want more than just a job: they want to build an exponential career. We are a strong team, and you will be on the front line. We are at the stage where a great idea becomes a global powerhouse.
We don't care who you have been, only who you want to become. We are not looking for people who copy-paste rules from a wiki; we are looking for Builders with the hunger to learn and the drive to automate everything that slows the team down.
You Are the Engine Behind the Defense: While the analysts hunt, you build the weapons they hunt with. You turn noise into signal, manual work into code, and good ideas into detections that fire at 3 AM so a human doesn't have to.
Modern Stack Obsessed: Forget legacy tools and clunky scripts. Here you will work hands-on with the most advanced SIEM, SOAR, and EDR technologies on the market (e.g., Google SecOps, SentinelOne). You will access exclusive resources to master detection engineering and security automation.
You are the architect of scale. Every rule you write and every playbook you automate multiplies the impact of the entire SOC.
Detection Engineering: Design, test, and tune detection rules (KQL, SPL, correlation logic) that catch real threats and kill false positives before they ever reach an analyst.
Automation & SOAR: If a task is repetitive, you automate it. You build and maintain SOAR playbooks that enrich alerts, isolate hosts, and orchestrate response without waiting for a human.
Integration & Tooling: You connect the stack. APIs, log sources, threat intel feeds, custom scripts — you make the tools talk to each other so nothing falls through the cracks.
Continuous Improvement: You measure what you build. You track detection coverage against MITRE ATT&CK, close the gaps, and make the whole system smarter release after release.
You have the ambition and the mindset to reject manual, repetitive defense.
Hunger: 0–1 years of experience (or a strong internship/project background) in cybersecurity, IT, or software/scripting with a real interest in security. If you can write clean Python, read a log like an open book, and are curious about the MITRE ATT&CK framework, you are the right person.
Want to Make History: We are in a phase of building and conquering. This is not a quiet "ticket factory" job. You will ship things that immediately protect real clients.
Impact-Oriented: You don't just close a task. You ask why the process existed at all, and you automate it out of existence. Your success is measured by how much manual work you eliminate.
Problem Solver, Not Reporter: You don't just say "the tool doesn't work." You dig into the API docs, find the root cause, and build the integration that fixes it for good.
More than just compensation — a ticket to specialized professional growth.
Compensation: 24K–28K for the full-time role, with bonuses tied to detection and automation goals. We also open paid internships (€1,000/month) for high-potential talent ready to prove themselves and convert to a permanent role.
Hybrid Model: Office in Milan / Malta (4 days) for intense collaboration with SOC and engineering leadership. Flexibility is balanced by team and customer needs.
Accelerated Vertical Growth: You will witness a Tech Scale-up become an industry leader. You will have access to high-level training and certifications. Here, the learning curve is a straight line upwards.
Explosive Environment: We work with extreme rigor, but we celebrate humility and team spirit. We hustle during an incident, we laugh about it after the post-mortem, and we secure the future together.
You must stand out. Technical potential and the drive to build are our currency.
Phase 1: Screening Call (30 minutes).
Phase 2: Written Technical Test (1 hour, asynchronous)
Phase 3: Technical Interview with the SOC Lead (45 minutes) — Hands-on exercise. Show us how you build and how you think.
Phase 4: Cultural & Strategic Fit Interview (30 minutes).
Compensation Range: €24K - €28K
Read authentic reviews with a Glassdoor account. Only apply to jobs you love.