About Us
Per candidarsi, è sufficiente leggere la seguente descrizione del lavoro e assicurarsi di allegare i documenti pertinenti.
Exein is an Italian scale-up developing runtime security solutions for embedded devices and IoT.
Our technology, based on eBPF/LSM and behavioral detection models trained on system telemetry, protects millions of devices in production across enterprise customers in Europe, Asia, and the United States.
We are a team of around 100 people, growing rapidly, with a strong technical focus and an international footprint (Italy, Japan, Taiwan).
The European Cyber Resilience Act and the increasing maturity of the OT/IoT market are opening a significant strategic window, and we are structuring the company accordingly.
About the role
We are looking for an IT Manager to take full ownership of Exein's internal IT infrastructure: from employee devices to the backend of our collaboration tools, all the way to the virtualization environments running internal services.
This is a hands-on role with full ownership: you will not manage a team of technicians - you will design, implement, and maintain the platforms that keep the company running.
You will work closely with the CTO, the Security team, and the People team, and will actively contribute to the maturity of our SOC 2 posture and CRA compliance processes.
What you will do
Manage the company macOS fleet via MDM (Jamf / Kandji / Mosyle): enrollment, configuration profiles, patch management, hardening in line with CIS macOS Benchmark and NIST SP *******, FileVault management, and endpoint security policies
Identity & Access Management on Linux infrastructure: LDAP/FreeIPA directory management, SSO/SAML/OIDC integration, user lifecycle (onboarding, role changes, offboarding), SSH key management, and access to critical systems
Google Workspace administration : OU and group management, Shared Drives, Gmail policies and routing, email security (SPF, DKIM, DMARC), context-aware access, DLP, Vault for retention and e-discovery, SSO and MDM integration
Collaboration tools administration : Notion (teamspace structure, permissions, integrations, content governance), Slack (channels, user groups, approved apps, compliance export, retention policies)
Management of Proxmox VE clusters for internal services: VM and container provisioning, networking, backups (PBS), high availability, monitoring, and capacity planning
Operational security : rollout and management of MFA and hardware keys (YubiKey), password and device policies, vulnerability management on internal systems, and support to the Security team for audits and certifications
Documentation and processes : writing and maintaining runbooks, IT policies, onboarding/offboarding procedures, and asset inventory
Second-level IT support for users, in both Italian and English
What we're looking for
Key requirements
4+ years of experience in IT Engineer / Sysadmin / IT Manager roles, ideally in tech or cybersecurity environments
Hands-on experience managing macOS fleets via MDM (at least one of: Jamf, Kandji, Mosyle, Intune for Mac), including writing and debugging.
Mobileconfig profiles
Strong knowledge of Linux servers (Debian/Ubuntu), shell scripting (bash), LDAP, and SSO management
Practical experience with Proxmox VE (or equivalent: VMware, oVirt/RHV, Hyper-V), basic networking, storage, and backup
Experience administering Google Workspace in an enterprise environment: OU management, Shared Drives, Gmail configuration (aliases, routing, security), and knowledge of relevant DNS records (SPF, DKIM, DMARC, MX)
Familiarity with Notion and Slack from an admin perspective, not just as an end user
Professional proficiency in English, both written and spoken (daily interaction with international teams and vendors)
Nice to have
Experience with compliance frameworks: SOC 2, ISO *****, CRA.
Knowledge of Infrastructure as Code (Ansible, Terraform) for managing internal infrastructure
Experience with advanced Google Workspace features: context-aware access, DLP, Vault, audit log analysis, SIEM integration
Familiarity with hardware key management tools (YubiKey, security key lifecycle)
Background in cybersecurity or strong interest in the domain
Soft skills that make a difference
Ability to work autonomously with full ownership of your area
Strong documentation mindset and focus on reproducibility (no "tribal knowledge")
Pragmatism: we know perfect is the enemy of done, but we do not compromise on security
Strong communication skills: a big part of the role is enabling others
What we offer
Competitive compensation, aligned with market and experience
Continuous learning and budget for certifications
Hybrid work model, with headquarters in Rome
A stimulating technical environment in a company that takes cybersecurity seriously and is scaling rapidly
Location: Rome, Hybrid – Piazzale Flaminio 19, *****
Exein is committed to creating an inclusive workplace.
xlwpduy We evaluate all applications fairly regardless of gender, age, ethnicity, background, or orientation.