Junior InfoSec (DevSecOps) Engineer

LoopMe, the leading outcomes-based platform, closes the loop on digital advertising. By leveraging our patented AI technology to optimize media delivery in real-time, we drive measurable uplift for business outcomes across brand lift, purchase intent, consideration, foot traffic, and sales.

We are looking for a motivated Junior InfoSec Specialist to join our security team. The ideal candidate will have a basic understanding of information security principles and a strong desire to develop practical skills in a dynamic, cloud-driven environment. You will assist with securing LoopMe’s platforms, learning from experienced team members and gaining exposure to modern technologies like Kubernetes, GCP, PostgreSQL, ClickHouse, Envoy, and Kafka.

Responsibilities:

• Support the development and maintenance of information security policies and procedures.
• Assist in performing risk assessments, security audits, and threat monitoring.
• Help monitor and respond to security incidents under supervision.
• Participate in maintaining security tools such as SIEM, DLP, and WAF.
• Learn and assist with integrating security practices into development workflows (Secure SDLC, code reviews).
• Help ensure compliance with security standards (ISO/IEC 27001, NIST, OWASP, CIS Controls).
• Participate in security awareness training for employees.
• Support the secure architecture of platforms including GCP, Kubernetes, ClickHouse, Kafka, PostgreSQL, and Envoy.
• Stay updated with emerging threats and vulnerabilities.

Requirements:

Education & Experience:

• Foundational knowledge of IT, cybersecurity, or system administration, demonstrated through formal education, self-learning, online courses, or hands-on experience.
• Internship, project participation, or up to 1 year of relevant experience is a plus.

Technical Skills:

• Basic understanding of computer networks and common protocols (TCP/IP, DNS, HTTP/S, VPN).
• Familiarity with at least one scripting language (Bash, Python, or PowerShell) and willingness to learn automation.
• Interest in cloud platforms (preferably GCP, AWS, or Azure).
• Basic knowledge of Linux/Unix administration.
• Understanding of information security principles (encryption, authentication, access control) is a plus.
• Willingness to learn and work with tools like SIEM, IAM/SSO/MFA, and modern cloud/data technologies (Kubernetes, Kafka, PostgreSQL, ClickHouse, Envoy).

Nice-to-Have Qualifications:

• Participation in security courses, bootcamps, or open-source security projects.
• Relevant certifications (e.g., CompTIA Security+, AWS/GCP/Azure Fundamentals, or similar) are a plus.
• Good written and verbal communication skills, attention to detail, and strong motivation to grow in information security.

Benefits:

• Competitive compensation package
• Flexible working schedule and the hybrid type of work
• Annual performance bonus
• One month of workation (you can work from any part of the world for one month)