Cloud Security Engineer at keyloop

Keyloop bridges the gap between dealers, manufacturers, technology suppliers and car buyers. We empower car dealers and manufacturers to fully embrace digital transformation. How? By creating innovative technology that makes selling cars better for our customers, and buying and owning cars better for theirs.   We use cutting-edge technology to link our clients’ systems, departments and sites. We provide an open technology platform that’s shaping the industry for the future. We use data to help clients become more efficient, increase profitability and give more customers an amazing experience. Want to be part of it?   Role Summary The Cloud Security Engineer is responsible for designing, implementing, and operating security controls that protect Keyloop’s cloud environments and workloads. This role ensures cloud services are securely architected, configured, monitored, and continuously improved in line with business risk, regulatory requirements, and security best practices. The Cloud Security Engineer works closely with platform, infrastructure, and engineering teams to enable secure cloud adoption at scale, while supporting security operations, incident response, and compliance objectives. Key Responsibilities • Cloud Security Architecture & Design • Define and maintain cloud security architectures, reference designs, and baseline configurations. • Embed security-by-design principles into cloud platform and workload architectures. • Support secure adoption of cloud-native, microservices, and event-driven architectures. • Cloud Security Controls & Tooling • Implement and operate cloud-native and third-party security tooling, including: • Cloud Security Posture Management (CSPM) • Cloud Workload Protection Platforms (CWPP) • Cloud-native logging, monitoring, and threat detection services • Define and enforce security guardrails using policy-as-code and automation. • Ensure secure configuration of networking, storage, compute, and managed services. • Identity, Access & Data Protection • Design and support cloud identity and access management (IAM) controls, including least privilege and role-based access. • Support secure authentication, authorisation, and secrets management practices. • Ensure data protection controls such as encryption, key management, and data lifecycle controls are correctly implemented. • Monitoring, Detection & Incident Support • Ensure cloud security telemetry and audit logs are enabled, accurate, and integrated into SIEM and SOC workflows. • Investigate cloud-related security alerts, misconfigurations, and incidents. • Support containment, remediation, and recovery actions during cloud security incidents. • Contribute to post-incident reviews and preventative control improvements. • Risk Assessment & Assurance • Conduct cloud security risk assessments, architecture reviews, and threat modelling exercises. • Identify and prioritise cloud security risks based on business impact and likelihood. • Support compliance and assurance initiatives, including NIST, ISO/IEC 27001, and SOC 2. • Provide evidence and documentation to support audits and security assessments. • Collaboration & Enablement • Partner with cloud platform and engineering teams to embed security controls into delivery processes. • Act as a cloud security subject matter expert for projects and initiatives. • Communicate cloud security risks and recommendations clearly to technical and non-technical stakeholders. • Continuous Improvement • Monitor emerging cloud security threats, vulnerabilities, and technology trends. • Continuously improve cloud security posture, automation, and operational efficiency. • Contribute to the maturity of Keyloop’s overall security engineering capability. Required experience & skillsets • 5+ years of experience in cloud security, cloud engineering, or security engineering roles. • Strong hands-on experience with at least one major cloud platform (AWS, Azure). • Practical experience implementing cloud security controls and monitoring solutions. • Solid understanding of shared responsibility models and cloud-native architectures. • Technical Skills • Cloud security architecture and design • Identity and access management • Cloud-native security tooling and automation • Security monitoring and incident response Why join us? We’re on a journey to become market leaders in our space – and with that comes some incredible opportunities. Collaborate and learn from industry experts from all over the globe. Work with game-changing products and services. Get the training and support you need to try new things, adapt to quick changes and explore different paths. Join Keyloop and progress your career, your way.   An inclusive environment to thrive We’re committed to fostering an inclusive work environment. One that respects all dimensions of diversity.  We promote an inclusive culture within our business, and we celebrate different employees and lifestyles – not just on key days, but every day.   Be rewarded for your efforts We believe people should be paid based on their performance so our pay and benefits reflect this and are designed to attract the very best talent. We encourage everyone in our organisation to explore opportunities which enable them to grow their career through investment in their development but equally by working in a culture which fosters support and unbridled collaboration. Keyloop doesn’t require academic qualifications for this position. We select based on experience and potential, not credentials. We are also an equal opportunity employer committed to building a diverse and inclusive workforce.  We value diversity and encourage candidates of all backgrounds to apply.