Application Security Engineer

As an Application Security Engineer, you will play a central role in strengthening the security of applications and integrations used across the University by embedding security into how software is designed, built, and operated. You will work closely with development, platform, and delivery teams across a diverse range of technologies and environments. Because of this, you will draw on real world experience to understand how applications are developed and used in practice, helping teams improve security in ways that are pragmatic, proportionate, and sustainable.

You will be responsible for identifying and reducing security risk across the full application lifecycle, covering both long running production services and newly developed solutions. This includes defining and maintaining application security standards, advising on secure design and architecture, and supporting the effective use of security tooling and processes. The role spans a broad application landscape including web and mobile applications, APIs, and microservices, and applies DevSecOps principles to ensure security is considered early and consistently.

A key focus of the role is supporting the University's cloud enablement programme. You will help ensure that cloud-based architectures, services, and deployments are designed and implemented securely, while recognising the realities of operating live services and the need to balance security, usability, and delivery.

The successful candidate will bring a pragmatic, experience led approach to application security. You will be comfortable working in complex and evolving environments, constructively challenging existing approaches and helping teams improve security through sound judgement rather than prescriptive theory. Strong communication skills are essential, as the role involves influencing and advising technical teams and stakeholders across the organisation.

This role offers the opportunity to make a tangible and lasting impact on the University's security posture while working collaboratively within a supportive and forward-looking technology environment.

Lancaster University is seeking a detail oriented and proactive Application Security Engineer to join the IT Security Team within Information Systems Services. This is an opportunity to contribute directly to strategic and operational technology initiatives that support teaching, research, the student experience, and the effective running of the University.

Find out what it's like to work at Lancaster University, including information on our wide range of employee benefits, support networks and our policies and facilities for a family-friendly workplace. The University recognises and celebrates good employment practice undertaken to address all inequality in higher education whilst promoting the importance and wellbeing for all our colleagues. We warmly welcome applicants from all sections of the community regardless of their age, religion, gender identity or expression, race, disability or sexual orientation, and are committed to promoting diversity, and equality of opportunity. Share