Application Security Engineer at Lancaster University

Lancaster University is seeking a detail oriented and proactive Application Security Engineer to join the IT Security Team within Information Systems Services. This is an opportunity to contribute directly to strategic and operational technology initiatives that support teaching, research, the student experience, and the effective running of the University.

As an Application Security Engineer, you will play a central role in strengthening the security of applications and integrations used across the University by embedding security into how software is designed, built, and operated. You will work closely with development, platform, and delivery teams across a diverse range of technologies and environments. Because of this, you will draw on real world experience to understand how applications are developed and used in practice, helping teams improve security in ways that are pragmatic, proportionate, and sustainable.

You will be responsible for identifying and reducing security risk across the full application lifecycle, covering both long running production services and newly developed solutions. This includes defining and maintaining application security standards, advising on secure design and architecture, and supporting the effective use of security tooling and processes. The role spans a broad application landscape including web and mobile applications, APIs, and microservices, and applies DevSecOps principles to ensure security is considered early and consistently.

A key focus of the role is supporting the University’s cloud enablement programme. You will help ensure that cloud-based architectures, services, and deployments are designed and implemented securely, while recognising the realities of operating live services and the need to balance security, usability, and delivery.

The successful candidate will bring a pragmatic, experience led approach to application security. You will be comfortable working in complex and evolving environments, constructively challenging existing approaches and helping teams improve security through sound judgement rather than prescriptive theory. Strong communication skills are essential, as the role involves influencing and advising technical teams and stakeholders across the organisation.

This role offers the opportunity to make a tangible and lasting impact on the University’s security posture while working collaboratively within a supportive and forward-looking technology environment.

The role is primarily based on the Lancaster University Bailrigg campus, with flexible hybrid working options to support a positive work-life balance. We would expect a minimum of 2 days a week in the office.