Short and crisp
Do you want to systematically analyze and remediate security vulnerabilities, dive deep into Java technology, and make our products measurably more secure?
Then we're looking for you in a hybrid model for the location Aachen as Backend CVE Remediation Engineer (m/f/d).
Welcome to aixigo!
Your job – Your passion
* Triage and remediate critical and high CVEs in Java dependency chains across 30+ microservices
* Perform root-cause analysis for security bugs; implement well-tested, minimal-footprint fixes
* Identify and harden vulnerable code paths: injection points, broken authentication, dependency hygiene, secrets handling
* Upgrade third-party libraries across Maven multi-module projects while preserving functional correctness
* Review security-sensitive changes in collaboration with the tech lead and service owners
* Document suppression rationale for CVEs that cannot be immediately remediated; maintain the suppression registry
* Contribute to security incident post-mortems and capture learnings as reusable patterns
Your profile – Your strengths
* 3+ years Java (17+), Maven dependency management in multi-module projects
* Experience resolving transitive dependency conflicts: mediation rules, exclusions, BOMs
* Ability to read CVE advisories and assess actual exploitability in context — not just CVSS score
* Practical understanding of OWASP Top 10 applied to Java backend services
* Comfortable working across many codebases with varying configurations (client-specific solution forks differ significantly from the product standard)
* GitLab CI/CD basics: reading pipelines, understanding scan job output, acting on findings
* Bonus: JAX-RS/Jersey or Quarkus familiarity, JPA/Hibernate upgrade experience, container security basics, SAST tooling (SonarQube, SpotBugs) or GitLab Dependency Scanning
Our offer to you
* Great creative freedom and a variety of opportunities for further development in a very trusting and appreciative environment
* The choice between different work models (office or hybrid) with flexible working hours, a working time account, overtime regulations and modern and ergonomically equipped workstations
* State-of-the-art collaboration tools for efficient hybrid working (e. g.,Stackoverflow for Teams)
* A family-friendly and relaxed atmosphere where ideas are created together with the best colleagues on earth!
* Unlimited employment contracts, company pension plan, bonus payments, a future leadership program, development budgets and LinkedIn Learning, sports events, childcare support, cafeteria, health campaigns, bring your dogs to work, sufficient and free parking spaces, bicycle leasing, IT hardware leasing, tire changing service, company and sports events, team excursions and teamchallenges, parcel service, drinks, fresh fruit and vegetables, cookies and much more
About us
Careers at aixigo – The most innovative software company in Aachen
Join us in designing innovative software solutions with and for our customers. We have been setting the standard in digital investment advisory and wealth management for 25 years – in Germany, Europe and the world. At aixigo, you will find clever minds, a friendly workforce and diverse areas of responsibility.
Short communication channels and long-term cooperation are essential to us – both among ourselves and in our customer projects.
Distinctive spirit, appreciation and communication at eye level define our actions – every voice is heard. Become part of aixigo!