Job
- Level
- Experienced
- Job Field
- Web, IT, Full Stack, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Aachen
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you will triage CVEs and remediate security vulnerabilities in frontend and backend dependencies while enhancing code security through the implementation of well-tested solutions.
Job Technologies
Your role in the team
- Triage and remediate CVEs across frontend (pnpm/npm) and backend (Java/Maven) dependencies on a continuous basis.
- Perform root-cause analysis for security bugs across the full stack; implement well-tested fixes.
- Identify and harden vulnerable code paths: XSS, CSRF, injection attacks, secrets exposure, broken authentication, insecure direct object references.
- Extend GitLab scanning coverage to frontend build artefacts alongside existing backend pipeline.
- Review security-sensitive changes in collaboration with tech leads and other developers.
- Handle minor bugfixes across the full stack to maintain team velocity.
- Contribute to security incident post-mortems; document findings and mitigations.
This text has been machine translated. Show original
Our expectations of you
Qualifications
- Practical understanding of web security fundamentals: XSS, CSRF, injection attacks, dependency vulnerabilities, broken authentication, secrets management.
- Ability to read CVE advisories and translate them into concrete code or dependency changes.
- Solid knowledge of container security: Docker image hardening, Kubernetes security contexts.
- Structured approach to problem-solving with a habit of documenting findings.
Experience
- Solid experience with TypeScript/JavaScript and Java.
- Hands-on experience with Vue 3 or a comparable modern frontend framework; Vue 3 / Nuxt proficiency strongly preferred.
- Experience with Git workflows, GitLab CI/CD pipelines, and package managers (Maven and pnpm both in active use).
- Bonus: Vuetify component library experience, SAST/DAST tooling (Snyk, SonarQube, OWASP ZAP), Content Security Policy configuration or pnpm workspace experience.
This text has been machine translated. Show original
What we offer
- Great creative freedom and a variety of opportunities for further development in a very trusting and appreciative environment.
- The choice between different work models (office or hybrid) with flexible working hours, a working time account, overtime regulations, and modern and ergonomically equipped workstations.
- State-of-the-art collaboration tools for efficient hybrid working (e.g., Stack Overflow for Teams).
- A family-friendly and relaxed atmosphere where ideas are created together with the best colleagues on earth!
- Unlimited employment contracts, company pension plan, bonus payments, a future leadership program, development budgets and LinkedIn Learning, sports events, childcare support, cafeteria, health campaigns, bring your dogs to work, sufficient and free parking spaces, bicycle leasing, IT hardware leasing, tire changing service, company and sports events, team excursions and team challenges, parcel service, drinks, fresh fruit and vegetables, cookies and much more.
This text has been machine translated. Show original
Benefits
Food & Drink
Work-Life-Integration
Health, Fitness & Fun
Topics that you deal with on the job
Job Locations
This is your employer
Aixigo Ag
The aixigo Wealth Management Platform is built on the world's fastest API and constantly delivers trend-setting innovation and real value to aixigo's customers and their savings and investment clients. The platform is equipped with more than 100 digital services that make it easy for advisors to manage portfolios, monitor risk and perform analytics.
Description
- Founding year
- 1999
- Company Type
- Digital Agency
- Working Model
- Full Remote, Hybrid, Onsite
- Industry
- Internet, IT, Telecommunication
Full-Stack Security Developer
- Location
- Aachen
- Working Model
- Hybrid, Onsite
- Diversity
- Open for all genders
- English Only
- English only required
