Full-Stack Security Developer (external)

• Triage and remediate CVEs across frontend (pnpm/npm) and backend (Java/Maven) dependencies on a continuous basis
• Perform root-cause analysis for security bugs across the full stack; implement well-tested fixes
• Identify and harden vulnerable code paths: XSS, CSRF, injection attacks, secrets exposure, broken authentication, insecure direct object references
• Extend GitLab scanning coverage to frontend build artefacts alongside existing backend pipeline
• Review security-sensitive changes in collaboration with tech leads and other developers
• Handle minor bugfixes across the full stack to maintain team velocity
• Contribute to security incident post-mortems; document findings and mitigations, * Great creative freedom and a variety of opportunities for further development in a very trusting and appreciative environment
• The choice between different work models (office or hybrid) with flexible working hours, a working time account, overtime regulations and modern and ergonomically equipped workstations
• State-of-the-art collaboration tools for efficient hybrid working (e. g.,Stackoverflow for Teams)
• A family-friendly and relaxed atmosphere where ideas are created together with the best colleagues on earth!
• Unlimited employment contracts, company pension plan, bonus payments, a future leadership program, development budgets and LinkedIn Learning, sports events, childcare support, cafeteria, health campaigns, bring your dogs to work, sufficient and free parking spaces, bicycle leasing, IT hardware leasing, tire changing service, company and sports events, team excursions and teamchallenges, parcel service, drinks, fresh fruit and vegetables, cookies and much more

Do you have experience in TypeScript?, * Solid experience with TypeScript/JavaScript and Java

• Hands-on experience with Vue 3 or a comparable modern frontend framework; Vue 3 / Nuxt proficiency strongly preferred
• Practical understanding of web security fundamentals: XSS, CSRF, injection attacks, dependency vulnerabilities, broken authentication, secrets management
• Ability to read CVE advisories and translate them into concrete code or dependency changes
• Solid knowledge of container security: Docker image hardening, Kubernetes security contexts
• Experience with Git workflows, GitLab CI/CD pipelines, and package managers (Maven and pnpm both in active use)
• Structured approach to problem-solving with a habit of documenting findings
• Bonus: Vuetify component library experience, SAST/DAST tooling (Snyk, SonarQube, OWASP ZAP), Content Security Policy configuration or pnpm workspace experience

Pulled from the full job description

• Free parking
• Flexible schedule

Careers at aixigo - The most innovative software company in Aachen Join us in designing innovative software solutions with and for our customers. We have been setting the standard in digital investment advisory and wealth management for 25 years - in Germany, Europe and the world. At aixigo, you will find clever minds, a friendly workforce and diverse areas of responsibility. Short communication channels and long-term cooperation are essential to us - both among ourselves and in our customer projects. Distinctive spirit, appreciation and communication at eye level define our actions - every voice is heard. Become part of aixigo!