Backend CVE Remediation Engineer (external) (m/f/d) at Karriere bei aixigo

Aachen, North Rhine-Westphalia, Germany -

Full Time

Start Date

Immediate

Expiry Date

06 Sep, 26

Salary

0.0

Posted On

08 Jun, 26

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Java 17+, Maven, CVE Remediation, Root-Cause Analysis, OWASP Top 10, GitLab CI/CD, Dependency Management, JAX-RS, Jersey, Quarkus, JPA, Hibernate, Container Security, SonarQube, SpotBugs, GitLab Dependency Scanning

Industry

Software Development

Description

Short and crisp Do you want to systematically analyze and remediate security vulnerabilities, dive deep into Java technology, and make our products measurably more secure? Then we're looking for you in a hybrid model for the location Aachen as Backend CVE Remediation Engineer (m/f/d). Welcome to aixigo! Your job – Your passion Triage and remediate critical and high CVEs in Java dependency chains across 30+ microservices Perform root-cause analysis for security bugs; implement well-tested, minimal-footprint fixes Identify and harden vulnerable code paths: injection points, broken authentication, dependency hygiene, secrets handling Upgrade third-party libraries across Maven multi-module projects while preserving functional correctness Review security-sensitive changes in collaboration with the tech lead and service owners Document suppression rationale for CVEs that cannot be immediately remediated; maintain the suppression registry Contribute to security incident post-mortems and capture learnings as reusable patterns Your profile – Your strengths 3+ years Java (17+), Maven dependency management in multi-module projects Experience resolving transitive dependency conflicts: mediation rules, exclusions, BOMs Ability to read CVE advisories and assess actual exploitability in context — not just CVSS score Practical understanding of OWASP Top 10 applied to Java backend services Comfortable working across many codebases with varying configurations (client-specific solution forks differ significantly from the product standard) GitLab CI/CD basics: reading pipelines, understanding scan job output, acting on findings Bonus: JAX-RS/Jersey or Quarkus familiarity, JPA/Hibernate upgrade experience, container security basics, SAST tooling (SonarQube, SpotBugs) or GitLab Dependency Scanning Our offer to you Great creative freedom and a variety of opportunities for further development in a very trusting and appreciative environment The choice between different work models (office or hybrid) with flexible working hours, a working time account, overtime regulations and modern and ergonomically equipped workstations State-of-the-art collaboration tools for efficient hybrid working (e. g.,Stackoverflow for Teams) A family-friendly and relaxed atmosphere where ideas are created together with the best colleagues on earth! Unlimited employment contracts, company pension plan, bonus payments, a future leadership program, development budgets and LinkedIn Learning, sports events, childcare support, cafeteria, health campaigns, bring your dogs to work, sufficient and free parking spaces, bicycle leasing, IT hardware leasing, tire changing service, company and sports events, team excursions and teamchallenges, parcel service, drinks, fresh fruit and vegetables, cookies and much more About us Careers at aixigo – The most innovative software company in Aachen Join us in designing innovative software solutions with and for our customers. We have been setting the standard in digital investment advisory and wealth management for 25 years – in Germany, Europe and the world. At aixigo, you will find clever minds, a friendly workforce and diverse areas of responsibility. Short communication channels and long-term cooperation are essential to us – both among ourselves and in our customer projects. Distinctive spirit, appreciation and communication at eye level define our actions – every voice is heard. Become part of aixigo!

Responsibilities

Triage and remediate critical security vulnerabilities (CVEs) across Java dependency chains in over 30 microservices. Perform root-cause analysis and implement minimal-footprint fixes while maintaining functional correctness and documenting suppression rationales.