KALWEIT ITS GmbH

KALWEIT ITS GmbH

Speciality: Manual and Specialized Penetration Testing

hamburg, Germany 8 employees
Visit Website View on LinkedIn
[01] About

Cybersecurity company specializing in high-level penetration testing and IT security consulting; 5 employees with 33.3% YoY growth; founded 2017; based in Hamburg, Germany; offers penetration testing, vulnerability management, and cyber resilience services.

Wir sind eine unabhängige Beratungsgesellschaft für IT-Sicherheit. Im Zentrum unserer Arbeit stehen Cyber-Resilienz und IT-Sicherheitsprüfungen in echter Boutique-Qualität. Als Tiefenspezialisten für manuelle Penetrationstests und offensive IT-Sicherheit unterstützen wir Konzerne und den Mittelstand – mit über acht Jahren Erfahrung und mehr als 400 erfolgreich umgesetzten Projekten. Unsere Expertise beginnt dort, wo klassische Technologieanbieter, Systemhäuser oder internationale Beratungskonzerne oft an Grenzen stoßen. Unsere Kunden erhalten IT-Sicherheit aus einer Hand: tiefgehende Schwachstellenanalysen, fundierte Risiko-Bewertungen und klare, direkt umsetzbare Empfehlungen – verständlich für IT und Management. Wir arbeiten unabhängig und produktneutral. Wir verkaufen keine Tools und vertreten keine Fremdinteressen. Unsere Beratung dient nur einem Ziel: der Sicherheit Ihrer Systeme. Ob Gesundheitswesen, Finanzbranche, Energieversorgung oder KRITIS – wir kennen die regulatorischen Anforderungen ebenso wie die operativen Realitäten Ihrer Branche. Was uns auszeichnet: Verlässlichkeit, Verbindlichkeit und ein partnerschaftlicher Umgang auf Augenhöhe. Wir stehen für hanseatische Werte – und dafür, IT-Sicherheit klar, ehrlich und wirkungsvoll umzusetzen. Wir kennen die Angriffsstrategien von morgen – und bieten gezielte Sicherheitslösungen für Konzerne und den Mittelstand. KALWEIT ITS GmbH Rathausstr. 3 20095 Hamburg Handelsregister Hamburg: HRB 149782 Geschäftsführer: Dipl.Wirtschafts-Ing. Günther Paprocki, Sven Philipp Kalweit Beirat: Olaf Baunack
[02] Services
Provides Penetration Testing
Managed Pentesting
Red Teaming
IT Security Consulting
Vulnerability Management
Cyber Resilience Services Tailored To Medium-sized Companies And Large Corporations In Regulated Industries.
[03] Certifications
GPEN

The GPEN Certification: Origin


The GPEN (GIAC Penetration Tester) certification was created by the Global Information Assurance Certification (GIAC), an organization founded in 1999 as part of the SANS (SysAdmin, Audit, Network, and Security) Institute. GIAC developed the GPEN to validate the technical skills of cybersecurity professionals who perform penetration testing and ethical hacking. The certification was designed to ensure that practitioners possess both the theoretical knowledge and hands-on abilities needed to conduct proper security assessments and identify vulnerabilities in networks and systems.


Industry Value and Importance


The GPEN certification is highly valued in the cybersecurity industry because it demonstrates practical, real-world penetration testing skills rather than just theoretical knowledge. Employers recognize GPEN-certified professionals as capable of conducting thorough security assessments, understanding attack vectors, and properly documenting findings. The certification meets DoD 8570/8140 requirements for certain Information Assurance positions, making it particularly valuable for government contractors and federal positions. Its focus on hands-on methodology and current attack techniques makes GPEN holders sought after for offensive security roles, penetration testing teams, and security consulting positions.
Ecppt

eCPPTv2 Cybersecurity Certification


The eLearnSecurity Certified Professional Penetration Tester (eCPPT) certification was created by eLearnSecurity, an Italian cybersecurity training company founded in 2004. In 2021, eLearnSecurity was acquired by INE (International Network of Experts), which continues to offer the certification as eCPPTv2. The certification was developed to address the need for practical, hands-on penetration testing credentials that go beyond theoretical knowledge, focusing on real-world scenarios that security professionals encounter in the field.


The eCPPT is valued in the industry for its practical, performance-based examination approach that requires candidates to conduct a full penetration test against a simulated corporate network, including reporting findings in a professional manner. Unlike multiple-choice exams, it demonstrates actual technical competency in areas like network security, web application testing, and vulnerability assessment. This hands-on validation makes it particularly attractive to employers seeking candidates who can immediately apply penetration testing skills, positioning it as a mid-level certification that bridges entry-level credentials and advanced certifications like OSCP.