Senior Penetration Tester (m/f/d)

q.beyond AG is a leading German IT service provider. Our 1,100 employees with expertise in cloud, SAP, Microsoft, data intelligence, security and software development support our SME customers in their digital transformation.

Design future-proof IT solutions with us as Senior Penetration Tester (m/f/d) at one of our locations:

• Hamburg
• Köln
• Oberhausen

• Plan, execute, and document complex penetration tests and Red Team assessments
• Perform technical analysis and exploitation of Active Directory, Azure AD, and Microsoft 365 environments
• Evaluate and simulate attacks on network security solutions (e.g., Fortinet, Check Point)
• Develop actionable recommendations and present findings to both management and technical stakeholders
• Enhance internal tools, methodologies, and TTP (Tactics, Techniques, and Procedures) libraries
• Collaborate closely with the defensive team to improve detection and response capabilities
• Conduct security assessments in SAP environments (e.g., authorizations, RFC, custom code)

• Work-life balance: Flexible mix of working hours and work location (40% home office) for a harmonious work-life integration.
• Vacation entitlement: 30 days of vacation, special leave and a sabbatical account for restful time off and relaxation.
• Quality of life: private accident insurance, supplementary health insurance, extended sick pay and a company pension scheme. Focus on your mental health through the Fürstenberg Institute.
• Fitness promotion: Own JobRad, virtual physiotherapy, various company running events.
• Career opportunities: Numerous certification opportunities via Udemy, Linkedin Learning and SAP Learning Hub.
• Professional and personal developmen t: Our internal Academy, monthly company Learning Days, development dialogs and a leadership development program.
• Family first: Baby welcome package and €1,000 bonus for the birth.
• Flitzpiepen: Daycare center closed? Don't worry - there are family-friendly workplaces with play facilities for your offspring.
• Dog Office: Office space where dogs are welcome, for a relaxed working atmosphere.

Some of our benefits are location-based.

• Several years of hands‑on experience in penetration testing or Red Team engagements
• Deep knowledge of Active Directory, Azure AD, Microsoft 365, and hybrid cloud architectures
• Strong understanding of network security, particularly Fortinet and Check Point infrastructures
• Proficiency with common penetration testing tools (e.g., Burp Suite, Cobalt Strike, BloodHound, Metasploit, PowerShell Empire)
• Skilled in scripting and automation using PowerShell, Python, or Bash
• Analytical mindset, structured work approach, and confident client‑facing communication skills
• Excellent German (C1) and good English (B2) language proficiency
• Experience in security assessments of SAP systems (e.g., authorizations, RFC, custom code) is a plus
• Relevant certifications such as OSCP, CRTP, OSEP, or equivalent are a plus

You can apply quickly and easily without a cover letter. Simply upload your CV and certificates online on our job portal.

Inclusion is important to us. We explicitly welcome applications from people with severe disabilities and those with equivalent status.

Your personal contact Rocio will be happy to answer your questions and comments.

q.beyond AG
Talent Acquisition
Rocio Romera del Moral