What types of partnerships does Selise Group offer?

We offer various partnership types including startup incubation through Simcubator, academic partnerships with universities, corporate strategic alliances, technology partnerships, investment opportunities, and CSR collaborations. Each partnership is tailored to create mutual value and drive innovation.

Which frontend frameworks does it support?

It’s designed to work seamlessly with any frontend framework (e.g., Angular, React) and any environment.

How does it integrate into an existing localization workflow?

Because it supports project-aware translation across environments and key/text mode switching, you can test in dev/staging and then migrate smoother to production.

How accurate are the translations?

The AI-driven component is claimed to improve translation accuracy more than 90%.

How does the real-time preview work?

The browser extension overlays translations directly on top of the running frontend app in dev or staging mode. It fetches relevant translation keys from the connected project in real time, letting translators test and adjust in context.

Go Back

Senior Security Engineer – Penetration Testing

Summary

A skilled Penetration Tester / Security Engineer to perform offensive security assessments across web applications, mobile applications, APIs, and related infrastructure. The role focuses on identifying real-world risks, validating exploitability, and delivering actionable remediation guidance to engineering teams.

What You Will Do

You plan and execute authorized penetration tests for web applications, mobile applications
(iOS/Android), APIs (REST, GraphQL), and backend services.
You perform threat modeling, attack surface analysis, and risk-based scoping to prioritize testing efforts.
You identify, safely exploit, and validate vulnerabilities using a mix of automated tools and manual techniques; produce proof-of-concept exploits where appropriate.
You maintain and expand a findings knowledge base, test cases, and remediation patterns.
You produce clear, technical reports including executive summaries, risk ratings, reproducible steps, PoCs, and prioritized remediation recommendations.
You collaborate with development, DevOps, and product teams to explain findings, validate fixes, and advise on secure design and secure coding practices.
You integrate repeatable security tests into development pipelines (SAST/DAST) where feasible.
You support security reviews, audits, compliance activities, and incident responses as needed.
You document and deliver internal training, workshops, and knowledge-sharing sessions to raise security awareness.

Who You Are

You have 5+ years of hands-on experience performing penetration tests and vulnerability assessments on web applications, mobile apps, and APIs.
You have a strong practical knowledge of OWASP Top 10, API security risks, and common exploitation techniques.
You have proficiency with penetration testing tools such as Burp Suite, ZAP, Nmap, Metasploit, sqlmap, and API fuzzers.
You have experience with mobile application testing: reverse engineering, instrumentation, insecure storage, and platform-specific weaknesses.
You have solid scripting and automation skills (Python, Bash, or similar) for custom tooling and automation.
You have familiarity with cloud security and container security basics.
You have a strong understanding of secure coding practices and ability to translate findings into developer-friendly remediation steps.
You have excellent written and verbal communication skills for technical reporting.
You have analytical mindset, attention to detail, and ability to prioritize findings by business impact and business aspects.
You will demonstrate the ability to guide, support and collaborate with SOC analysts while fostering a team-oriented culture.
You will show potential to step into a people-led role by contributing to process design, mentoring junior team members and driving team accountability.

Nice to Have

You have relevant certifications.
You have 2+ years of experience developing REST/GraphQL APIs, and Web Applications.
You have relevant experience in similar position.
You have past vulnerability discoveries and remediation.
Monthly team events.
Lots of challenges and even more scope to implement your ideas.

What You Can Expect

A competitive salary structure.
A collaborative environment with supportive peers, mentors, and strong engineering culture.
Opportunities to participate in innovation initiatives, architecture discussions, and technical
leadership.
Continuous learning through training, knowledge sharing, and hands-on challenges.
Team building events, and recreational activities.
Plenty of scope to experiment, innovate, and make a real impact.

Job Title

Senior Security Engineer – Penetration Testing

Job Nature

Full-time

Job Type

On-site

Location

Nepal

Available Position(s)

Apply Now

General Services

Retail & Services

Insurance & Banking

Telecom & Technology

Manufacturing & Engineering

User Experience

Staff Augmentation

Consulting

IT Operations

Ordermonkey

Enterprise Platform (BLOCKS)

SELISE Signature

Our values

Management Team

Career

Press Kit

Strategic Alliances

Senior Security Engineer – Penetration Testing