We are looking for a Senior Security Specialist to lead and support cybersecurity and compliance initiatives across our cloud environments. This role will be responsible for managing security compliance processes, assessing regulatory and customer-specific requirements in new countries and markets, and ensuring the organization maintains strong security posture aligned with standards such as SOC 2, ISO 27001, and GDPR. Innovecs is a global digital transformation tech company with a presence in the US, the UK, the EU, Israel, Australia, and Ukraine. Specializing in software solutions, the Innovecs team has experience in Supply Chain, Healthtech, Software & Hightech, and Gaming. For the fifth year in a row, Innovecs is included in the Inc. 5000 and recognized in IAOP’s ranking of the best global outsourcing service providers. Innovecs is featured in the Global Top 100 Inspiring Workplaces Ranking and won gold at the Employer Brand Management Awards. Our value to you: - Flexible hours and remote-first mode - Competitive compensation - Complete Hardware/Software setup – anything you need for work - Open-door culture, transparent communication, and top management at a handshake distance - Health insurance, vacation, sick leaves, holidays, paid maternity/paternity leave - Access to our learning & development center: workshops, webinars, training platform, and edutainment events - Virtual team buildings and social activities If you feel like you’re the perfect match for this role, drop us your CV! There are no limitations, no barriers when the right people are on your way — apply for the vacancy and succeed with us! Innovecs is an equal opportunity employer. All hiring decisions are based on professional qualifications, skills, and experience. We are committed to a transparent, merit-based recruitment process that prevents discrimination and ensures equal opportunities for all candidates. Reasonable accommodations are available upon request throughout the recruitment process to support accessibility and inclusion.

• Develop and implement threat modeling to identify security risks across applications and infrastructure. • Conduct vulnerability scanning, penetration testing, and security assessments to detect weaknesses. • Define and enforce secure coding practices in collaboration with development teams. • Work with DevOps to integrate security into CI/CD pipelines and automate security testing. • Monitor and respond to security incidents, conducting root cause analysis and implementing preventative measures. • Ensure compliance with security standards and regulations (e.g., ISO 27001, GDPR, SOC 2). • Design and implement identity and access management (IAM) policies, encryption standards, and authentication mechanisms. • Collaborate with product teams to conduct security reviews of features, APIs, and third-party integrations. • Develop incident response plans, security documentation, and best practices. • Stay ahead of emerging threats, vulnerabilities, and security technologies.

• Develop and implement threat modeling to identify security risks across applications and infrastructure. • Conduct vulnerability scanning, penetration testing, and security assessments to detect weaknesses. • Define and enforce secure coding practices in collaboration with development teams. • Work with DevOps to integrate security into CI/CD pipelines and automate security testing. • Monitor and respond to security incidents, conducting root cause analysis and implementing preventative measures. • Ensure compliance with security standards and regulations (e.g., ISO 27001, GDPR, SOC 2). • Design and implement identity and access management (IAM) policies, encryption standards, and authentication mechanisms. • Collaborate with product teams to conduct security reviews of features, APIs, and third-party integrations. • Develop incident response plans, security documentation, and best practices. • Stay ahead of emerging threats, vulnerabilities, and security technologies.

• Analyze complex Web3 security cases and extract recurring attack patterns to build and maintain comprehensive SOPs. • Proactively identify gaps in current operation workflows and propose systematic improvements to enhance the team's overall efficiency. • Partner with AI agents to crystallize security insights into a high-quality knowledge base, improve team’s collective intelligence and operational speed. • Stay ahead of emerging fraud techniques and evolving Web3 product logic, translating these trends into actionable defense strategies for the team. • Work closely with engineering and strategy teams to transform manual analysis into automated detection rules.