HR Systems Security & Risk Assessment Specialist

We at Innovecture are hiring for a "HR Systems Security & Risk Assessment Specialist" to expand our team, this is a Remote role in US. You will work across various Innovecture client teams and apply your technical expertise to some of the most complex and challenging technology problems. About Innovecture: Founded in 2007 under the leadership of CEO Shreyas Kamat, Innovecture LLC, began as a U.S. based Information Technology and Management Consulting Company focusing on technology consulting and services. With international development centers located in Salt Lake City, USA and Pune, India, Innovecture leverages its Global Agile Delivery Model to effectively deliver client projects within budget scope and project deadline. The primary focus of Innovecture is to provide a unique wealth of expertise and experience to the IT and Management Consulting realm by utilizing various technologies across multiple industry domains. Innovecture uses best-in-class design processes and top-quality talent to ensure the highest quality deliverables. With innovation embedded in its consulting and services approach, Innovecture will continue to deliver outstanding results for its Fortune 500 clients and employees. We are seeking a skilled HR Systems Security & Risk Assessment Specialist with strong expertise in HR domain processes, system integrations, data security, and vulnerability assessment. The ideal candidate will be responsible for evaluating risks associated with HR technology environments, ensuring secure integrations between systems, and safeguarding sensitive employee data. Key Responsibilities Risk & Security Assessment • Conduct comprehensive risk assessments across HR systems, applications, and integrations. • Identify security vulnerabilities within HR platforms (e.g., HRIS, ATS, payroll systems) and propose mitigation strategies. • Ensure HR data protection practices comply with organizational and regulatory standards (GDPR, SOC 2, ISO 27001, etc.). HR Systems Integration • Evaluate security risks during new HR system integrations and data migrations. • Work closely with IT and HR Technology teams to ensure secure data flows between systems (HRIS, payroll, benefits, talent systems). • Review API integrations, SSO setups, and access management practices to ensure secure interoperability. Security & Penetration Testing Conduct penetration testing, vulnerability assessments, and security audits for HR applications, APIs, and integrations. Identify risks related to authentication, authorization, data exposure, and API security. Perform threat modeling for HR data flows and integration architectures. Validate security controls such as encryption, tokenization, OAuth, SAML, and role-based access controls. Compliance & Governance • Develop and maintain HR data governance frameworks. • Ensure compliance with internal security policies and external regulatory requirements. • Prepare documentation and audit reports for compliance and risk management reviews. Monitoring & Incident Response • Monitor HR system activity for unusual patterns and potential security concerns. • Support incident response processes involving HR data or HR technology platforms. • Conduct periodic penetration tests and vulnerability scans, coordinating with security teams. Collaboration & Communication • Partner with HR, IT Security, Legal, and Compliance teams to implement best practices. • Provide training and guidance to HR teams on data security and system risks. • Communicate risk findings and recommendations to stakeholders in a clear and actionable manner. Required Qualifications • Bachelor's degree in information security, Computer Science, HR Technology, or related field. • 3-7 years of experience in HR systems security, risk assessment, or HRIS/HR tech environments. • Strong understanding of HR domain processes (payroll, recruitment, workforce management, benefits). • Hands-on experience with security assessments, vulnerability management, and risk mitigation. • Experience with HR platforms such as Workday, SAP SuccessFactors, Oracle HCM, BambooHR, UKG, or similar. • Familiarity with integration technologies (REST APIs, SFTP, middleware tools, SSO/Identity Management). • Knowledge of data protection standards and compliance frameworks. Preferred Skills • Certification in security or risk management (CISM, CISA, CISSP, ISO 27001 Lead Auditor). • Experience with HR analytics and data governance. • Strong problem-solving, analytical thinking, and communication skills. • Ability to manage cross-functional projects and coordinate with technical and non-technical teams.

Created: 2026-03-04