I wouldn't pivot to security completely, it honestly seems like that field has been boiled down to moving data from automated security jobs into Jira and chasing down engineers to fix dependabot issues.
As a developer you should of course study security concepts and understand how to avoid creating exploits in what you are working on, but being a dev who understands a good amount about security is always going to be more useful to a company IMO
Selling yourself as a Cybersecurity dev from Iraq will probably be harder than selling yourself as a frontend engineer. So I would focus on improving frontend skills and marketing.
You didn't mention it as an option, but if you are tiring of frontend, I would consider pivoting to doing backend/fullstack/data engineering. Boost your database/analytics skills. Your front-end experience can help you have a nice niche in that backend space once you master backend work.
But this is just a guess on my part from an American developer/architect/hiring manager in both startups and large companies whose frontend skills plateaued 20 years ago at the expense of backend skills but who lightly follows frontend technologies.