Entity: Oracle America, Inc. Job Duties: Develop and execute programs and processes to reduce information security risk and strengthen Oracle’s security posture. Support the strengthening of Oracle’s security posture, focusing on one or more of the following: risk management; regulatory compliance; threat and vulnerability management; incident management and response; security policy development and enforcement; privacy; information security education, training and awareness (ISETA); digital forensics and similar focus areas. Bring advanced level skills to assess the information security risk associated with existing and proposed business operational programs, systems, applications, practices and procedures in very complex, business-critical environments. May conduct and document very complex information security risk assessments. May assist in the creation and implementation of security solutions and programs. May telecommute. Employer will accept a Master’s degree in Computer Science, Engineering, or related technical field and 5 years of experience in the job offered or in a Security Analyst-related occupation.Position requires: - Qualys; - Nessus; - Dynamic application security testing (DAST), static application security testing (SAST), or static code analysis to discover vulnerabilities on internal and external web applications; - Threat hunting or incident response - CrowdStrike, Tanium, Carbon Black, or CylancePROTECT; - Microsoft Windows Server; - Linux; - IPv4 networks; - Encryption in transit, encryption at rest, hashing, digital signatures, or PKI certificate management; - Malware analysis; - Python scripting or Bash scripting; - Rest API; - Agile methodologies including Jira and Confluence. Only Oracle brings together the data, infrastructure, applications, and expertise to power everything from industry innovations to life-saving care. And with AI embedded across our products and services, we help customers turn that promise into a better future for all. Discover your potential at a company leading the way in AI and cloud solutions that impact billions of lives. True innovation starts when everyone is empowered to contribute. That’s why we’re committed to growing a workforce that promotes opportunities for all with competitive benefits that support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs. We’re committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_mb@oracle.com or by calling 1-888-404-2494 in the United States. Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

• Supporting core SOC operations across endpoint, identity, data protection, and vulnerability management • Monitoring and triaging security alerts with our MSSP • Contributing to fast and effective Incident Response • Enhancing threat detection and overall security visibility • Helping maintain and improve key security platforms such as DLP, EDR, and identity security tools • Following security processes and playbooks to ensure consistent operational quality • Collaborating with global IT teams to strengthen security and reduce risks • Contributing to threat intelligence and detection improvements • Supporting daily SOC tasks including email security, identity monitoring, and DLP reviews • Participating in continuous improvement initiatives to advance SOC maturity

Role Description As a Test Security Specialist focused on AP Investigations, you will lead investigations into AP test security incidents and score validity concerns. You will manage cases end to end by reviewing and synthesizing evidence such as statistical indicators, test day reports, plagiarism findings, AI-related reports, and any available supporting documentation or physical evidence. You will apply organization policies and legal requirements to reach clear, well-supported determinations, including whether evidence supports score cancellation. You will also communicate professionally with students, parents, and student representatives, including attorneys, counselors, and educators, to ensure timely case resolution and consistent, accurate policy explanation. This role requires strong judgment, attention to detail, and the ability to manage sensitive situations with fairness and discretion. Responsibilities of the role - Case Management (65%) - Own AP investigation cases end to end from intake through final determination and closure, ensuring each case is handled thoroughly, consistently, and within required timelines. - Triage and scope cases by identifying allegation type, applicable policy, key evidence needs, and any immediate risks or deadlines. - Collect, review, and synthesize evidence including statistical indicators, test day documentation, proctor and coordinator reports, seating and timing details (when available), plagiarism findings, AI-related reports, and any supporting materials submitted by stakeholders. - Analyze patterns and irregularities using investigative reasoning and data review techniques to determine whether observed signals are consistent with policy-defined misconduct or score validity concerns. - Document investigative work clearly and completely in the case management system, including evidence summaries, rationale, decision points, and recommended outcomes, to ensure audit ready and defensible case files. - Develop case recommendations that align to policy and evidentiary standards and collaborate with team leads and peers as needed on complex or high-risk determinations. - Coordinate cross-functional work with internal partners and external vendors to obtain evidence, validate reports, and resolve open questions, while protecting confidentiality and sensitive data. - Track and report case metrics such as status, aging, throughput, and outcomes, and surface trends, recurring issues, or process gaps to leadership. - Support continuous improvement by identifying opportunities to refine workflows, templates, documentation standards, and investigation playbooks to improve speed, consistency, and quality. - Customer Service (35%) - Communicate professionally and empathetically with students, parents, educators, and student representatives about cases under review, including what is being reviewed, what evidence is considered, and what steps occur next. - Draft clear written correspondence that accurately reflects policy, process, and case status, using a tone appropriate for sensitive situations and escalated concerns. - Conduct phone calls and written follow-ups to gather additional context, clarify documentation, and resolve stakeholder questions while maintaining confidentiality and neutrality. - Maintain detailed communication records so all stakeholder interactions, requests, and responses are captured consistently and are easy to reference during review or escalation. - De-escalate sensitive situations by explaining policies and outcomes diplomatically, setting expectations, and escalating to leadership or legal partners when needed. - Help ensure timely resolution by meeting response standards, managing follow-ups, and keeping cases moving forward without sacrificing quality or policy alignment. Qualifications - Associate degree required; bachelor’s degree preferred. - Strong investigative and problem-solving instincts, with analytical skills to support sound decisions and timely action. - Demonstrated success planning, executing, and completing projects within defined scope, timeline, and budget. - Excellent organizational and time-management skills, with the ability to manage multiple priorities and deadlines. - Strong interpersonal and communication skills, with a professional and diplomatic approach in both domestic and international settings, including sensitive customer interactions. - Proven ability to work effectively as part of a diverse team and contribute to collaborative, solutions-focused outcomes. - Experience managing relationships with internal stakeholders, third-party partners, and vendors. - Proficiency in PowerPoint, Word, Excel, and Salesforce. - Ability to learn new internally developed systems quickly and apply them to streamline and manage daily work. - Experience in investigations, compliance, test security, fraud prevention, risk management, or casework in a regulated environment. - Strong data analysis skills, including comfort interpreting statistical flags and trends in Excel. - Experience interpreting plagiarism findings and/or AI-related authorship indicators and translating technical outputs into clear documentation. - Demonstrated ability to manage escalations and sensitive stakeholder interactions with discretion and sound judgment. - Experience partnering with legal counsel or working in environments requiring strict confidentiality and documentation standards. Success Measures - Case throughput and timeliness: Managing an assigned caseload and moving cases from intake to closure within established timelines, including increased volume during peak periods. Where applicable, meeting productivity expectations aligned to case complexity and seasonality. - Quality and audit readiness: Producing complete, accurate, and well-organized case files with clear evidence summaries and documented rationale that meet audit and documentation standards. - SLA adherence: Meeting response and follow-up expectations for stakeholder communications and internal milestones, including timely documentation of interactions and next steps. - Decision consistency: Applying policies and evidentiary standards consistently across cases and escalating complex, high-risk, or ambiguous matters appropriately. - Stakeholder experience: Communicating clearly and professionally, setting expectations, and resolving cases with fairness and respect, including effective de-escalation when needed. - Operational contribution: Identifying recurring issues, trends, and process improvements that strengthen investigation quality, consistency, and efficiency. Benefits - Healthcare Benefits including Medical, Prescription, Vision & Dental Coverage | United Healthcare - Voluntary STD & LTD | New York Life - 401(k) Retirement Planning | Fidelity - Discount Program *You are Eligible to participate in the benefits program if you are considered a full-time employee of nextSource, working at least 30 hours per week on a consistent basis. Your coverage will be effective on the 1st of the month following 60 days of employment.

• Support the Department of Veterans Affairs (VA) by guiding systems through the full Risk Management Framework (RMF) lifecycle and ensuring compliance with VA security policies and authorization requirements. • Partner with Information System Owners (ISOs), Information System Security Officers (ISSOs), and other stakeholders to coordinate Authorization to Operate (ATO) activities, identify and mitigate risks, and maintain the security posture of systems from acquisition and deployment through decommissioning. • Serve as a trusted security advisor, translating complex cybersecurity requirements into practical recommendations that enable secure and compliant IT system implementation. • Coordinate and support RMF Steps 0–6 activities required to obtain and maintain system Authorizations to Operate (ATO). • Collaborate with Information System Owners (ISOs), Information System Security Officers (ISSOs), and system stakeholders to ensure security requirements are implemented and documented. • Develop, update, and maintain detailed security documentation and authorization artifacts in accordance with VA policies and processes. • Identify, assess, and help mitigate security risks and vulnerabilities, escalating critical risks to leadership when necessary. • Provide information system security guidance throughout the system lifecycle, including acquisition, installation, operations, and decommissioning. • Translate complex cybersecurity and RMF requirements into actionable recommendations to support secure system deployment and operations. • Support security reviews of IT systems, networks, hardware, and software across a variety of environments and installation sites.