.

Questions asked in my interview

<<

blackazarro

User avatar

Sr. Member
Sr. Member

Posts: 368

Joined: Sun Aug 13, 2006 5:31 pm

Post Sat Sep 01, 2007 5:04 am

Questions asked in my interview

Hello everyone, last week or so I saw a local advertisement for a job opening as an Information Security Specialist. The job description included knowledge of TCP/IP, Security Monitoring/Analysis, Pentesting, Computer Forensic, configuring and administering Firewall/NIDS and etc. The company that posted the ad is a well known financial corporation where I live and well... I decided to submit my resume and see what it has to offer.

That same week I quickly received a call from the company and a date was schedule for the interview. In my day of the interview I met with the CISO (Chief Information Security Officer) and the following technical were asked:

- Explain TCP/IP and mention its layers.
- Explain layer 2 of the OSI model.
- Explain layer 3 of the OSI model.
- Difference between TCP and UDP.
- Difference between Telnet and SSH.
- How does SSH encrypts the data?
- Explain how fragmentation occurs within a network.
- Define Malware?
- What is a sniffer and what is it used for?
- What is Netcat and what is it used for?
- What is a Buffer Overflow and what is it used for?
- The interviewer drew a diagram on a piece of paper consisting of two machines in a LAN, a Gateway and a Web Server in the Internet hosting a financial site via HTTPS. Explain how an attacker (Machine A) could sniff traffic from victim (Machine B) and is the attacker able to see the encrypted data and how was this accomplished. How can the victim know that he was being attacked by the attacker?

I did pretty good and answered all the questions. He was somewhat impressed. He told me that I was the first to answer all the questions and that I'm the person he was looking for. He went on saying that these questions were easy, however, the candidates he interviewed that day were having difficulty answering them.

Well, now I just have to wait and see if I get the job offer and if the salary and compensation package is better than my current job.
Last edited by blackazarro on Sat Sep 01, 2007 5:06 am, edited 1 time in total.
Security+, OSCP, CEH
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Sat Sep 01, 2007 6:48 pm

Re: Questions asked in my interview

Great post.

Not only is it great to see that there are employers out there checking candidates properly, but it is also good to know what they're asking.

There will always be the braindump type of mentality that will memorize the questions you posted before they go into their next interview, but I think most here will understand that the questions to these basic questions need to be known.

Is it necessary to know everything about a job before you go for it... no. But there should be some good general knowledge going in.

Keep us posted. We're all interested in how this turns out.

Don
CISSP, MCSE, CSTA, Security+ SME
<<

venom77

User avatar

Hero Member
Hero Member

Posts: 1905

Joined: Mon Dec 11, 2006 3:23 pm

Post Sun Sep 02, 2007 2:40 pm

Re: Questions asked in my interview

Wow, yeah that's really interesting.

Out of curiosity, were you asked about your certifications at all? I've seen either in other posts here, or elsewhere, that sometimes people don't understand the CEH and may question it. Just wondering if the CISO had asked about that or the OSCP at all and what that conversation included.

Good luck with the job and all, hope it works out! Keep us informed :)
<<

blackazarro

User avatar

Sr. Member
Sr. Member

Posts: 368

Joined: Sun Aug 13, 2006 5:31 pm

Post Sun Sep 02, 2007 6:15 pm

Re: Questions asked in my interview

Hey thanks...

and yeah, the CISO did recognized all of my certs and especially the OSCP. He mentioned that he uses BackTrack for his pentesting and he knew about Offensive Security 101 course. Other than that he really didn't delve into asking about my certs, he just started blasting technical questions at me. However, it appeared that he does value certs. This was evident in their job posting. It mentioned that they would preferred a candidate with a CISSP cert. I don't have this yet but I'm definitely going to take it in the near future. Hopefully, with the certs I currently hold will make up for the lack of the CISSP.

The CISO was not the only person I was interviewed, I also met with one of their company's HR managers. Now she was really intrigued about my certs and ask a lot of questions about it. Like for example, where have I taken the courses and what the certifications meant. Surprisingly, she was so interested because she has a son that just recently graduated from College majoring in Computer Science. She one way or another acknowledged that having certifications is important for today's IT professional. She than began asking for my advice for her son on how to obtain certifications. I basically gave pointers on local technical schools that offer certification review courses and importantly pointing out to her that the certs I hold pertains to security. I wanted to clarify this so I told her that her son should go after certifications that are based on his interest and focus solely on those that are relevant to the career path he wants to take. She didn't mention to me if her son was into Computer Security. Anyways, the interview with HR went smoothly and I was fortunate to had been interview by someone who was down to earth and had interest in the subject matter.

Well now I just have to wait and see if they send me a job offer. I will definitely keep you guys posted.
Last edited by blackazarro on Tue Sep 11, 2007 2:24 pm, edited 1 time in total.
Security+, OSCP, CEH
<<

oleDB

User avatar

Recruiters
Recruiters

Posts: 236

Joined: Thu Jul 20, 2006 8:58 am

Location: HOA

Post Fri Sep 07, 2007 3:51 pm

Re: Questions asked in my interview

Sounds like you have something promising going, congrats! let us know how it turns out.

I recently interviewed for a security opening and for the first time ever I was given a written Perl exam. Some of it was really basic, but there were large sections of code and sytax that I had to analyze and write out what it was doing and also I had to write out code myself. I think I got about an 80% on it, however what was odd, what that nowhere in the Job req did it mention perl.
Kinda of strange, and the panel interviews were just a nonstop technical barrage of really specific questions, not just explain what a firewall is or something lame like that. I was so impressed with their interview, it would be really hard to turn down an offer from them if I got it. Oh well, will wait and see.
<<

blackazarro

User avatar

Sr. Member
Sr. Member

Posts: 368

Joined: Sun Aug 13, 2006 5:31 pm

Post Tue Sep 11, 2007 2:06 pm

Re: Questions asked in my interview

Good luck oleDB! I hope everything goes well for you. The job does sound promising.

Well, anyways, today I received a call from the HR manager and she said I was chosen for the job position. She set an appointment to discuss salary and such. Let see how it goes. Got to polish my negotiating skills, lol.
Security+, OSCP, CEH
<<

oleDB

User avatar

Recruiters
Recruiters

Posts: 236

Joined: Thu Jul 20, 2006 8:58 am

Location: HOA

Post Tue Sep 11, 2007 2:25 pm

Re: Questions asked in my interview

Awesome, congrats!
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Tue Sep 11, 2007 3:11 pm

Re: Questions asked in my interview

Congrats!!

8)

Don
CISSP, MCSE, CSTA, Security+ SME
<<

blackazarro

User avatar

Sr. Member
Sr. Member

Posts: 368

Joined: Sun Aug 13, 2006 5:31 pm

Post Tue Sep 11, 2007 5:04 pm

Re: Questions asked in my interview

Thanks!!  ;D
Security+, OSCP, CEH
<<

oasis_inin

Newbie
Newbie

Posts: 20

Joined: Thu Mar 01, 2007 4:36 am

Post Thu Sep 13, 2007 11:35 am

Re: Questions asked in my interview

Many Congrats!!!!!!!!!! :)
CISSP, MCSE Sec, Security +
studying for C|EH
<<

blackazarro

User avatar

Sr. Member
Sr. Member

Posts: 368

Joined: Sun Aug 13, 2006 5:31 pm

Post Thu Sep 13, 2007 12:51 pm

Re: Questions asked in my interview

Thanks again, I'm currently at the negotiating table. Let see what happens.
Security+, OSCP, CEH
<<

squidmaster

Newbie
Newbie

Posts: 21

Joined: Thu Sep 13, 2007 4:58 pm

Post Thu Sep 13, 2007 6:30 pm

Re: Questions asked in my interview

Good luck mate!

That was a much harder job interview than mine.
Mine was: I walk in.
"How are you doing?"
"Greatttt... So you know about computers?"
"Yes sir I do."
"Greatttt.... So when can you start?"

and I have just moved up from there.
<<

blackazarro

User avatar

Sr. Member
Sr. Member

Posts: 368

Joined: Sun Aug 13, 2006 5:31 pm

Post Wed Sep 26, 2007 12:46 pm

Re: Questions asked in my interview

Finally after some negotiating I got the job!! I'm excited and looking forward to work for this company. Their security department is new and a lot of work needs to be done. Let see how it goes.
Security+, OSCP, CEH
<<

Florin

Newbie
Newbie

Posts: 29

Joined: Thu May 03, 2007 8:57 am

Post Wed Sep 26, 2007 2:43 pm

Re: Questions asked in my interview

Congratulations blackzarro!

Good luck with your new position!
Security+, OSCP, CISM, CISSP
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Wed Sep 26, 2007 4:17 pm

Re: Questions asked in my interview

Well done.

Sounds like there's an article in there somewhere...  :-\

Don
CISSP, MCSE, CSTA, Security+ SME
Next

Return to Career Central

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software