Security Basics mailing list archives

RE: Interview Questions

From: "Camiel, Jeffrey" <Jeffrey_Camiel () jeffersonwells com>
Date: Wed, 23 Aug 2006 12:57:38 -0500

Agreed!

Some thoughts.

Normally for a position you will go through a number of interviews which
fall into three types.

1. Technical
2. Operational
3. Culture fit
 
On the technical, I have found the best way to really determine if
someone knows there stuff is through real world problem solving. (i.e.
something doesn't work, walk me through fix it). The interesting thing
is the individual may not know the technology which is okay.  What I am
looking for is the thought process and the experience brought to
answering the question.


Jeffrey Camiel
Director, Technology Risk Management
Jefferson Wells International
San Jose, Ca.
408.454.2459 (of)


-----Original Message-----
From: BARRETT,WILL [mailto:BARRETW () airproducts com] 
Sent: Wednesday, August 23, 2006 2:15 AM
To: revnic () gmail com; security-basics () securityfocus com
Subject: RE: Interview Questions

If you are going to do that why bother?  Chances are pretty good that
the person you are interviewing has already passed certification so why
ask them again?  Personally I find this kind of interview insulting and
it definitely indicates that the company either doesn't know about
security, or more likely doesn't care enough about it to make it worth
my while to work there.  Bad interview techniques = bad hire = bad
security.

A better solution in my opinion is to ask questions based on a real
world scenario, such as, "recently a wireless initiative was passed down
by management and we are going to roll out global wireless access to our
company in the next year.  What would you suggest as some things that we
would want to do in order to keep our network secure as we deploy this
technology?"   The is no "right" answer that would apply to every
company.  However the guy you want to hire will ask some more questions
about what you want to accomplish with this deployment before offering
his suggestion.  Also, even from the candidates you do not hire, you may
get some ideas that you hadn't considered.

Just my opinion

-Will Barrett

-----Original Message-----
From: revnic () gmail com [mailto:revnic () gmail com] 
Sent: Tuesday, August 22, 2006 2:45 PM
To: security-basics () securityfocus com
Subject: Re: Interview Questions

get some tests from TestKing and compile a list of questions.


regards,

Revnic Vasile

------------------------------------------------------------------------
---
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has
designated Norwich University a center of Academic Excellence in
Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting
experience. 
Using interactive e-Learning technology, you can earn this esteemed
degree, without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---


------------------------------------------------------------------------
---
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic
Excellence 
in Information Security. Our program offers unparalleled Infosec
management 
education and the case study affords you unmatched consulting
experience. 
Using interactive e-Learning technology, you can earn this esteemed
degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---



-----------------------------------------
******* Internet Email Confidentiality ******* The information
contained in this message may be privileged and confidential and
protected from disclosure. If the reader of this message is not the
intended recipient, or an employee or agent responsible for
delivering this message to the intended recipient, you are hereby
notified that it is strictly prohibited (a) to disseminate,
distribute or copy this communication or any of the information
contained in it, or (b) to take any action based on the information
in it. If you have received this communication in error, please
notify us immediately by replying to the message and deleting it
from your computer.


---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

Interview Questions Turner Falls (Aug 21)
- RE: Interview Questions Shawn Smith (Aug 22)
- RE: Interview Questions eric (Aug 22)
- Re: Interview Questions List Spam (Aug 24)
- <Possible follow-ups>
- Re: Interview Questions revnic (Aug 22)
  - RE: Interview Questions BARRETT,WILL (Aug 23)
    - RE: Interview Questions David Gillett (Aug 24)
- RE: Interview Questions Camiel, Jeffrey (Aug 24)
  - RE: Interview Questions tony . dimichele (Aug 24)
- RE: Interview Questions Keith T. Morgan (Aug 24)
  - RE: Interview Questions Randy Johnson (Aug 25)
  - RE: Interview Questions Mark Brunner (Aug 25)
  - Audit Windows 2003, IRM (Aug 25)
    - Re: Audit Windows 2003, Dale Neufeld (Aug 28)
  - RE: Interview Questions BARRETT,WILL (Aug 25)
- RE: Interview Questions Young, Randy (Aug 25)