Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Interview Questions

from [Camiel, Jeffrey] Network Security [Permanent Link]
Subject: RE: Interview Questions
Date: Wed, 23 Aug 2006 12:57:38 -0500 
Agreed!

Some thoughts.

Normally for a position you will go through a number of interviews which
fall into three types.

1. Technical
2. Operational
3. Culture fit
 
On the technical, I have found the best way to really determine if
someone knows there stuff is through real world problem solving. (i.e.
something doesn't work, walk me through fix it). The interesting thing
is the individual may not know the technology which is okay.  What I am
looking for is the thought process and the experience brought to
answering the question.


Jeffrey Camiel
Director, Technology Risk Management
Jefferson Wells International
San Jose, Ca.
408.454.2459 (of)


-----Original Message-----
From: BARRETT,WILL [mailto:BARRETW@airproducts.com] 
Sent: Wednesday, August 23, 2006 2:15 AM
To: revnic@gmail.com; security-basics@securityfocus.com
Subject: RE: Interview Questions

If you are going to do that why bother?  Chances are pretty good that
the person you are interviewing has already passed certification so why
ask them again?  Personally I find this kind of interview insulting and
it definitely indicates that the company either doesn't know about
security, or more likely doesn't care enough about it to make it worth
my while to work there.  Bad interview techniques = bad hire = bad
security.

A better solution in my opinion is to ask questions based on a real
world scenario, such as, "recently a wireless initiative was passed down
by management and we are going to roll out global wireless access to our
company in the next year.  What would you suggest as some things that we
would want to do in order to keep our network secure as we deploy this
technology?"   The is no "right" answer that would apply to every
company.  However the guy you want to hire will ask some more questions
about what you want to accomplish with this deployment before offering
his suggestion.  Also, even from the candidates you do not hire, you may
get some ideas that you hadn't considered.

Just my opinion

-Will Barrett

-----Original Message-----
From: revnic@gmail.com [mailto:revnic@gmail.com] 
Sent: Tuesday, August 22, 2006 2:45 PM
To: security-basics@securityfocus.com
Subject: Re: Interview Questions

get some tests from TestKing and compile a list of questions.


regards,

Revnic Vasile

------------------------------------------------------------------------
---
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has
designated Norwich University a center of Academic Excellence in
Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting
experience. 
Using interactive e-Learning technology, you can earn this esteemed
degree, without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---


------------------------------------------------------------------------
---
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic
Excellence 
in Information Security. Our program offers unparalleled Infosec
management 
education and the case study affords you unmatched consulting
experience. 
Using interactive e-Learning technology, you can earn this esteemed
degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---



-----------------------------------------
******* Internet Email Confidentiality ******* The information
contained in this message may be privileged and confidential and
protected from disclosure. If the reader of this message is not the
intended recipient, or an employee or agent responsible for
delivering this message to the intended recipient, you are hereby
notified that it is strictly prohibited (a) to disseminate,
distribute or copy this communication or any of the information
contained in it, or (b) to take any action based on the information
in it. If you have received this communication in error, please
notify us immediately by replying to the message and deleting it
from your computer.


---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Writing a comprehensive Network Policy, Kurt Buff
Next by Date:  RE: Writing a comprehensive Network Policy, Dixon, Wayne
Previous by Thread:  RE: Interview Questions, David Gillett
Next by Thread:  RE: Interview Questions, tony . dimichele
Indexes:  [Date] [Thread] [Top] [All Lists]