Now Hiring: Information Security Officer
Question 1: What experience do you have in the field? Qualifications?
Reason: This is standard. This is just to get a gist of how experienced they may be.
Responses: This will vary. A Bachelor’s is a good start, and certificates in the field are positives. Hands-on work is a requirement.
Question 2: What skills do you have that make you a good fit for this position?
Reason: This is a good question to get a sense of what the individual thinks their job entails and what parts of their repertoire they are most confident in.
Responses: Look for the ones that most closely fit with the position. This is also a chance to clarify if necessary.
Question 3: If I wasn’t in the cyber field, how would you explain a(n) (a)symmetrical cipher to me?
Reason: This would be to better gauge their interpersonal skills. Also, it’s said that when you thoroughly understand a subject, one can clearly teach a child the information, and they’ll understand. It should be easy to tell if someone knows what they’re talking about.
Responses: Look for someone who uses clear analogies, and simple, straightforward language. Not everyone is great with public speaking, but if they know their stuff, it will undoubtedly shine through.
Question 4: You’ve just been informed that the default passwords to all user accounts have been published online. What do you do?
Reason: Not everyone changes their passwords, and some just leave the default security settings in place. This can easily happen. This is to test how one might react under pressure.
Responses: If they stay composed, and can think critically, and come up with a fast but also thorough plan, you’re able to test their problem-solving skills, critical thinking, and time management all in one.
Question 5: Lincoln, Todd, and Mary have all clicked into the fake phishing email you sent out to test security. How would you handle the situation?
Reason: They will be in charge/part cybersecurity training.
Responses: Look for adept management/leadership skills. You’ll also be able to find out if they tend to take a hands on/off approach.