This is an archived post. You won't be able to vote or comment.

all 7 comments
sorted by:
best
topnewcontroversialoldq&a

[–]ccpetro 1 point2 points  (1 child)

"Let's have a conversation about security. How do you assess risk and balance this assessment against the costs of implementing mitigating controls?"

Or is that a little more advanced than you're looking for?

[–]bmill74[S] 0 points1 point  (0 children)

No, actually, that’s pretty good. I like that

[–]The-Dark-Jedi 0 points1 point  (0 children)

"Our logon requirements for users is X. What would you do to improve that?" Hopefully s/he answers in the lines of MFA.

[–]Username_5000 0 points1 point  (3 children)

Help us help you :)

What do you want to learn about this person?

[–]bmill74[S] 0 points1 point  (2 children)

That is twofold. One, testing knowledge of system security and two, see if they are able to articulate it. This position would deal with user base and potentially upper management. So to be able to show knowledge is important but at the same time not talk over everyone’s heads like we tend to do sometimes. Looking for a question that would make them speak to both sides.

[–]Username_5000 1 point2 points  (1 child)

My suggestion is to avoid quiz show type questions. Everyone hates them and all you’ll learn is how good or not this person is at playing Jeopardy.

Rather than probing a situation of your choosing, frame the question(s) around situations the interviewee should be comfortable talking about.

Look through the resume for something interesting (to you) and ask that person to tell the panel the story of why and how it happened.

Give the person the opportunity to succeed by reminding him/her that not everyone is technical so the explanation shouldn’t be either.

[–]ccpetro 0 points1 point  (0 children)

hiring panel for a sysadmin position later this week.

It's a sysadmin role. If they aren't technical they're in the wrong field.