Interview Pentester. Unsure how it went.
So a friend of mine said an organization had a opening for a red team penetration tester. I said what the hell, and applied. After all, that’s my end goal in this part of life. I love my current job and what I do, but being part of a red team or threat hunter is what I want to do. About month and half later I received a call to interview. It had to be in person which meant it was out of town. Again, I said what the hell. Either I was going to bomb it (having never applied for a pentester position) or do well (which I put odds at 1/10 having never worked as a pentester. )
Woke up at 4am and drove 3 hours.
The interview was supposed to be 30 minutes.
Walked in and there were 5 members. The CISO was one of them.
They start off by asking me to tell them about myself, which is did.
Then it was a series of 20 questions. Right off the bat, I felt like I was doing pretty good. About 5-10 questions in they started getting really technical (specifics on certain exploits/vulnerabilities). What sucks is I knew the answers for the most part but for the life of me as soon as I fumbled on one, it’s like my mind just went 100% blank. All I kept thinking about was the one question I wasn’t able to answer with confidence but knew I knew it. Then I just kept thinking about everyone looking at me. It was so frustrating because it was like my brain was completely shut off. I started to sense a bit of panic brewing but did my best to hold it together.
I literally answered the question about ms17-10 that I would just google it (which surprisingly got a little bit of a chuckle from the group.) I was saying I was aware of it (even mumbling SMB vulnerability) but kept thinking DOS, but then thinking RDP.
Anyway one of the questions was a trick question about bitlocker, which I managed to dissect and understand the trick in the question. They all acknowledged that I was able to discover the flaw.
Well the interview actually lasted an hour. After the questions, the CISO was telling me about what they do, talking to me about the team members and their roles, all the additional duties they participate in (incident response, education, conferences.)
It really started becoming pleasant but I just couldn’t stop thinking about the few questions I was unable to answer.
Anyway, the CISO asked if or when I was given the job, would I be willing to move, which I said yes, and he even went into the benefits of the organization. But then brought up other positions that would open up in the future, since the initiative was relatively young.
Well at the end, I shook everyone’s hand, walked out with the CISO following, still thinking about the failure of my prefrontal cortex, I turned around, shook his hand again and he waved his hand and while smiling said “you did good.”
As I walked around the corner with the receptionist, I just bent over like Michael Scott in the episode where he’s trying to keep a secret and started grunting lol. The receptionist said “I’m sure you did good. You were in there for awhile so that’s a good sign.”
Anyway, as soon as I got to my car, it was like my brain rebooted and at least 3 out of the 5 questions I know I didn’t answer just came to me. Pissed me off. Almost wanted to run in there but obviously no way to know if I “googled it.”
Anyway, just venting. I’d love to have the job, and I applied prematurely as I wanted to stay with my current job for at least a couple of years, but man would it be cool to reach my goal early.
