The interview was conducted by the client, and it was very easy; basically, they want you to explain the findings you found during the application security assessment. Also they ask about the common vulnerabilities like XSS, SQL Injection, and its preventions.
There were difficult questions but I was able to answer them even if I don't know the exact correct answer because I have previously worked in the same domain and have knowledge about the topics.
Difference between FTPS and SFTP?
They talked a lot about culture and how important it was and asked how culture plays a role in previous positions. They also asked about long term goals and aspirations, and asked about your areas of passion. They really seemed focused on finding the right person, not just a person that fits the job description.
What is your experience with scanning?
Knowledge of insider threat, DLP, and End Point
STAR format questions.
What is SQL Injection? What is XSS?
What are CSS, CSRF, SQL injections? Interviewer will ask you to describe further what else can happen.
What is the difference in authentication methods? (Symmetric vs Asymmetric)
Viewing 581 - 590 interview questions