Information Security Engineer Interview Questions

In an information security engineer interview, it is likely that employers will test your technical knowledge to ensure that you can consistently protect internal data. Expect to speak in detail about information security terminology and prepare for follow-up questions.

326 Information Security Engineer interview questions shared by candidates

Top Information Security Engineer Interview Questions & How To Answer

Here are three top information security engineer interview questions and tips on how to answer them:

Question No. 1: What is your process for securing a server?

How to answer: Go into detail step by step, breaking down each step of your routine when securing a server. Your answer allows you to demonstrate your technical expertise while also offering a window into your personal work style and decision-making methods. Make sure you speak confidently about your process.

Question No. 2: Describe your home networking setup.

How to answer: This is an opportunity to show the interviewers how you protect your personal data, which may offer insights into how you use logic to make decisions. Describe which software you use and any extra preventative measures you take, making sure you explain not just what choices you make at home, but also why.

Question No. 3: What is the CIA triad?

How to answer: If an interviewer asks this question, show that you are fluent in the fundamentals of information security. The CIA triad (also known as the AIC triad or CIA triangle) refers to confidentiality, integrity and availability. Take a moment to explain each principle. Confidentiality is the act of keeping information private and only accessible to those with permission. Integrity is ensuring that the data remains unchanged by any outside parties. Availability refers to keeping data accessible.

Top Interview Questions

Sort: Relevance|Popular|Date
Information Systems Security Engineer was asked...27 August 2018

what is an advantage of a domain?

4 Answers

On the contrary, that question can only be understood by an applicant who knows that “Domain” here refers to applying the ISO 27001 standard. It has nothing to do with your website. Less

Central management and organization of a group of devices, users, and resources.

This question was obviously asked by someone who knows nothing about security. What is an advantage of a domain? What type of domain were they asking about? Physical? The name in a DNS? A logically separated environment? You are lucky you were not hired. The VP in charge is unethical and intolerable. Most people there don't like or trust him but he is protected by the COO. Less

Show more responses
Knowledge Consulting Group

What are some ways to prevent an SQL injection?

1 Answers

The most important precautions are data sanitization and validation.


Information security basic terminology

1 Answers

OSI Layers, Types of Malware, Ransomeware Different Antiviruses used in enterprises and home use, EPo console, Vulnerability in applications and Machines, Application and workstations vulnerabilities scanners, OWASP Top 10 2018, Authentication, Authorization. Application security. Less


basic networking and windows, linux , internet , DNS, DHCP , Troubleshooting skills then go deep on mcafee products like anti virus and more on security basics and the difference between different kind of threats.

1 Answers

review the basic of the above skills

Solvent CyberSecurity

Why are you leaving your current position?

1 Answers

Ultimately, I’ve learned a lot in my current role, but I’m looking for the next step where I can continue to grow and use the skills I’ve honed at a company I love, and this opportunity seems to be a great fit.” Less


How are you working in a team environment?

1 Answers

I have worked within a team environment all my life, I function better when I am a part of a team. Less

Gap Inc.

Tell me about your automation experience, interviewer did most of the talking about future projects and ask yes or no questions

1 Answers

Explained previous projects, answered "yes" for most things

Acuity Insurance

A common one that seemed to come up a few times was regarding how you view security practices.

1 Answers

Answering it will various things like, least privilege, layered approach, etc opened a lot of discussion and gave me a chance to show how much I knew about broad best practices or my stance on things in the field. Less


Do you have any questions for me - Right off the cuff

1 Answers

It's essential to demonstrate that you can really go deep... there are plenty of followup questions and (sometimes tangential) angles to explore. There's a lot of Information Security Engineer experts who've worked at Snap, who provide this sort of practice through mock interviews. There's a whole list of them curated on Prepfully. Less


Taunted if i have cleared cissp [world renowned certificate] by just reading one book and was easy to clear just by reading.

1 Answers

if it was easy why he didnt clear it himself. None of them was cissp certified

Viewing 1 - 10 of 326 interview questions

Glassdoor has 326 interview questions and reports from Information security engineer interviews. Prepare for your interview. Get hired. Love your job.