Skip to contentSkip to footer

Senior Security Engineer Interview Questions

Salaries
Interviews

677 senior security engineer interview questions shared by candidates

What have you done w/docker? What AWS experience do you have? Tell me: about Same origin policy about CORS how to store passwords in a web app how to build an authentication module‘ about Click jacking about Cert pinning - Why are we doing this? about Mobile (keystore) about Ssrf about Headers for modern browsers hsts/secure/etc/httponly about http pollution about XSRF - what if can’t use nonces? What keeps you up at night? about XSS/XSRF/SQLi about Inter tier auth about Galois counter mode about Authenticated encryption about Docker container - security about fine grained vs coarse grained entitlements about PFS about Async vs Sync enc Top 5 thing to secure a web site about a recent Scripting story about a recent InfoSec story about Tcp vs udp behavior - when scanned if port is not bound
avatar

Senior Security Engineer

Interviewed at Goldman Sachs

3.7
Apr 1, 2018

What have you done w/docker? What AWS experience do you have? Tell me: about Same origin policy about CORS how to store passwords in a web app how to build an authentication module‘ about Click jacking about Cert pinning - Why are we doing this? about Mobile (keystore) about Ssrf about Headers for modern browsers hsts/secure/etc/httponly about http pollution about XSRF - what if can’t use nonces? What keeps you up at night? about XSS/XSRF/SQLi about Inter tier auth about Galois counter mode about Authenticated encryption about Docker container - security about fine grained vs coarse grained entitlements about PFS about Async vs Sync enc Top 5 thing to secure a web site about a recent Scripting story about a recent InfoSec story about Tcp vs udp behavior - when scanned if port is not bound

Explain about HIPAA (though the company was not involved in healthcare, I told about list of protections) How do I perform SQL injection manually (pretty much basic for any pentester) CSRF with Burp suite (I am using Burp Suite for more than 6 years) Container Security (I told I provide CIS benchmark for hardening, not sure what more they expected) VPN / Global network testing (Not sure what he is expecting me to do, is he asking me to do a red team assessments or bypass VPN) Performing DOS using Burp Suite (Intruder and other plugins can easily do that, what else, still Burp is not a recommended tool for DOS, not sure if this is right question to ask) Vulnerability management tools (I have used more tools than what they listed in their job requirement) Have you performed PR (Not sure if he was asking about Peer Review of pentest report or Pull Request)
avatar

Senior Product Security Engineer

Interviewed at The Scalers

3.9
Aug 18, 2024

Explain about HIPAA (though the company was not involved in healthcare, I told about list of protections) How do I perform SQL injection manually (pretty much basic for any pentester) CSRF with Burp suite (I am using Burp Suite for more than 6 years) Container Security (I told I provide CIS benchmark for hardening, not sure what more they expected) VPN / Global network testing (Not sure what he is expecting me to do, is he asking me to do a red team assessments or bypass VPN) Performing DOS using Burp Suite (Intruder and other plugins can easily do that, what else, still Burp is not a recommended tool for DOS, not sure if this is right question to ask) Vulnerability management tools (I have used more tools than what they listed in their job requirement) Have you performed PR (Not sure if he was asking about Peer Review of pentest report or Pull Request)

Viewing 101 - 110 interview questions

Glassdoor has 677 interview questions and reports from Senior security engineer interviews. Prepare for your interview. Get hired. Love your job.