These are technical questions related to the position and should be known. Please answer fully and to the best of your ability without Googling the answers.

1. What is a SIEM? Explain some of its capabilities.

2. List at least 6 different information security technologies that are typically part of a large enterprise

3. What is the most common way for a device to transmit its security logs?

4. Where does Microsoft Windows store its security events?

5. Where does Linux OS store its security events?

6. List a couple of examples of Ransomware

7. What is a UTM, explain some of the features

8. Do you have any experience working on Splunk, ArcSight or any other SIEM applications? If so, list the tasks you were responsible for.

9. What is HIPAA?

10. What is PCI Compliance?