In early August of 2017 I posted a few tips to Twitter regarding interviewing and getting hired in general. I’ pasting them here to preserve them. I only had 140 characters to make these, and I think there is a lot more you can do, but 30 tips is a good start.

  1. Don’t post obvious CFAA violations to social media
  2. If you go in without a job and a chip on your shoulder, you’ll leave the same way
  3. If you don’t ask follow up questions, I won’t have any either, like “would you like the job?”
  4. Exaggerating on your resume isn’t a good idea, but if you do, be ready to explain it
  5. The company is going to look at your social media. Privacy concerns? Don’t post publicly. Don’t get sassy in the interview about it.
  6. Dropping a vuln in the company during the interview is a stupid move. (Personal experience)
  7. Your attire matters. If you look like you just got out of bed, I’ll probably just let you go back to it.
  8. Being honest about not knowing something is great. Emailing after the interview that you researched it and now understand it is AWESOME!
  9. It is always ok to ask why you didn’t get the job and where you can improve. Unfortunately straight answers aren’t always possible.
  10. Like college, trying many types of Infosec jobs will make you better at all of them.
  11. Stay humble.
  12. If you were referred by a friend that works there already, respect the fact that you are representing them as well.
  13. Making money is better than not. If you think you are too good to be a Walmart greeter, you are probably too good for this job too.
  14. Try not to take it personally if you don’t get the job today. You might be able to apply later. You won’t if you lash out.
  15. Contributions to open source projects isn’t required, but is a good way to demonstrate values, skills, and mindset.
  16. Don’t whine and complain during an interview. It’s ok to point out deficiencies, or answer why you left your last job but keep it brief.
  17. Set expectations and ask questions like: Can I ping you if I haven’t heard from you in a week? What should I wear to the interview
  18. Minimal self deprecation is fine, but if you spend the whole interview talking about how much you suck, I’ll believe it.
  19. Include “Selected Accomplishments” part in your resume. 2-4 things that you are particularly proud of, doesn’t have to be done at work.
  20. The question “where do you want to be / doing 2/4/10 years” is a standard question. “I don’t know” is ok, but a prepared answer is better.
  21. Sarcasm is taken differently by everyone. Might go over good or bad. If it’s how you deal w/ nervousness, practice interviewing more.
  22. Practice interviewing. Find someone that will give you candid feedback and interview for positions you want with them.
  23. Don’t take an interview call in a crowded or loud place. Rescheduling is totally ok as long as it’s done with more than 24 hours notice.
  24. The saying “It’s not what, but who you know” is unfortunately true a lot of times. But it is because who you know can vouch for what you know.
  25. Just because someone is a manager doesn’t mean they can’t run circles around you technically and are just acting dumb. (Personal experience)
  26. If your LinkedIn profile does not match up with your resume, you will probably be asked about it. (i.e. degree, certs, jobs mismatch)
  27. Ask about travel and feel free to ask to talk to potential co-workers about travel and other topics to get the ground truth.
  28. Offer letters and nearly all hiring / new-hire documents are contracts. You can “X” out anything you don’t agree with. $employer will have to approve the change.
  29. When asked to list one or more strengths or weaknesses: Strengths: stay humble, Weaknesses: share how you are working to get better
  30. Everything on the Internet is suspect. Trust but verify right? Learn things for yourself. Blog, tweet, share how/what you learned. YMMV.

Have some yourself? I would love to add it! Please just tweet a reply via Twitter to me and I’ll get it added. Thanks!