The interview started with basic introductions. Then, I was asked technical questions related to networking and security like what is an ARP table and how attackers can enter communication. I also shared how I investigated a brute force attack using Splunk SIEM during my internship. The interviewer asked scenario-based questions, and I explained steps like checking event codes, IP addresses, logon types, and how to respond. The process was one round and lasted about 20–30 minutes