Initial recruiter screen followed by a technical interview focused on Splunk Enterprise Security and troubleshooting. The technical round included scenario-based questions around data ingestion, detection gaps, and platform health. Final round was with leadership discussing experience in SOC environments, automation, and consulting delivery. Process moved quickly but appeared to be tied to project availability rather than an active role.