The interview was normal and asked expected questions that you would except in an interview for security consultant. No surprises or tricky questions that you couldn't anticipate for the level of the interview
I applied online. The process took 2 months. I interviewed at NCC Group (Chicago, IL) in Sep 2016
Interview
The process it's the same that what's one their website. First a phone screening and a technical phone interview. After that you get to do a couple of security challenges (Web application penetration testing and Reverse engineer a protocol) and after that you're invited to go see the team in person for another three interviews (web penetration testing, surface attack analysis and consulting questions).
The process is straightforward but you will be waiting for answers a lot, having to send several follow up emails until you get a response.
The worst part of it is when you are going through each phase successfully and after the in person interview they tell you you are not a good fit because you are not experienced enough. Something they already knew from the beginning of the process.
I feel like I wasted my time and lost other opportunities for following this process.
I applied online. I interviewed at NCC Group (Chicago, IL) in Mar 2023
Interview
Practical Assessment and hiring manager discussion. You will get the decision within a week. The practical assessment contains all OWASP 10 vulnerabilities. Hiring manager round discussion depends on the manager
I applied in-person. The process took 3 weeks. I interviewed at NCC Group (Manchester, England) in Jul 2022
Interview
One external recruiter and then a 2-stage process.
The first stage is internal HR.
The second stage is with the Hiring Manager.
Review my CV and discuss my experiences: nothing strange and a linear process.