Two people interviewed me for an hour, who weren't interested in me as a person, but were more interested in how much exposure I had to handling security incidents. Asking some questions about certain types of attacks, one being a diagram of a web shell attack. It seems like they expect a lot from the interviewee e.g. they expected specific in-detail and on-the-spot knowledge about particular threats and tools such as Mimikatz and the like. Personally, I don't know attacks off the top of my head, perhaps some others do (shrug). Overall quite a difficult interview, they seemed to expect a lot of in-depth knowledge for just an analyst role (in my opinion). They also just seemed to care how quick you were at closing incidents. Perhaps they should focus on tuning efforts before hiring more analysts to close out FP's.