Envié una solicitud electrónica. El proceso duró 3 semanas. Acudí a una entrevista en HackerOne
Entrevista fácil
Solicitud
Envié una solicitud electrónica. El proceso duró 3 semanas. Acudí a una entrevista en HackerOne en feb 2024
Entrevista
The process was smooth and the teams were well coordinated. All the interview calls are scheduled as per the availability provided by you.
First of all they'll schedule a screening call with the lead recruiter to get to know more about you and your background and decide if they can go ahead with you.
Then you move on to the technical round. This will be a test of your understanding of fundamental concepts and how well do you know application security.
Once you pass this, you'll come to the manager round. It will be a scenario based non-technical round where the focus will be on your personality. You are expected to convince that you are the right fit through your communication skills and understanding of the job role.
Then we move to the most important round, the practical triage round. This will be a 90 mins round (contrary to the other 30 min rounds) where you'll have to triage simulated reports live on HackerOne. You'll share your screen through the process. You should have prior experience in bug bounty to understand the process. Make sure to read the H1 documentation on triage and reporting to prepare for this, as this round will mostly decide the result.
There is one last round with VP of technical services which will again be your personality test, much like the manager round. You can expect more "leadership" related questions and focus on the current landscape and problems in the technical services and what is your take on them.
So in total we have 5 rounds. Once all the rounds are done, you can expect the result within a week. All the best!
Preguntas de entrevista [1]
Pregunta 1
Example questions from each round..
1st round
1. Tell me more about your background and how did you start cyber security
2. What culture do you thrive in?
2nd round
1. Explain CSRF and how to prevent it
2. Explain CORS and the conditions required to exploit it.
3rd round
1. How well do you understand the job role?
2. Where do you see yourself in the next 5 years?
4th round
Some reports to perform live triage and assign proper CVSS score
5th round
1. Why HackerOne?
2. What do you think we are lacking and how can we improve?
The interviewers were very friendly and the whole process was smooth. You get to schedule the interviews according to your availability. Also, everyone is so supportive. I have never had such a smooth interview experience yet in my career. There were multiple rounds. First was HR screening , then the Hiring Manager, then First technical round (Medium level difficulty), then Triage practical round (triage 4-5 sample vulnerabilities in 90 minutes + some technical and managerial questions alongside), then Director round.
Preguntas de entrevista [1]
Pregunta 1
Questions related to SQLI, XSS, CSRF, IDOR, some android related stuff and all what you have put in your resume.
Envié una solicitud electrónica. El proceso duró 4 semanas. Acudí a una entrevista en HackerOne (Pune) en jul 2025
Entrevista
HackerOne has the most streamlined and smooth interview process and keeps you updated at every step. Highly Recommended for anyone planning to join. Everyone knows about H1 so they highly full fill their name
Envié una solicitud electrónica. Acudí a una entrevista en HackerOne en jul 2025
Entrevista
The interview process at HackerOne was smooth, well-structured, and engaging. It began in the first week with a recruiter screen, followed in the second week by technical screenings [Medium level difficulty] to assess my security knowledge. In the third week, I participated in the triage challenge rounds [triage 3-4 sample vulnerabilities in 90 minutes + some managerial questions], which were hands-on and closely aligned with real triage work. The team was professional and ensured I felt comfortable throughout the process.
Preguntas de entrevista [1]
Pregunta 1
Questions covered topics such as SQLi, XSS, CSRF, IDOR, and other vulnerabilities, focusing on their impact and mitigation strategies.
