PS Product SecurityKnowledge Base

Interview Labs

Interview Labs

Section focus: Interview Labs.
Best use: start with the section map below, then move into the deeper pages that match your role or stack.
Design note: this index was refreshed to act as a cleaner GitBook landing page instead of a plain directory listing.

Start with these pages

Page Why open it first
Interview Answer Patterns, Tactics, and Hiring-Loop Meta Best starting point before any of the role packs below.
AppSec Engineer Interview Pack (2026) 30 questions split into technical, theory, and real-world case blocks.
DevSecOps Engineer Interview Pack (2026) 30 questions focused on pipeline, cloud, Kubernetes, and release-plane security.
Product Security Architect Interview Pack (2026) Architecture-heavy interview loop with design and trade-off questions.
🧠 AppSec Engineer STAR Case Stories Four strong anonymized STAR stories that sound like real-world AppSec work.
🧠 DevSecOps Engineer STAR Case Stories Four strong anonymized STAR stories centered on CI/CD, cloud, runtime, and delivery trust.
🧪 AppSec Engineer Code and Weakness Review Drills Language-oriented interview drills across Python, PHP, Java, C++, SQL, and TypeScript.
🔎 AppSec Vulnerable Code Screening Cheat Sheet by Language Fast by-language cheat sheet for spotting dangerous sinks, weak constructs, and interview-worthy findings.
🧪 DevSecOps Engineer Configuration and Platform Review Drills Ten realistic misconfiguration and platform-review exercises for CI/CD, Kubernetes, cloud, and secrets.
Live Code-Review Drills and Answer Guides Short live-review drills with worked answers and interviewer framing.
Take-Home Assignments and Evaluation Guide Reusable take-home prompts, scoring criteria, and red flags.
GitLab Mock Interview Pack High-value page inside Interview Labs.
Argo CD Mock Interview Pack High-value page inside Interview Labs.
Terraform Mock Interview Pack High-value page inside Interview Labs.
Kubernetes Security Assessment Pack High-value page inside Interview Labs.
AWS Cloud Security Assessment Pack High-value page inside Interview Labs.
Network Policy Assessment Pack High-value page inside Interview Labs.
Terraform and IaC Security Assessment Pack High-value page inside Interview Labs.
CI/CD and Runner Security Assessment Pack High-value page inside Interview Labs.

Intro: These packs are written like mock interviews or hiring loops. Each scenario is designed to reveal operating maturity, not just syntax recall.

What this page includes

  • earlier mock interview packs in question-and-answer format;
  • new assessment-style engineering labs with snippets, misconfigurations, and worked fixes hidden under collapsible sections;
  • domain coverage centered on Kubernetes, AWS, NetworkPolicy, Terraform, CI/CD, Docker, Linux, and runner security.

Working assumptions

  • the best answers explain tradeoffs, not just commands
  • a strong candidate can read broken YAML, IAM JSON, shell, HCL, or CI config and reason about risk quickly

Packs

Role-based interview packs

New hiring-loop support pages

Earlier mock interview packs

New assessment-style engineering packs

How to use these packs

Use them in three ways:

  1. self-test — read the prompt, stop, and solve before opening the answer;
  2. interview prep — rehearse aloud as if explaining to a hiring panel;
  3. team calibration — compare how different engineers reason about the same trust-boundary problem.

Reading note

These pages intentionally use HTML <details> blocks so the prompt stays visible while the worked answer remains hidden until needed.