Remember/Knowledge
- What tools do you or your team rely on?
- How big is the team, what are the hours expected?
Apply
- What is the goal of infosec within a company such as this?
- What kind of constraints does your department have?
- What regulations or mandates are you with-held to?
Analyze
- What's the largest threat to your business? What countermeasures did you apply to mitigate?
Evaluate
- Do you put more emphasis on protecting, responding, or staying in compliance?
Create
- What is the biggest concern, security or otherwise, you would see me as addressing within your organization?
I'll add more to this as I come up with ideas.
- Where do you think security will be in 5 years as a [practice|industry|concept]?