5. Prepare list of questions for the interviewer
a. Do the routers here have Netflow on them?  Although I believe that 
Netflow was initially designed and offered as a solution for departments 
to sort and bill for bandwidth costs, it is also a remarkably useful 
security tool.
b. When I was working at Tech, we noted that for Cal (UC Berkeley) to 
block an IP route, their security team had to talk to their networking 
team, which then had to talk to legal before it could block a route.  The 
entire proess could take over a month.  What sort of process do we have 
for blocking certain IP routes if necessary?  An example would be if a 
hacker has been consistently coming in through the same offcampus IP 
address.
c. RIAA issues.  This is something that isn't particularly pleasant, but 
we're legally obligated to enforce it.  At all of my current clients, P2P 
is simply forbidden by policy, and if it ever became a problem, it could 
also be enforced by Group Policy to prevent the few users with elevated 
privs to install the P2P client.  I'm noted from an article that the U 
appears to have a two-strike policy, where the offending student receives 
a warning before more serious consequences occur.  How is that working?  
Tech has a similar policy, where the first strike required the offending 
student talk to a dean, or the offending staff/faculty talk to General 
Counsel, and a second strike was handled on a case by case basis.  In the 
five years that I was there, we never did have a second strike occur, 
though.
d. Does the University have a program which subsidizes conferences (such 
as SANS) or coursework (such as CEH)?

6. Have a few interesting stories to tell
a. 'Cisco' Teragrid breakins making it public
b. Learning Perl in a jiffy
c. The infected VMWare machine/Hacked Xerox machine
d. The Exchange vulnerability
e. Million and one variants of Gaobot (Agobot)