"Tell me about a time you identified meaningful security weaknesses in a web application and had to drive improvements across engineering teams. How did you prioritize the risks, influence people who didn’t report to you, and what measurable outcome did you achieve?"
