Top Interview Questions & Answers
|
Question |
Key Points to Cover |
|
What is the difference between IDS and IPS? |
IDS = detects and alerts; IPS = detects AND blocks. IDS is passive, IPS is inline and active. |
|
Explain the CIA Triad |
Confidentiality (only authorized access), Integrity (data unaltered), Availability (accessible when needed). Foundation of all security. |
|
What is a firewall? |
Network security device that monitors and filters incoming/outgoing traffic based on predefined rules. Stateful vs stateless. |
|
What tools do you use for pen testing? |
Nmap, Metasploit, Burp Suite, Wireshark, Nikto, SQLMap, Aircrack-ng, John the Ripper, Hashcat. |
|
Explain SQL Injection |
Injection of malicious SQL code into input fields to manipulate database queries. Prevention: parameterized queries. |
|
What is XSS? |
Cross-Site Scripting — injecting malicious scripts into web pages viewed by other users. Stored/Reflected/DOM-based types. |
|
What is a DMZ? |
Demilitarized Zone — a network segment hosting public-facing services (web, mail) isolated from the internal network. |
|
How do you stay updated? |
ThreatPost, SANS Internet Stormcast, CVE databases, HackerNews (security), CTF competitions. |
Â
Career Path Options
- Security Analyst — Monitor alerts, investigate incidents, first SOC role (Great entry point)
- Penetration Tester / Ethical Hacker — Test systems for clients, requires OSCP ideally
- Bug Bounty Hunter — Freelance vulnerability researcher (HackerOne, Bugcrowd platforms)
- Security Engineer — Build and maintain security infrastructure (firewalls, SIEM, IAM)
- Digital Forensics Analyst — Investigate cybercrimes, recover evidence
- Cloud Security Specialist — Secure AWS/Azure/GCP environments (high demand in 2024+)
Â
|
Action Plan: Week 1-2: Complete TryHackMe Beginner path. Week 3-4: Set up Kali Lab + Metasploitable. Week 5-8: Practice DVWA + Burp Suite. Week 9-12: Study CEH or eJPT material + write 3 practice reports. Apply for internships with a portfolio of lab writeups on GitHub. |