Cyber Security Interview Questions You Must Know (Part 1)

Here are a few general resources on preparing for interviews:

JonGoodCyber

No joke. I watched this the night before my info sec analyst interview. Crushed it. My resume had network support experience but 0 cybersecurity job experience besides personal projects. I crushed the interview and got the job. Thank you. Literally changed my life. <3 asking "what can I do today to make me better at this job" was absolutely hook line and sinker. They hooked me up with a corelight account and sent me access to a threat hunting lab. Did it that day and emailed them with my thoughts and experience of it. Thank you thank you thank you.

markpfeffer

If some wants to write down the questions:

1. How is encryption different from hashing?
2. Describe your home Network/Lab ?
3. What is the OSI model?
4. Which is more secure: open source or closed source software?
5. Which security Framework is best?
6. What is the primary goal of information security or cyber security?
7. What is risk? What is a Threat? What is a Vulnerability?
8. Where do you get your security news from?
9. Why are preventative controls better than detective controls?
10. Should you compress or Encrypt first?

psytron

As a person who has been a part of many technical interviews, for some of these questions, you should start of by saying... "it depends.."
Be thoughtful in your answers. Being articulate in your thought process is half the interview. Take a moment to gather your thoughts if needed.

auto

I’m a IT Security Analyst and I do check out at the end of the day. Love what I do but I’m not going to spend loads of time outside work doing cyber security especially with a family. You need down time but you should when you have time/energy try and advance your skills.

joshstewart

Thank you so much. I got a job offer as an information security analyst (Tier 1) in Toronto, Canada. Luckily I watched this youtube. The interviewer asked me some questions that were very close to your below questions:
5. Which security Framework is best?
6. What is the primary goal of information security or cyber security?
7. What is risk? What is a Threat? What is a Vulnerability?
I am about to graduate from a college's online cybersecurity program soon. I do not have any IT certification. I never worked in the IT industry. My academic backgrounds are MBA and law. I have been working in the legal field almost a decade. I'm in my late 40. Never afraid of changing your career even you are above 40 years old. I believe there are many employers appreciate people with passion and willing to learn even they never work in the same industry.
By the way, I have a good reference. She has been working in the cybersecurity industry for more than a decade and currently working in a fortune 500 companies. This was one of the most important factors I got the job offer.

takahashicanada

Just had an info sec interview, it was a Junior role so they didn’t go super tech heavy with questions but they did ask what am I doing outside of work to stay up to date. I was so glad I subscribed to security weekly! Thank you for the tips!

kaymeraki

LIFE 5 of these questions were asked on my interview i made it to my second round soo lets hope for the best

leathiciayounsi

PCI DSS is not a framework. It’s a standard that defines a compliance level. NIST CSF, COBIT, CIS Controls, ISO 27000s, and Mitre Attack are frameworks, each covering a specific realm of cybersecurity concerns. NIST and ISOs are the most comprehensive.

rmcgraw

The guy who never blinks...that in itself is good content

HealthyHuman-vbgb

Thanks so much, I recently did an interview and came across 4 of these questions. Thanks so much. It’s was so helpful and important and this contributed to my cyber knowledge. Thanks 🙏 grateful

claudiabucknor

Great video and I like that you actually respond to comments and give good feedback.

CeeBoogEee

The hardest question I was asked in an interview was "What happens when you type in a URL and hit enter." Had me stumped other than it doing a DNS look-up and routing me to the URL.

bob

Hardest question I've had is... how many years cyber security experience do you have? Lol

LOSisBEAST

What is a DRP and BCP? Super valid questions, and I felt dumb when I realized what they were after, but knowing the jargon and what not makes a huge difference. I understand cyber security concepts, but never, not once, in my entire education for a BS in cyber operations, have we discussed either of those things.

MrAchilles

Great video buddy, many thanks! Thought popped in my mind:
Encryption: retrieval possible by decryption, for confidentiality
Hashing: retrieval impossible, for integrity

citriadoria

I am on my last year of cybersecurity grad school. This video has been very helpful.

michaellee

Thanks! I have an interview tomorrow for Cyber Security analyst!

hungariannerd

Thank you for posting this video!! I will definitely be rewatching this a few times so I can practice these questions and scenarios!! 😃💗

ZadeMeadowsLittleMouse

Thanks so much for making this series!

themonkeymantra