Cyber Security Interview Questions and Answers | Vulnerability Remediation and Incident Response

Показать описание

In this video, I will be answering some cybersecurity interview questions that I've been collecting over time. The goal of this video is to show some realistic questions that might be asked in your next interview and give some ideas on how to thoughtfully answer some of these questions. Please post any corrections in the comments!

⭐ 1-on-1 Mentoring ⭐

📹 - Video Links - 📹

🙇‍♂️ - Patreon - 🙇‍♂️

⌨️ - Coding - ⌨️

⭐️ - Social Media - ⭐️

🎥 - Equipment - 🎥

📄 - Sample Resumes - 📄

0:00 Intro
0:22 You have completed a risk assessment and you determine that an identified vulnerability is High risk and requires a control to be implemented on a legacy system. The system administrator/ manager disagrees with your assessment. The system administrator/ manager believes the risk has been overstated and the risk is actually low due to it being internal (not external facing). Also, the mitigation strategy you recommend may impact their fragile, but very important legacy system. You reassessed the risk and still believe the risk is High. How do you proceed? What and how do you communicate?
5:30 Describe a time when you were involved with a security incident/ breach. Describe the incident, how it was detected, your role regarding the incident and controls put in place to address it.
9:15 Outro

Cyber Security Interview Questions and Answers | Vulnerability Remediation and Incident Response
CyberSecurity Interview Questions and Answers | Vulnerability Remediation and Incident Response

DISCLAIMER: This video description has some affiliate links and I may receive a small commission. I only share stuff that I use and believe in. Thanks so much for your support 🥺

Рекомендации по теме

Комментарии

Not sure how your channel only has 8k subs. It's a plethora of information. I found the channel after seeing your video displaying your final capstone for the WGU CS degree. Legend status.

mattjohnson

I’m an ISO for an organisation and have two brothers studying towards various IT and Engineering qualifications. I think your videos very informative but this one particularly about creating an environment on the cloud and allowing it to be exploited to gain experience is mind blowing. Thanks for sharing, I’ll be sharing this with them too for their own innovative ideas which can help their careers. We’ll done.

kmotlafe

Josh is one of the most humble and kind Youtubers out there especially with his career story. He answered my Linkedin questions so long ago ahah. Still learning from him til this day.

covfefe

Great content Josh. Since I have experience with Incident response, it will be easy for me to pull examples from. I have just started preparing for interviews and following your advice on listening to podcasts in another video and that definitely helps. Might I suggest some topics if you’re looking for stuff to create content on?
1. How to set up a vulnerability management program
2. Security considerations when architecting network.. can also dive into firewalls, IDS, IPS and WAF
3. How to understand/analyze the network of a new organization you start working at
4. Explaining some of the standards/frameworks such as NIST CSF, ISO 2700(0/1/2) in simpler terms
5. Technical writing: reports/design documents/strategy
6. Emerging topics such as SASE

Thanks for these videos and I have subscribed.

MandeepDhillon

I would love to see a homelab video from you! The same exact set up you mentioned in this video!

NanoElec

Another banger. I would be infinitely grateful if you made a video on how you set up the lab that you referenced for the incidence response question.

hthr

I really wish I had watched this video before I had a recent interview. I got hammered hard with incident response questions and the only experience I have to speak on is my internship, which was a threat research role, so no actual production incident response experience but I have had some lab experience I totally could have talked about. I totally blew it! Hahaha. Thanks for the videos, great stuff!

seanfernandez

1. What’s the business criticality of that system?
2. Is it on a segmented network.
3. Get asset owner to sign off on risk acceptance and document it.
4. Ensure that system get some additional detection

joshstewart

definitely keep these videos coming. I havent seen anyone doing a video with a sample answer pattern anywhere else.

ihameed

Hey Josh, I wanted to thank you because this video and your lab walk throughs helped me land a new IR job with no experience, I'm grateful for your content!

jashijeyaantony

Great question, reminded me of my time with the State Department, every answer starts with "it depends" .. Must be politically correct in implementing controls that offer a balanced solution. Security professionals plug, they don't clog.

MD-trsh

You should have million views IMO with your content its unfortunate people view for junk stuff your impacting someone life.

xbxplayz

Josh, your videos are the best on You Tube, your mindset on cyber security is super down to earth, great production, please make more videos

clivebream

Asset owners own the risk, not system administrators. The asset owner decides wether or not to accept risk, not a system administrator. Use of the term Legacy system seems to indicate this is a business system. A good security person will write up a risk statement showing risk and potential financial loss if the risk is realized so the asset owner can make a decision.

dman

Great content I have done alot infosec interviews and these questions are asked alot. In future videos could go over SIEM, Powershell and edr questions thanks

goldkingx

Thanks for these series. I have been empowered

gloriag.n.n

Do you still have a day-job or is this your full-time gig? Great job!

yolandadarricarrere

Great video - thank you for being a information security advocate.

overland

This is a really really good question!

shukuramartin

This series is pretty good but quick tip: Your mic levels are out of sync and not consistent throughout the playlist.

marcoful

Cyber Security Interview Questions and Answers | Vulnerability Remediation and Incident Response

Cyber Security Interview Questions You Must Know (Part 1)

CYBER SECURITY Interview Questions And Answers! (How to PASS your Cyber Security Job interview!)

SOC Analyst (Cybersecurity) Interview Questions and Answers!

Cyber Security Interview Questions And Answers | Network Security Interview Preparation |Simplilearn

Cyber Security Interview Questions And Answers | Cyber Security Interview Preparation | Intellipaat

I did 100s of Cyber Security interviews and I learned this

Cybersecurity Interview Questions And Answers | Cybersecurity Interview Prep | Invensis Learning

Security Engineer Mock Interview: How does the Internet work?

Industrial Control Systems Under Attack: Joe Marshall Reveals Critical Cyber Threats

Cybersecurity Interview Questions and Answers | CyberSecurity Interview Tips | Edureka

Cybersecurity Analyst Interview Questions / Answers

SOC Analyst (Cybersecurity) Interview Questions and Answers - SOC Processes

The Complete Cybersecurity Job Interview Prep Video (Know How To Crush It)

Network and Cybersecurity Interview Questions 2022

CYBER SECURITY - HOW TO INTERVIEW PERFECTLY (2021) | Cybersecurity Interview Questions and Strategy

12 Incredible SOC Analyst Interview Questions and Answers

Cyber Security Interview Questions and Answers | Most Asked IT Security Interview Questions |

Cyber Security Interview Questions and Answers | Encoding, Encryption, and Hashing | Threat vs Risk

Cyber Security Week Day - 4 | Cyber Security Interview Questions And Answers 2021 | Simplilearn

How to Introduce Yourself in Cybersecurity Job Interviews - Fresh Graduates Focused

Cyber Security Interview Tips | Interview Topics Cyber Security Interview Preparation 2021

Cyber Security Interview Questions You Must Know (Part 3)

How to Prepare for a Cyber Security Interview (w/ Stephen Semmelroth)

Design a Cyber Attack: Security Engineering Mock Interview