If you are new to the cyber security industry it is important to be prepared. This doesn't only apply to typical interview questions you might be asked for in an entry level cyber security job interview, it also applies to the type of job you apply for. Before applying to any cyber security job it is extremely critical to mitigate your unrealistic expectations. In short, make sure you are applying to the right job or you might find yourself on the tail end of a technical beat down.
Yes, some jobs consider security experience important to their hiring process. These jobs normally expect a few years in direct hands-on experience with security products. If you do not have this experience, it might be best to really determine if the job is suitable for someone with your skill-set. Chances are if you have a few years of experience in IT, then they might make an exception for you. It's important to showcase that you are eager to learn and willing to spend the time to really understand the tools that make the cyber security ecosystem tick.
Here are 5 entry level questions that will help prepare you for the standard cyber security job interview. Don't worry if these questions make you sweat a little at first, that is exactly why they are asked in the first place.
Are you capable of working in a team environment?
Although the cyber security industry is chock full of jobs that require one to be self-motivated and passionate about infosec a question about being capable of working in a team environment is generally asked to determine whether you would be a good culture fit. If you were to answer no, chances are you would be immediately disqualified for the entry level cyber security job that you are applying for. Generally it is recommended to answer yes to this question and really go into detail why that is the case.
Provide the person interviewing you the chance to get a glimpse into what really drives you!
A good answer to this question would be the following:
Yes, I am capable of working in team environments. At my current (last) company I found myself energizing fellow teammates. My infectious work regiment not only inspires people around me, but it also carries over to individual projects. I am self-motivated and driven when it comes to any task I set out to accomplish.
As you probably know, things are constantly changing within the information security industry. What do you do outside of normal business hours to keep up to date with your security knowledge?
At first glance this question seems straight forward. Normally it is used as an ice-breaker, but it also doubles as an information gathering question. The ultimate goal of this question is to determine how passionate you are about the infosec industry. They want to know that you don't just talk the talk. The typical employer wants you to eat, breath and live information security. True, it is important to have a well balanced life, but to be successful in the cybersec industry these days you need to be absolutely obsessed with what you do! Remember, there are several other candidates fighting for that one position. It is important that you really separate yourself from the crowd.
A good answer to this question would be the following:
I always make sure to get my daily dose of information security news. I tend to follow @SecurityWeek on Twitter and I've gone as far as setting up Google Alerts for specific keywords I feel are important. On the weekends I can be spotted testing open-source security tools in the lab environment that I setup at home. This really helps keep my skill-set fresh as there is always something new to learn.
What tools are commonly used to secure a standard network?
The majority of information security interviews I have partaken in normally start off in an informal manner. This is typically done to determine whether you will be a culture fit for the company or not. If you can't answer the first two questions properly, there is a chance the interview will go sideways. Recruiters and employees involved in the recruitment process at cyber security companies or companies looking for security analysts will call your bluff in a heartbeat. These individuals are typically looking for people similar to themselves. They understand that it is impossible for you to know everything, so be honest especially when it comes to the technical questions.
The best way to answer this question would be to take the straight forward approach:
Firewalls, Intrusion Detection & Intrusion Prevention Systems, Endpoint Antivirus and Password Managers / Security.
*Do your best to stay out of the weeds with this question. The keyword is commonly. No need to mention enterprise solutions unless you have actually had experience with those devices.
What is port 22 commonly used for on a Linux server?
If you are applying for a cybersec position you should technically already know the answer to this. If you don't your experience with Linux might be limited. Don't let that discourage you. There are a ton of books out there that you can buy to get up to speed fast with Linux so you don't find yourself in a weird situation during the interview process. This is another great question to keep simple when it comes to the answer side of things. The goal is to show you know enough to be dangerous. Even if you are highly technical it is never good to appear like you know everything or in the case of your interview, appear like you know more than the person interviewing you.
Port 22 is the default port for the Secure Shell (SSH). You can use SSH to remotely login to Linux servers.
Have you heard of the OSI model? If so, please describe some of the layers in it.
Before your interview I would highly recommend reviewing the OSI model. OSI stands for Open Systems Interconnection. The model itself is pretty much a reference model of how applications tend to communicate over a network. In other words, the OSI model is not easy to remember. Here is how it is broken down:
Layer 7 - Application
Layer 6 - Presentation
Layer 5 - Session
Layer 4 - Transport
Layer 3 - Network
Layer 2 - Data Link
Layer 1 - Physical
Ideally, it would be great for you to memorize this entire break down. Chances are that is not necessarily what they will be looking for. They just want to receive a general answer, one that shows that you know of the OSI model. Remember to keep your answer straight and to the point. Yes, I am familiar with the Open Systems Interconnection model.