technology and web fundamentals including cloud
Security Engineer Interview Questions
4,887 security engineer interview questions shared by candidates
Tell me a challenge you had where you have worked for weeks to accomplish and how did you do that, what action did you have to take in order to do that?
ask me about SQL injection and XSS attack and XSF attack; question about network security
1. Manual code review in either Java, C# or Python. 2. Properties of TLS. What it supports. (Basically everything about it except for explaining the TLS handshake. Which was strange that the interviewer did not want that explaination) 3. Manual threat model. 4. API implementation and design. 5. Authentication for APIs 6. Implementing TLS 7. Securing a SQL DB 8. CSRF 9. SQL Injection 10. Cipher Suites 11. Hashing vs Encryption
Algorithm: Time and Space Complexity for common algorithms Security: Overall pen testing methodology, common security issues, fixing security issues, mobile security fundamentals.
Technical: Hashing vs. Encryption? Symmetric vs Asymmetric? Examples of each? OWASP Top 10 and how to prevent them Hashing scenario problem Authentication scenario problem Session management scenario problem (CSRF) Certificate Authority DNS Recent hacks/news around cybersecurity Behavioral: Why Amazon? Tell me about a goal and the steps you took the accomplish Tell me about a time you went through a personal obstacle or challenge Tell me about your favorite project Tell me about a time when you took on something you weren’t required to do
How does it work when I type www.amazon.com? how does packets go over the internet?
Data sources useful for a threat hunt.
Given a hard disk, where would you look to find instances of an illegal remote login. Same for installed apps
Threat Modeling, STRIDE, XSS and its types
Viewing 1451 - 1460 interview questions