Câu hỏi này được trích ra từ bản phỏng vấn của cty ***C. Các bạn tự tham khảo và trả lời thử.


Job Posting We are building a competitive Cybersecurity team, and seeking for fresh candidates with spark and potential to do R&D, eager to learn, and work on innovative ideas. I am posting a list of some questions that would be asked in interview:
1) What is the difference between filtered and blocked ports?
2) How does an email work end-to-end, please explain.
3) What is incident response?
4) You have been urgently called on site for incident response, when you reach there as a first responder, you can see ransomware screen, what would be your initial steps?
5) What are IOCs, How do you identify them in your environment?
6) Difference between nMap stealth scan & TCP scan?
7) What are the roles and responsibilities of L1, L2 & L3 SOC Engineers? How do they differ from each other?
8) What is single-sign-on (SSO)?
9) Firewall and its types? How does it work? What is ACCEPT, REJECT & DROP in firewall?
10) What is Domain Controller & AD?
11) Difference between inbound & outbound traffic?
12) netstat & its states ESTABLISHED, LISTENING, CLOSE_WAIT &; LAST_ACK?

Those candidates, who believe they are well-prepared to the questions above are welcomed to send their CVs.