AmbitionBox
Interview Questions
- Reviews
- Salaries
- Interview Questions
- About Company
- Benefits
- Jobs
- Office Photos
- Community
Add office photos
i
Cigniti Technologies
Compare
Filter interviews by
Clear (1)
Cigniti Technologies Information Security Consultant Interview Questions, Process, and Tips
Cigniti Technologies Information Security Consultant Interview Experiences
1 interview found
Kaustav Pallob
I applied via Naukri.com and was interviewed in Jan 2023. There were 3 interview rounds.
(7 Questions)
- Q1. What is Blind XSS? What is the technique to find one?
- Ans.
Blind XSS is a type of XSS attack where the attacker does not receive the output of the injected script.
Blind XSS is also known as non-persistent XSS.
It is difficult to detect as the attacker does not receive any feedback.
One technique to find Blind XSS is to use a tool like Burp Suite to inject a payload and monitor the server response.
Another technique is to use a third-party service like XSS Hunter to track the payl...
- Q2. What is your favorite vulnerability? explain that
- Ans.
My favorite vulnerability is SQL injection.
SQL injection is a type of attack where an attacker injects malicious SQL code into a database query.
It can be used to steal sensitive information, modify or delete data, or even take control of the entire database.
Preventing SQL injection involves using parameterized queries, input validation, and proper error handling.
Examples of high-profile SQL injection attacks include th...
- Q3. What is CRLF? explain that
- Ans.
CRLF stands for Carriage Return Line Feed. It is a sequence of characters used to represent a line break in text files.
CRLF consists of two ASCII control characters: CR (carriage return) and LF (line feed).
It is commonly used in HTTP headers to separate lines of text.
CRLF can be exploited by attackers to inject malicious code or perform attacks such as HTTP response splitting.
To prevent such attacks, input validation a...
- Q4. How many XSS are there? what will be the mitigation?
- Ans.
There are numerous types of XSS attacks. Mitigation involves input validation and output encoding.
There are three main types of XSS attacks: stored, reflected, and DOM-based.
Mitigation involves input validation to ensure that user input is safe and output encoding to prevent malicious code from being executed.
Examples of input validation include limiting the length of input and restricting the types of characters that ...
- Q5. Explain the process of SQLi. Mitigation?
- Ans.
SQLi is a type of injection attack where an attacker injects malicious SQL code into a vulnerable application to gain unauthorized access to sensitive data.
SQLi involves exploiting vulnerabilities in web applications that allow user input to be executed as SQL commands
Attackers can use SQLi to bypass authentication, access sensitive data, modify or delete data, and even take control of the entire database
Mitigation tec...
- Q6. Explain the process of CSRF
- Ans.
CSRF is a type of attack where a malicious website tricks a user into performing an action on a different website.
The attacker creates a website with a form that submits a request to the target website
The user visits the attacker's website and submits the form, unknowingly performing an action on the target website
The target website cannot distinguish between a legitimate request and the forged request from the attacke...
- Q7. What will be the best way to send CSRF token in the Clint Server communication?
- Ans.
The best way to send CSRF token in client-server communication is through HTTP headers.
HTTP headers are the most secure way to send CSRF tokens.
The token should be sent in the 'X-CSRF-Token' header.
The header should be set to 'SameSite=Strict' to prevent cross-site request forgery attacks.
The token should be regenerated for each session to prevent replay attacks.
(3 Questions)
- Q1. Help me understand If I need to take over a higher-privilege account with an existing lower-privilege account what are the options available?
- Ans.
Options to take over a higher-privilege account with an existing lower-privilege account.
Use privilege escalation techniques to gain higher privileges
Exploit vulnerabilities in the system to gain access to higher-privilege accounts
Use social engineering to obtain login credentials for higher-privilege accounts
Use brute-force attacks to crack passwords for higher-privilege accounts
- Q2. Some scenario-based questions that are going to land take over an account with XSS
- Q3. Different types of XSS
- Ans.
XSS or Cross-Site Scripting is a type of security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users.
Reflected XSS: The attacker injects a script that is reflected back to the user through a search query or form input.
Stored XSS: The attacker injects a script that is stored on the server and executed whenever the user visits the affected page.
DOM-based XSS: The attacker...
Interview Preparation Tips
Skills evaluated in this interview
Top trending discussions
Interview questions from similar companies
Anonymous
I applied via Naukri.com and was interviewed before Sep 2021. There were 3 interview rounds.
Entry level aptitude test
(1 Question)
- Q1. Introduction and about college project.
Interview Preparation Tips
I applied via Naukri.com and was interviewed before Apr 2021. There were 2 interview rounds.
Interview Preparation Tips
I applied via Company Website and was interviewed before Feb 2021. There were 3 interview rounds.
TNQT: TCS National Qualifier Test
(1 Question)
- Q1. All technical questions related to your project and basic understanding of any programming language. Basically questions from your resume will be asked.
(2 Questions)
- Q1. Tell me about yourself.
- Q2. What is your family background?
Interview Preparation Tips
I applied via Walk-in and was interviewed before Sep 2021. There were 4 interview rounds.
Reasoning and English
Just a minute round about favourite movie
(1 Question)
- Q1. SD , about education questions
(1 Question)
- Q1. Regarding shifts, timings and relocation
Interview Preparation Tips
I was interviewed in Jun 2016.
Interview Questionnaire
2 Questions
- Q1. General questions related to Windows administration
- Q2. Questions about lack of past with experience.
Interview Preparation Tips
Experience: Some questions regarding active directory and file sharing
Tips: Keep it real and answer what you know. Donot argue unless interviewer demands discussion.
Round: HR Interview
Experience: Some questions regarding active directory and file sharing
Tips: Keep it real and answer what you know. Donot argue unless interviewer demands discussion.
Round: HR Interview
Experience: I didn't have work experience of a company.
Tips: Will if you have reached hr stage and don't have certain document tell the truth. And explain why you don't have it. If you can arrange the doc, great. If you can't clearly state the same. And tell about the references you can share.
Skills: Technical Analysis
Interview Questionnaire
6 Questions
- Q1. I was asked why Consulting,
- Q2. About the Company,
- Q3. What is the Current Exchange rate
- Ans.
The current exchange rate varies depending on the currency pair and market conditions.
Exchange rates are constantly fluctuating based on supply and demand
Factors such as political events, economic data, and central bank decisions can impact exchange rates
For example, as of August 2021, the exchange rate for USD to EUR is approximately 0.85
- Q4. Taking cue from an earlier answer I was asked basics of Corporate Hedging
- Q5. What is your view on the indian rupee vs dollar in the long run
- Ans.
The Indian rupee is expected to depreciate against the dollar in the long run.
The Indian economy is heavily dependent on imports, which puts pressure on the rupee.
The US economy is expected to grow faster than India's, which will strengthen the dollar.
Political and economic instability in India can also weaken the rupee.
However, global events such as trade wars and geopolitical tensions can also impact the exchange rat...
- Q6. A problem was given and I had to give the solution- the problem was “A company has corporate cellphone connection for its employees. How would you ensure that you achieve the same at the least cost?”
- Ans.
Negotiate with service providers for bulk discounts and limit data usage to essential business needs.
Negotiate with service providers for bulk discounts
Limit data usage to essential business needs
Consider implementing a BYOD (Bring Your Own Device) policy
Use mobile device management software to monitor and control usage
Encourage employees to use Wi-Fi instead of cellular data when possible
Interview Preparation Tips
Experience: I was able to explain Why Consulting and also showed a keen interest in Government Consulting which Wipro was heavily into.
General Tips: A non-fish-market GD goes a long way in helping your chances
Skills: case analysis, group discussion
College Name: NA
Interview Questionnaire
12 Questions
- Q1. What is the major attributes that a consultant should possess?
- Ans.
A consultant should possess strong analytical skills, effective communication, adaptability, and industry expertise.
Strong analytical skills to identify problems, analyze data, and provide effective solutions.
Effective communication to clearly convey ideas, build relationships, and present recommendations.
Adaptability to work in diverse environments, handle unexpected challenges, and adjust strategies accordingly.
Indus...
- Q2. What are your positives as a consultant?
- Q3. Why consulting?
- Q4. Why not finance, marketing and HR (individually)?
- Ans.
Consultant role requires a broader skill set and the ability to provide holistic solutions.
Consultants need to have a deep understanding of various business functions and how they interact.
They are expected to provide comprehensive solutions that address multiple aspects of a problem.
Finance, marketing, and HR are important components of a business, but a consultant needs to go beyond individual functions.
For example, ...
- Q5. What is your major drawback that you faced working as a consultant in your previous organization?
- Ans.
My major drawback as a consultant in my previous organization was my lack of experience in a specific industry.
Lack of industry-specific knowledge
Difficulty in understanding the unique challenges faced by clients
Limited network and connections in the industry
Less credibility due to lack of experience
Need for extensive research and learning before providing effective solutions
- Q6. What do you know about the company?
- Ans.
The company is a leading consulting firm specializing in providing strategic advice and solutions to businesses.
The company has been in operation for over 10 years.
They have a team of experienced consultants with expertise in various industries.
They offer services such as market research, financial analysis, and business strategy development.
Some of their notable clients include Fortune 500 companies and startups.
They ...
- Q7. Why do you want to join this company?
- Q8. What are the key factors that need to be in place while creating a client solution?
- Ans.
Key factors for creating a client solution
Understanding client's needs and goals
Identifying potential challenges and limitations
Developing a customized solution
Ensuring scalability and flexibility
Providing ongoing support and maintenance
Collaborating with the client throughout the process
- Q9. A small business scenario, and asked me the approach to problem solving (the problem was similar to the ones I used to handle during my work ex)
- Q10. General work ex, my domain, knowledge, background, experience of interacting with clients
- Q11. The service I was working on and my learnings on the same
- Q12. Also the interviewer asked me-What is one thing that u can ask me which will convince u that wipro is the company for you
Interview Preparation Tips
Experience: They also asked me questions related to my Work Experience-
Round: Group Discussion
Experience: Group Discussion: Topic was “Impact of small business on Indian Economy”.We generally discussed the small industries and entrepreneurial attitude but the panel also expected us to discuss the mom and pop stores as well
General Tips: My prior work experience was a major boost. A comprehensive knowledge of what I was doing before helped me present myself in a strong position.2. Display interest in the company. Knowing in detail about wipro’s consulting line of work helped me a lot.3. Positive body language, confidence adds.4. Display love for the profile/field you were applying to.5. Justify all that you have done in life till now. The business case study which he asked me was similar to what I used to face during my work ex. A practical & logical approach with explanations established my consulting experience.
Skills: Economics, case Analysis
College Name: NA
Skills evaluated in this interview
Interview Questionnaire
8 Questions
- Q1. Why consulting?
- Ans.
Consulting offers diverse challenges, continuous learning, and the opportunity to make a significant impact.
Consulting provides exposure to various industries and business problems.
It offers the chance to work with talented professionals and learn from their expertise.
Consultants have the opportunity to solve complex problems and make a tangible difference.
The work is dynamic and ever-changing, ensuring continuous lear...
- Q2. How can you add value to our organisation
- Q3. Specifically why Wipro out of all the consulting firms. They were very keen on why wipro thing
- Q4. What do you know about the Wipro group as a whole?
- Ans.
Wipro is an Indian multinational corporation that provides information technology, consulting and business process services.
Founded in 1945 by M.H. Hasham Premji
Headquartered in Bangalore, India
Employs over 190,000 people worldwide
Provides services in various industries including healthcare, finance, retail, and more
Has a strong focus on sustainability and social responsibility
Acquired Appirio, a cloud services company
- Q5. Lengthy discussion on Work experience
- Q6. Lengthy discussion on Summer internship project
- Q7. The whole interview was based on operations and supply chain concepts
- Q8. What theoretical concepts did you used to execute your project?
Interview Preparation Tips
Experience: Convinced them very well that the role they are offering is very much in line with my previous work ex and summer internship.
General Tips: Try to hard sell yourself as much as you can. Try to steer the interview yourself and you need to talk a lot. They wanted numbers as in revenues, competitors and recent events about the company.
Skills: case analysis, Economics
College Name: NA
Interview Questionnaire
6 Questions
- Q1. I was asked basic questions like Tell me about yourself
- Q2. Why consulting,
- Q3. What do I know about Wipro Consulting
- Ans.
Wipro Consulting is a global management consulting firm.
Offers services in strategy, operations, technology, and transformation.
Has a presence in over 50 countries.
Works with clients across various industries such as healthcare, financial services, and retail.
Part of Wipro Limited, a leading global information technology, consulting, and business process services company.
- Q4. What are the different processes
- Q5. What is the strategy of Wipro Business Consulting
- Ans.
Wipro Business Consulting's strategy is to provide end-to-end consulting services to clients across various industries.
Offering a range of consulting services including strategy, operations, technology, and organization
Focusing on digital transformation and innovation
Collaborating with clients to develop customized solutions
Leveraging Wipro's global presence and expertise
Examples of clients include a leading US healthc...
- Q6. Then I was asked what is there in your CV which I won’t find in others?
Interview Preparation Tips
Experience: I was grilled about the Company
Skills: Group discussion, case analysis
College Name: NA
Cigniti Technologies Interview FAQs
Some of the top questions asked at the Cigniti Technologies Information Security Consultant interview -
Recently Viewed
SALARIES
LambdaTest
REVIEWS
LambdaTest
No Reviews
INTERVIEWS
Cigniti Technologies
No Interviews
INTERVIEWS
Signzy Technologies
No Interviews
INTERVIEWS
Signzy Technologies
No Interviews
INTERVIEWS
Signzy Technologies
No Interviews
INTERVIEWS
Cigniti Technologies
No Interviews
LIST OF COMPANIES
Discover companies
Find best workplace
SALARIES
LambdaTest
INTERVIEWS
Signzy Technologies
No Interviews
Tell us how to improve this page.
Cigniti Technologies Interviews By Designations
- Cigniti Technologies Senior Engineer Interview Questions
- Cigniti Technologies Project Lead Interview Questions
- Cigniti Technologies Technical Lead Interview Questions
- Cigniti Technologies Automation Engineer Interview Questions
- Cigniti Technologies Test Engineer Interview Questions
- Cigniti Technologies Automation Test Engineer Interview Questions
- Cigniti Technologies Test Architect Interview Questions
- Cigniti Technologies QA Engineer Interview Questions
- Show more
Interview Questions for Popular Designations
- Information Security Analyst Interview Questions
- Information Security Engineer Interview Questions
- Information Technology Support Engineer Interview Questions
- Information Technology Recruiter Interview Questions
- Information Security Manager Interview Questions
- Senior Information Security Analyst Interview Questions
- Associate Information Technology Consultant Interview Questions
- Information Security Specialist Interview Questions
- Show more
Cigniti Technologies Information Security Consultant Interview Process
based on 1 interview
Interview experience
Interview Questions from Similar Companies
|
Senior Test Engineer
609
salaries
|  ₹0 L/yr - ₹0 L/yr |
|
Senior Engineer
513
salaries
| ₹0 L/yr - ₹0 L/yr |
|
Test Lead
389
salaries
| ₹0 L/yr - ₹0 L/yr |
|
Test Engineer
358
salaries
| ₹0 L/yr - ₹0 L/yr |
|
Engineer
262
salaries
| ₹0 L/yr - ₹0 L/yr |
TCS
Wipro
Infosys
HCLTech
- Home >
- Interviews >
- Cigniti Technologies Interview Questions >
- Cigniti Technologies Information Security Consultant Interview Questions
