Cognizant Security Analyst Interview Questions and Answers

Q1. Tell us about MITRE attack framework
Ans. 
MITRE ATT&CK is a knowledge base of adversary tactics and techniques based on real-world observations.
• MITRE ATT&CK provides a framework for understanding and categorizing cyber threats.

• It consists of tactics, techniques, and procedures (TTPs) used by attackers.

• Organizations can use MITRE ATT&CK to improve their threat detection and response capabilities.

• Examples of MITRE ATT&CK techniques include spear ...read more
Answered by AI
Add your answer

Q1. Vulnerability management in cloud environment
Ans. 
Vulnerability management in cloud environment involves identifying, prioritizing, and mitigating security weaknesses.
• Regularly scan cloud infrastructure for vulnerabilities

• Patch and update software to address vulnerabilities

• Implement access controls and encryption to protect data

• Utilize security tools like intrusion detection systems and firewalls

• Monitor and analyze security logs for suspicious activity
Answered by AI
Add your answer
Q2. Storage maintenance in Azure
Ans. 
Storage maintenance in Azure involves monitoring, optimizing, and managing storage resources to ensure performance and availability.
• Regularly monitor storage usage and performance metrics

• Optimize storage by implementing tiered storage and data archiving

• Manage access controls and permissions to prevent unauthorized access

• Implement backup and disaster recovery strategies for data protection

• Update storage configurations a
Answered by AI
Add your answer

It had multiple aptitude questions with programming questions

Q1. Questions based on your resume
Add your answer

Q1. Wat is your strength Will u work in night shift
Add your answer

Q1. Questions regarding SIEM working especially around multitenancy and rules.
Add your answer

Q1. Discussion with the Manager regarding my experience and future aspirations
Add your answer

Q1. Basics of cyber security
Add your answer
Q2. Read all the basics in cyber security
Add your answer

Q1. Tell me about yourself ?
Ans. I am Nitin Londhe. I have started my job career at Wipro with in year 2013 to jan 2024. Now I have recently join EXL magarpatt city. I have done my job at Wipro technologies like various post front office executive, ID batch coordinator, SOC operator,ACO etc.
Answered by Nitin Sadhu Londhe
Add your answer

Q1. What is 3 way hand shaking
Ans. 
3 way hand shaking is a process in TCP/IP communication where three packets are exchanged to establish a connection.
• Three packets are involved: SYN, SYN-ACK, ACK

• SYN packet is sent by the client to the server to initiate the connection

• SYN-ACK packet is sent by the server to the client as a response

• ACK packet is sent by the client to the server to confirm the connection
Answered by AI
Add your answer
Q2. What is OSI Model
Ans. 
The OSI Model is a conceptual framework that standardizes the functions of a telecommunication or computing system into seven layers.
• The OSI Model stands for Open Systems Interconnection Model.

• It helps in understanding how data is transferred between devices in a network.

• Each layer has specific functions and communicates with the adjacent layers.

• Examples of layers include Physical, Data Link, Network, Transport, Sessio
Answered by AI
Add your answer
Q3. Tell about your work culture
Add your answer
Q4. Difference between tcp and udp
Ans. 
TCP is connection-oriented, reliable, and slower, while UDP is connectionless, unreliable, and faster.
• TCP is connection-oriented, meaning it establishes a connection before sending data, while UDP is connectionless.

• TCP is reliable as it ensures all data is received in order and without errors, while UDP does not guarantee delivery.

• TCP is slower due to the overhead of establishing and maintaining connections, while UDP ...read more
Answered by AI
Add your answer
Q5. What is firewall
Ans. 
A firewall is a network security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules.
• Acts as a barrier between a trusted internal network and untrusted external network

• Filters traffic based on rules set by the network administrator

• Can be hardware-based or software-based

• Examples include Cisco ASA, Palo Alto Networks, and pfSense
Answered by AI
Add your answer

Q1. Please share your detailed introduction with day to day task
Ans. 
I am a Security Analyst responsible for monitoring and analyzing security threats, conducting risk assessments, and implementing security measures.
• Monitor security alerts and incidents on a daily basis

• Analyze security threats and vulnerabilities

• Conduct risk assessments to identify potential security risks

• Implement security measures to protect against cyber attacks

• Collaborate with IT teams to ensure security best practi
Answered by AI
Add your answer
Q2. How do you handle compliance in audits
Ans. 
I handle compliance in audits by ensuring all security measures are in place and regularly reviewed.
• Regularly review and update security policies and procedures to ensure compliance with regulations

• Conduct internal audits to identify any gaps in compliance and address them promptly

• Collaborate with external auditors to provide necessary documentation and evidence of compliance

• Implement security controls and measures to ...read more
Answered by AI
Add your answer

Q1. Ask about compliance parameters
Add your answer
Q2. Isg introduction and Msa brief
Add your answer