FIS Lead Security Engineer Interview Questions and Answers

Security refers to measures taken to protect people, property, and information from harm or unauthorized access.

• Security involves implementing procedures, technologies, and personnel to prevent and respond to threats

• Examples include surveillance cameras, access control systems, security guards, and cybersecurity measures

• Security measures can vary depending on the specific needs and risks of a particular environment or

Security officers are essential in the industry to protect people, property, and assets from potential threats and ensure a safe environment.

• Prevent unauthorized access to facilities

• Monitor surveillance cameras and alarms

• Respond to emergencies and incidents

• Enforce safety and security policies

• Provide a visible deterrent to potential criminals

Vehicles are checked before entering the gate by security officers for safety and security purposes.

• Check for valid identification and authorization to enter the premises

• Inspect the vehicle for any suspicious items or signs of tampering

• Verify the purpose of the visit and destination within the premises

• Use mirrors to check the undercarriage of the vehicle for any hidden objects

• Check the trunk and interior of the vehicle

Vehicles are checked at the gate by security officers for safety and security purposes.

• Security officers visually inspect vehicles for any suspicious items or behavior

• Security officers may use mirrors to check the undercarriage of vehicles for hidden items

• Security officers may use metal detectors to check for weapons or other prohibited items

• Security officers may ask drivers to open trunks or other compartments for ins

TCP IP Header contains information such as source and destination IP addresses, port numbers, sequence numbers, and more.

• Source IP address

• Destination IP address

• Source port number

• Destination port number

• Sequence number

• Acknowledgment number

• Header length

• Checksum

App ID in Palo Alto Firewalls is a feature that identifies applications on the network based on various parameters.

• App ID uses multiple methods to identify applications, including port-based, protocol-based, and application signature-based identification.

• It allows administrators to create policies based on specific applications rather than just ports or protocols.

• App ID helps in enhancing security by allowing granular ...read more

SP3 Architecture of Palo Alto Firewalls refers to Security Processing Plane, Control Plane, and Data Plane.

• SP3 Architecture consists of Security Processing Plane (SP), Control Plane (C), and Data Plane (D)

• Security Processing Plane (SP) handles security functions like threat prevention and decryption

• Control Plane (C) manages routing and firewall policies

• Data Plane (D) processes and forwards traffic based on firewall pol...read more

OWASP stands for Open Web Application Security Project, a non-profit organization focused on improving software security.

• OWASP provides resources such as tools, documentation, and guidelines for web application security.

• It publishes a list of the top 10 most critical web application security risks.

• OWASP also offers training and conferences to educate professionals on security best practices.

3 way hand shaking is a process in TCP/IP communication where three packets are exchanged to establish a connection.

• Three packets are involved: SYN, SYN-ACK, ACK

• SYN packet is sent by the client to the server to initiate the connection

• SYN-ACK packet is sent by the server to the client as a response

• ACK packet is sent by the client to the server to confirm the connection

The OSI Model is a conceptual framework that standardizes the functions of a telecommunication or computing system into seven layers.

• The OSI Model stands for Open Systems Interconnection Model.

• It helps in understanding how data is transferred between devices in a network.

• Each layer has specific functions and communicates with the adjacent layers.

• Examples of layers include Physical, Data Link, Network, Transport, Sessio

TCP is connection-oriented, reliable, and slower, while UDP is connectionless, unreliable, and faster.

• TCP is connection-oriented, meaning it establishes a connection before sending data, while UDP is connectionless.

• TCP is reliable as it ensures all data is received in order and without errors, while UDP does not guarantee delivery.

• TCP is slower due to the overhead of establishing and maintaining connections, while UDP ...read more

A firewall is a network security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules.

• Acts as a barrier between a trusted internal network and untrusted external network

• Filters traffic based on rules set by the network administrator

• Can be hardware-based or software-based

• Examples include Cisco ASA, Palo Alto Networks, and pfSense