Persistent Systems Senior Security Analyst Interview Questions and Answers

Q1. ISE and Aci related questions
Add your answer
Q2. Firewall and network related questions
Add your answer

Q1. ACI related questions
Add your answer
Q2. Firewall & Network related questions
Add your answer

Q1. Company policy discussion
Add your answer
Q2. Salary discussion
Add your answer

Easy 20 questions we need to complete in 30 mins.

Q1. Basic computer science questions like networking, coding language, dsa
Add your answer

Q1. Normal hr questions rate your self tell me about yourself weeknesses
Add your answer

Q1. How ospf is works ?
Ans. 
OSPF (Open Shortest Path First) is a routing protocol that uses link-state routing algorithm to determine the best path for data packets.
• OSPF routers exchange link-state advertisements (LSAs) to build a topology map of the network.

• Each router calculates the shortest path to each network based on the information in the LSAs.

• OSPF uses cost as a metric to determine the best path, with lower cost paths being preferred.

• OSPF...read more
Answered by AI
Add your answer
Q2. What is bgp parameter ?
Ans. 
BGP parameter refers to the various attributes and settings used in the Border Gateway Protocol for routing decisions.
• BGP parameters include attributes like AS path, next hop, local preference, and MED.

• These parameters help BGP routers make decisions on the best path to reach a destination.

• Examples of BGP parameters are weight, local preference, and community values.
Answered by AI
Add your answer

Q1. What network works and implements parts
Ans. 
Network works and implements parts refer to the components and protocols involved in the functioning of a network.
• Network devices such as routers, switches, firewalls, and access points work together to facilitate communication.

• Protocols like TCP/IP, DNS, DHCP, and SSL/TLS are implemented to ensure data transmission and security.

• Network segmentation, VLANs, and VPNs are used to separate and secure different parts of a ...read more
Answered by AI
Add your answer
Q2. Wireless wlc vlan configuration
Add your answer
Q3. Switch configuration
Add your answer

Q1. Say about current role and responsibilities
Ans. 
I am currently working as a Security Analyst, responsible for monitoring and analyzing security threats, implementing security measures, and conducting security assessments.
• Monitoring and analyzing security threats to identify potential risks

• Implementing security measures to protect systems and data

• Conducting security assessments to identify vulnerabilities and recommend solutions

• Collaborating with IT teams to ensure s...read more
Answered by AI
Add your answer
Q2. What is cyber security
Ans. 
Cyber security is the practice of protecting systems, networks, and data from digital attacks.
• Involves protecting computers, servers, mobile devices, networks, and data from unauthorized access or damage

• Includes implementing security measures such as firewalls, antivirus software, encryption, and multi-factor authentication

• Cyber security professionals work to prevent, detect, and respond to cyber threats

• Examples of cyb...read more
Answered by AI
Add your answer

Q1. SSL Related ! Qualys VMDR Module scans related ! Application vuln !
Add your answer
Q2. Top 10 owasp How to prioritise and remediate vulnerabilities
Ans. 
Prioritizing and remediating vulnerabilities using OWASP Top 10
• Start by identifying the vulnerabilities that pose the highest risk to the organization

• Use the OWASP Top 10 as a guide to prioritize vulnerabilities

• Consider the likelihood and potential impact of each vulnerability

• Remediate vulnerabilities based on their priority level

• Perform regular vulnerability assessments to stay up-to-date on new vulnerabilities

• Example...read more
Answered by AI
Add your answer

Q1. Tell me about yourself
Ans. 
I am a dedicated Security Analyst with a strong background in cybersecurity and risk management.
• Experienced in conducting security assessments and identifying vulnerabilities

• Skilled in implementing security measures to protect against cyber threats

• Proficient in analyzing security incidents and responding effectively

• Certified in relevant security certifications such as CISSP or CISM
Answered by AI
Add your answer

Q1. Different types of malware
Ans. 
Malware refers to malicious software designed to disrupt, damage, or gain unauthorized access to a computer system.
• Viruses: self-replicating programs that infect other files on a computer

• Worms: standalone malware that spreads across networks

• Trojans: disguised as legitimate software to trick users into installing them

• Ransomware: encrypts files and demands payment for decryption

• Spyware: secretly gathers information about...read more
Answered by AI
Add your answer
Q2. What would you first do if a machine is infected
Ans. 
The first step would be to isolate the infected machine from the network to prevent further spread of the infection.
• Isolate the infected machine from the network to prevent further spread of the infection

• Identify the type of malware or virus that has infected the machine

• Run a full system scan using antivirus software to detect and remove the malware

• Update the operating system and all software to patch any vulnerabiliti...read more
Answered by AI
Add your answer

Q1. What is OWASP top 10?
Ans. 
OWASP top 10 is a list of the most critical web application security risks.
• It is published by the Open Web Application Security Project (OWASP)

• It includes risks such as injection, broken authentication and session management, cross-site scripting (XSS), and more

• It is updated every few years to reflect new threats and vulnerabilities

• It is used by security professionals to prioritize their efforts and focus on the most i
Answered by AI
Add your answer
Q2. What is the difference between vulnerability assessment and penetration testing?
Ans. 
Vulnerability assessment identifies vulnerabilities, while penetration testing exploits them to determine the impact.
• Vulnerability assessment is a non-intrusive process that identifies vulnerabilities in a system or network.

• Penetration testing is an intrusive process that exploits vulnerabilities to determine the impact on the system or network.

• Vulnerability assessment is usually automated and performed regularly to id...read more
Answered by AI
Add your answer
Q3. What are some of the vulnerabilities during web application penetration testing?
Ans. 
Vulnerabilities in web application penetration testing
• Injection flaws (SQL, LDAP, etc.)

• Cross-site scripting (XSS)

• Broken authentication and session management

• Insecure direct object references

• Security misconfiguration

• Sensitive data exposure

• Insufficient logging and monitoring
Answered by AI
Add your answer

Q1. Why are u interested in Cybersecurity?
Ans. 
I am interested in Cybersecurity because it allows me to protect and defend against cyber threats, ensuring the safety and privacy of individuals and organizations.
• Passion for technology and problem-solving

• Desire to make a positive impact by safeguarding sensitive information

• Fascination with the constantly evolving nature of cyber threats

• Opportunity to work on challenging and complex projects

• Ability to contribute to th...read more
Answered by AI
Add your answer
Q2. What do you expect from the company during your full time employment?
Ans. 
I expect the company to provide a supportive and challenging work environment, opportunities for growth and learning, fair compensation, and a strong commitment to security.
• Supportive and challenging work environment

• Opportunities for growth and learning

• Fair compensation

• Strong commitment to security
Answered by AI
Add your answer

Q1. What are the information in TCP IP Header?
Ans. 
TCP IP Header contains information such as source and destination IP addresses, port numbers, sequence numbers, and more.
• Source IP address

• Destination IP address

• Source port number

• Destination port number

• Sequence number

• Acknowledgment number

• Header length

• Checksum
Answered by AI
Add your answer
Q2. What is App ID in Palo Alto Firewalls?
Ans. 
App ID in Palo Alto Firewalls is a feature that identifies applications on the network based on various parameters.
• App ID uses multiple methods to identify applications, including port-based, protocol-based, and application signature-based identification.

• It allows administrators to create policies based on specific applications rather than just ports or protocols.

• App ID helps in enhancing security by allowing granular ...read more
Answered by AI
Add your answer
Q3. What is the SP3 Architecture of Palo Alto Firewalls?
Ans. 
SP3 Architecture of Palo Alto Firewalls refers to Security Processing Plane, Control Plane, and Data Plane.
• SP3 Architecture consists of Security Processing Plane (SP), Control Plane (C), and Data Plane (D)

• Security Processing Plane (SP) handles security functions like threat prevention and decryption

• Control Plane (C) manages routing and firewall policies

• Data Plane (D) processes and forwards traffic based on firewall pol...read more
Answered by AI
Add your answer