IT Job Interview

This question is asked to network administrators and security officers in order to test insight of the candidates’ overall knowledge of the various attacks that may affect the organization. You’d better have some real life network security experience to giving a perfect answer. However, if you never dealt with denial-of-service attack and recovery, you can still make yourself familiar with the concept and describe the general process. An example answer could be like:

“Our network could get denial-of-service attack because someone wanted to crash our system or make it perform so poorly and become unusable. Hackers may also want to install Trojan or a root kit through the attack. When a denial-of-service attack is identified, the first thing I would do is to reboot the system. In general I would also need to reprogram the switches and routers in order to drop the offending traffic. I would implement certain security features provided by the vendors to within the system to protect the network from this type of attack. With a Windows server system for example, I can invoke IPSec policies that allow me to limit or forbid traffic from certain hosts.”

The International Information Systems Security Certifications Consortium [(ISC)2] offers Certified Information Systems Security Professional Certification (CISSP) which is a high level certification program for IT professionals in security field. CISSP Certification was designed to recognize mastery of an international standard for information security and understanding of a Common Body of Knowledge (CBK). (more…)

Several years ago, network security was simply a specialization implemented by system administrators. Today, security has gone beyond network and played major roles in IT industry.

Due to all these sweeping changes we experienced in recent years, we are all sure that security will stay as the No.1 priority in IT system implementation, and the demand for security professionals will never die. Security is definitely the growth sector of the day. Thus, the security career track can be a highly remunerative direction. (more…)

IT Security Specialist is responsible for performing multiple security risk and vulnerability assessments, as well as operational projects and functions including monitoring of the network intrusion detection system. (more…)

Chief Security Officer (CSO) is the top security executive in the company. He or she will report directly to a senior functional executive (CEO, COO, CFO, chief administration officer, head of legal counsel). The CSO will oversee and coordinate security efforts across the company, including information technology, human resources, communications, legal, facilities management and other groups, and will identify security initiatives and standards. The candidate’s direct reports will include the chief information security officer and the director of corporate security and safety. (more…)