all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How would you answer this entry-level SOC Analyst interview question: "Say you were working an incident where reconnaissance was occurring against your network – what would you look for in the network logs to identify and then mitigate the threat?"

Add to bookmarks
Dec. 14, 2022, 6:14 p.m. | /u/HamOnRye__

cybersecurity www.reddit.com

Hey y'all, I have an interview for an entry-level SOC analyst position tomorrow morning and I'm going over some of the interview questions I was given by the recruiter. This is the only question that I'm weary about my response on, so I wanted to gauge y'all's opinion on it.

**Say you were working an incident where reconnaissance was occurring against your network – what would you look for in the network logs to identify and then mitigate the threat?** …

analyst cybersecurity entry identify incident interview logs network reconnaissance soc soc analyst threat working

Visit resource

More from www.reddit.com / cybersecurity

Should I be learning Cybersecurity on my primary machine? 7 hours ago | www.reddit.com
accounting auditor cybersecurity free +7
QSA Says we Can't Provide Public WiFi 9 hours ago | www.reddit.com
campus can cybersecurity event +13
Chinese Government Poses 'Bold and Unrelenting' Threat to U.S. Critical Infrastructure, FBI Director Says | … 9 hours ago | www.reddit.com
bureau chinese chinese government critical +10
What is best practice to prevent man in the middle compromising emails? 11 hours ago | www.reddit.com
attack best practice caught cybersecurity +13
High School English Teacher to Cybersecurity Engineer - A How-to Guide 11 hours ago | www.reddit.com
cybersecurity engineer guide high +16
Just me, or is every vendor's website awful. WHAT DO YOU ACTUALLY DO? 13 hours ago | www.reddit.com
article customers cybersecurity edr +17
We have Crowdstrike for our EDR. Can we use it as our primary SIEM? 14 hours ago | www.reddit.com
can cons cost crowdstrike +13
Web API Security Champion: Broken Object Level Authorization (OWASP TOP 10) 14 hours ago | www.reddit.com
api api security authorization broken object level authorization +9
Cisco Warns of Large-Scale Brute-Force Attacks on VPNs 15 hours ago | www.reddit.com
article attacks brute brute-force +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cloud Security Engineer

@ Pacific Gas and Electric Company | Oakland, CA, US, 94612
View on infosec-jobs.com

Penetration Tester (Level 2)

@ Verve Group | Pune, Mahārāshtra, India
View on infosec-jobs.com

Senior Security Operations Engineer (Azure)

@ Jamf | US Remote
View on infosec-jobs.com

(Junior) Cyber Security Consultant IAM (m/w/d)

@ Atos | Berlin, DE, D-13353
View on infosec-jobs.com
View more jobs