Today, I will tell you about the pit of the fledgling network security small white interview…
Graduation season is approaching again, the beautiful seniors are coming off the shelves, and the freshmen are still on their way.
As a senior, or to tell these young brothers and sisters, out of the campus, to the workplace to pay attention to what.
The first step after leaving campus is the interview. There are so many online interview techniques and articles, and the network security industry is different from other industries. During the interview process, we encountered strange interviewers and all kinds of strange questions. The odds are very high. As the winner, I’m going to talk to my elementary school sister-in-law. Move to a stool and listen carefully.
Let’s start with my wonderful interview experience.
At that time, I was still very green… I went into my first interview with a carefully prepared resume over ten pages long.
Usually the first one is the opening routine, because the interviewer has a few minutes to check your presentation skills and read your resume, and then based on their points of interest, they try the interview, and here’s the key point. The following are often asked:
1, understanding of the network security industry, do you have any internship or work experience in the network security industry before?
2. The direction of the graduation project and whether the research content is deep;
3. Internship content, internship projects, work undertaken in the project and completion status;
4, interview position advantages, personal advantages and disadvantages;
Of course, all of this is pretty routine. Some positions, such as penetration testing, bug digging, security researcher, etc., have all kinds of unexpected problems…
If you have penetration testing experience, you may be asked “Are you a hacker?”
At this time, Tao elder brother really want to say, “I am stupid, you are a hacker, your whole family is a hacker”, but I can not do, I can not do, I can only explain with a smile said “network security enthusiasts”. “, the interviewer laughed even harder, “Do you hackers like to say that you are Internet security enthusiasts”, god damn, I really want to spray him with salt soda… And “Don’t do it” after that. I had a black background…” “And” Are there any cases…” I can only laugh…
If you have reverse engineering and development experience, you may be asked, “Have you ever written a plug-in?” “And” Did you write about the Trojan Horse?
My god, I wanted to ask him, “Do you know how tiring debugging games are?” “, “Do you know how many types of game protection there are? “, “Do you know how hard it is to update trojans?” Don’t kill?” “Do you know there is a master defense? How hard is it to break through?” … Dude, am I being too serious? “I only do principle research and validation demo development”…
After many times of experience, Tao Ge summed up the following experience, for security novice reference: 1. Remember not to codger the complete resume, page number is not too much, combined with the interview highlight;
2. Familiar with professional technical issues, such as “WEB penetration test” job interview, at least master owASP Top 10 vulnerability principles and testing methods;
3. You can attach a Github address to your code work. Some technical interviewers will actually go back and look at your Github and give them extra points if you have a good work.
4. Vulnerability number submitted, such as CVE on high, CNVD on ground, etc.;
5, online SRC submitted classic vulnerability and ranking, with this proof, actual combat experience is still good, at least than you said do black production better. Finally, I wish the students a bright future!