Network Security Mock Interview
Master 23 Network Security interview questions covering firewalls, threat detection, and encryption protocols.
Question 3 of 23
Many of our clients have been subject to repeated attempts to access their network from unauthorized sources. One type of attack we often see is brute force logins. How do you recommend they defend against this type of attack?
Experienced
How to Answer
Example Answer
Community Answers
William Swansen has worked in the employment assistance realm since 2007. He is an author, job search strategist, and career advisor who helps individuals worldwide and in various professions to find their ideal careers.
"There are three common methods used to defend a company's network from unauthorized access via a brute force login attack. These are account lockout, progressive delay, and challenge response. Account lockout involves intervention by a system administrator to lock out a user until the admin is satisfied that they are actually who they say they are and simply forgot their password. A progress delay defense employs a timed lockout, ranging from minutes to days to give the user time to legitimately retrieve or reset their password. The final defense, known as the challenge-response requires the user to provide a security reminder that they set up when they registered their account. All three are effective and can be used either alone or together."
William Swansen has worked in the employment assistance realm since 2007. He is an author, job search strategist, and career advisor who helps individuals worldwide and in various professions to find their ideal careers.
This is a direct question to determine your knowledge in this area. This type of attack is one of the more common ones related to network security, and you should be aware of and able to recommend measures to defend against it.
William Swansen has worked in the employment assistance realm since 2007. He is an author, job search strategist, and career advisor who helps individuals worldwide and in various professions to find their ideal careers.
"Brute force login attacks are common, and there are three measures you can use to defend against them. The first is account lockout. Any account attempting this type of access can be locked until the administrator decides if it has been compromised or not. The second defense is called progressive delay. This involves locking the account for a set period of time after several unsuccessful login attempts. Finally, there is the challenge-response test, where users are asked to verify a predetermined security question they set up when registering for their account. I would recommend either one or a combination of these which best meet the client's business model."
Interview Coach
Jaymie
A real coach, not AI. I read every answer myself and write back with personalized feedback.
Typically responds within 24 hours.
0 - Character Count
Anonymous Answer
1. Account lockout. You can set the number of attempts, and if it exceeds the number, the account is locked until it is administratively decided.
2. 2FA Two factor authentication. Phone or SMS required as a security measure to verify the identity.
3. Specifying the IP from where you can log in.
Rachelle's Feedback
I like how you organized this response. It sounds confident and knowledgeable. Good work!
Unlock All 23 Network Security Questions
Unlock expert responses to technical scenarios that distinguish security professionals from amateurs.
Get StartedJump to Question