A common practice is for each organization to put together a dedicated set of questions for each role.
Today, Cynet launches the Cybersecurity Skill Tests website to optimize the hiring process with an automated online questionnaire form for each such position.
Cynet has assembled a vast question pool with hundreds of dedicated questions for the 6 leading cybersecurity positions (see below), covering all aspects of each selected role.
A selection algorithm is used to generate a set of 25 questions in increasing difficulty level, which touches all the important knowledge areas of each candidate's position.
No two questionnaires are the same to ensure the answers' reliability.
How does this work in practice?
Following the account creation in the Cybersecurity Candidates Questionnaires website, the CISO – or anyone who's accountable for hiring security professionals–can insert the candidate's name and email into the interface, and the questionnaire will be emailed to the candidate directly.
Each candidate has to answer all 25 questions. Once the candidate is done submitting all answers, the results (both score and time it took to answer) show on the recruiter's dashboard, enabling him to quickly shortlist the top achievers.
The Cybersecurity Skill Tests website includes knowledge questions for the following positions:
- SOC Manager - responsible for establishing and overseeing the workflows of security event monitoring, management, and response. As well as ensure compliance with SLA, process adherence, and process improvisation to achieve operational objectives.
- SOC Analyst – responsible for initial alert triage, immediate containment, investigation, management of remediation actions, and proactive detection of hidden threats.
- Malware Analyst – responsible for researching discovered malware by reverse engineering, static and dynamic analysis, etc. and provide insights regarding the nature of threats that target the organization.
- Security Architect - responsible for designing, building, testing, and implementing security systems within an organization's IT network to protect both business and customer data.
- IT Security – responsible for both IT and basic cybersecurity policies and standards. This position would be in demand for organizations that need security skills in their teams but cannot afford a dedicated security position.
- Incident Responder – responsible for the full operational cycle from the initial suspicion of a breach and investigation first steps, through forensic investigation, unveiling the incident's scope and root cause to final remediation and recovery actions.
So, do you have candidates for any of these positions? Simply create an account on the Cybersecurity Skills Tests website here and start testing the candidates.