InterviewStack.io LogoInterviewStack.io

Infrastructure Security and Access Control Questions

Design and implementation of security controls within infrastructure and access management. Topics include network segmentation and isolation, security groups and network access control lists, identity and access management policies and least privilege principles, encryption at rest and in transit, secrets management and key management practices, audit logging and monitoring, secure remote access patterns such as bastion hosts and virtual private networks, session recording and privileged access governance, threat modeling for infrastructure components, and trade offs for compliance and operational complexity.

HardTechnical
50 practiced
A critical zero-day kernel exploit has been published and may allow privilege escalation on your Linux fleet. Describe a prioritized action plan to mitigate risk across thousands of servers: emergency patching, temporary hardening, detection for exploitation, verifying no persistence, and stakeholder communication.
HardSystem Design
50 practiced
Design secure remote administration for a global 24/7 ops team: SSO integration, just-in-time (JIT) privileged access, session recording, emergency break-glass, automated approval workflows, and auditability even during cloud provider outages. Explain components, SLA considerations, and failure modes.
EasyTechnical
55 practiced
Compare role-based access control (RBAC) and attribute-based access control (ABAC). For a medium-sized organization with cloud workloads and legacy on-prem systems, what hybrid approach would you recommend and why?
MediumTechnical
39 practiced
Design an automated access review and recertification process for user and service accounts in a hybrid environment. Include data sources, frequency, notifications, approver workflow, and how to handle stale or orphaned accounts.
EasyTechnical
74 practiced
What is multi-factor authentication (MFA), and which MFA patterns are recommended for system administrators accessing critical infrastructure? Discuss hardware tokens, TOTP, push-based methods, and integration points like SSO and PAM.

Unlock Full Question Bank

Get access to hundreds of Infrastructure Security and Access Control interview questions and detailed answers.

Sign in to Continue

Join thousands of developers preparing for their dream job.